Loading questions...
Updated
Which of the following is a feature of XSOAR automations?
When is the post-processing script executed in XSOAR?
Which option is available in XSOAR to create the body of a Threat Intel Report?
Where are incident layouts customized?
How can Cortex XSOAR administrators prevent junior analysts from viewing a senior analyst dashboard?
Which content type cannot be managed using remote repositories?
Which task type would be used to verify/check that an integration was enabled?
Which two capabilities do Automation script settings include? (Choose two.)
After executing the DeleteContext automation with all=yes argument, how would the context data of an incident present?
An XSOAR engineer has been tasked with exporting all indicators from the production environment in the last 90 days. The final report needs to be in CSV format containing all indicator fields. How can this task be achieved?
An administrator has noticed that an incident fetch has failed, causing several internal workflows to be backed up. The administrator would like to receive notifications the next time the incident fetch fails.
How can they achieve this?
Threat Intel search queries can be shared with which of the following? (Select 1)
An administrator wants to run an automation in the War Room to set the incident field "Description" to "Confirmed Phishing". Which command should they enter in the War Room CLI?
Select the correct incident life cycle on XSOAR.
Which of the following is a prerequisite to editing out-of-the-box (OOTB) content?
At what stage during the incident lifecycle is an incident type assigned?
What can you use to assign a layout, field, and playbook to an incoming incident?
For troubleshooting, after a log bundle is created, where do the logs appear on the XCSOAR server?
Which three types of information are displayed on the incident Quick View? (Choose three.)
Where do you navigate to monitor and improve the system performance and resilience for hosts in a multitenant environment?
When creating an automation in XSOAR, what is the best way to create a log message?
What is an example of a generic reputation command?
Which two advanced attributes can be applied to incident fields when editing? (Choose two.)
Which two causes may be occurring if an integration test is working, but the integration is not fetching incidents? (Choose two.)
Given the following context data, what would be the expected output of the expression?