Summer Certification Sale 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: save70

All CCFR-201b Test Inside CrowdStrike Questions

Page: 7 / 15
Total 199 questions

CrowdStrike Certified Falcon Responder Questions and Answers

Question 25

The function of Machine Learning Exclusions is to___________.

Options:

A.

stop all detections for a specific pattern ID

B.

stop all sensor data collection for the matching path(s)

C.

Stop all Machine Learning Preventions but a detection will still be generated and files will still be uploaded to the CrowdStrike Cloud

D.

stop all ML-based detections and preventions for the matching path(s) and/or stop files from being uploaded to the CrowdStrike Cloud

Question 26

What actions are available for domain name-based Indicators of Compromise (IOCs) in Falcon?

Options:

A.

Detect only

Allow

B.

Block

Detect only

Allow

C.

Block

Allow

No action

D.

Detect only

No action

Question 27

A responder wants to verify why a certain quarantined file was not uploaded to the cloud. Which specific policy dictates whether quarantined files are permitted to be uploaded?

Options:

A.

Sensor Update Policy

B.

Prevention Policy

C.

Response Policy

D.

Quarantine Management Policy

Question 28

An administrator needs to download a file for analysis that was blocked by the sensor. Where are quarantine files located within the Falcon UI?

Options:

A.

Investigate > Quarantine

B.

Endpoint Security > Monitor > Quarantined Files

C.

Configuration > Response > Quarantine

D.

Dashboards > Security > Quarantine

Page: 7 / 15
Total 199 questions