Weekend Special 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: Board70

PCDRA Exam Dumps - Paloalto Networks Palo Alto Certifications and Accreditations Questions and Answers

Question # 4

If you have an isolated network that is prevented from connecting to the Cortex Data Lake, which type of Broker VM setup can you use to facilitate the communication?

Options:

A.

Broker VM Pathfinder

B.

Local Agent Proxy

C.

Local Agent Installer and Content Caching

D.

Broker VM Syslog Collector

Buy Now
Question # 5

Which of the following protection modules is checked first in the Cortex XDR Windows agent malware protection flow?

Options:

A.

Hash Verdict Determination

B.

Behavioral Threat Protection

C.

Restriction Policy

D.

Child Process Protection

Buy Now
Question # 6

Which statement regarding scripts in Cortex XDR is true?

Options:

A.

Any version of Python script can be run.

B.

The level of risk is assigned to the script upon import.

C.

Any script can be imported including Visual Basic (VB) scripts.

D.

The script is run on the machine uploading the script to ensure that it is operational.

Buy Now
Question # 7

How does Cortex XDR agent for Windows prevent ransomware attacks from compromising the file system?

Options:

A.

by encrypting the disk first.

B.

by utilizing decoy Files.

C.

by retrieving the encryption key.

D.

by patching vulnerable applications.

Buy Now
Question # 8

Which statement best describes how Behavioral Threat Protection (BTP) works?

Options:

A.

BTP injects into known vulnerable processes to detect malicious activity.

B.

BTP runs on the Cortex XDR and distributes behavioral signatures to all agents.

C.

BTP matches EDR data with rules provided by Cortex XDR.

D.

BTP uses machine Learning to recognize malicious activity even if it is not known.

Buy Now
Question # 9

Which two types of exception profiles you can create in Cortex XDR? (Choose two.)

Options:

A.

exception profiles that apply to specific endpoints

B.

agent exception profiles that apply to specific endpoints

C.

global exception profiles that apply to all endpoints

D.

role-based profiles that apply to specific endpoints

Buy Now
Question # 10

A Linux endpoint with a Cortex XDR Pro perEndpoint license and Enhanced Endpoint Data enabled has reported malicious activity, resulting in the creation of a file that you wish to delete. Which action could you take to delete the file?

Options:

A.

Manually remediate the problem on the endpoint in question.

B.

Open X2go from the Cortex XDR console and delete the file via X2go.

C.

Initiate Remediate Suggestions to automatically delete the file.

D.

Open an NFS connection from the Cortex XDR console and delete the file.

Buy Now
Question # 11

What license would be required for ingesting external logs from various vendors?

Options:

A.

Cortex XDR Pro per Endpoint

B.

Cortex XDR Vendor Agnostic Pro

C.

Cortex XDR Pro per TB

D.

Cortex XDR Cloud per Host

Buy Now
Question # 12

When investigating security events, which feature in Cortex XDR is useful for reverting the changes on the endpoint?

Options:

A.

Remediation Automation

B.

Machine Remediation

C.

Automatic Remediation

D.

Remediation Suggestions

Buy Now
Exam Code: PCDRA
Exam Name: Palo Alto Networks Certified Detection and Remediation Analyst
Last Update: Feb 22, 2025
Questions: 91
PCDRA pdf

PCDRA PDF

$25.5  $84.99
 Add to Cart
PCDRA Engine

PCDRA Testing Engine

$28.5  $94.99
 Add to Cart
PCDRA PDF + Engine

PCDRA PDF + Testing Engine

$40.5  $134.99
 Add to Cart