Palo Alto Networks PSE-Cortex Exam Practice Test Instant Access

Question 1

The certificate used for decryption was installed as a trusted root CA certificate to ensure communication between the Cortex XDR Agent and Cortex XDR Management Console What action needs to be taken if the administrator determines the Cortex XDR Agents are not communicating with the Cortex XDR Management Console?

Aadd paloaltonetworks com to the SSL Decryption Exclusion list

Benable SSL decryption

Cdisable SSL decryption

Dreinstall the root CA certificate

Answer : D

Question 2

Which two filter operators are available in Cortex XDR? (Choose two.)

A< >

BContains

DIs Contained By

Answer : B, C

Question 3

A test for a Microsoft exploit has been planned. After some research Internet Explorer 11 CVE-2016-0189 has been selected and a module in Metasploit has been identified

(exploit/windows/browser/ms16_051_vbscript)

The description and current configuration of the exploit are as follows;

What is the remaining configuration?

AOption A

BOption B

COption C

DOption D

Answer : D

Question 4

Cortex XDR can schedule recurring scans of endpoints for malware. Identify two methods for initiating an on-demand malware scan (Choose two )

AResponse > Action Center

Bthe local console

CTelnet

DEndpoint > Endpoint Management

Answer : A, D

Question 5

Which two filter operators are available in Cortex XDR? (Choose two.)

Anot Contains

B!*

C=>

D< >

Answer : A, B

https://docs.paloaltonetworks.com/cortex/cortex-xdr/cortex-xdr-pro-admin/get-started-with-cortex-xdr-pro/use-cortex-xdr/manage-tables.html

Question 6

An administrator has a critical group of systems running Windows XP SP3 that cannot be upgraded The administrator wants to evaluate the ability of Traps to protect these systems and the word processing applications running on them

How should an administrator perform this evaluation?

AGather information about the word processing applications and run them on a Windows XP SP3 VM Determine if any of the applications are vulnerable and run the exploit with an exploitation tool

BRun word processing exploits in a latest version of Windows VM in a controlled and isolated environment. Document indicators of compromise and compare to Traps protection capabilities

CRun a known 2015 flash exploit on a Windows XP SP3 VM. and run an exploitation tool that acts as a listener Use the results to demonstrate Traps capabilities

DPrepare the latest version of Windows VM Gather information about the word processing applications, determine if some of them are vulnerable and prepare a working exploit for at least one of them Execute with an exploitation tool

Answer : C

Question 7

Which option is required to prepare the VDI Golden Image?

AConfigure the Golden Image as a persistent VDI

BUse the Cortex XDR VDI tool to obtain verdicts for all PE files

CInstall the Cortex XOR Agent on the local machine

DRun the Cortex VDI conversion tool

Answer : B

Palo Alto Networks PSE-Cortex Palo Alto Networks System Engineer - Cortex Professional Exam Practice Test