Understanding Cisco Cybersecurity Operations Fundamentals (CBROPS) — Question 177
An analyst is using the SIEM platform and must extract a custom property from a Cisco device and capture the phrase, `File: Clean.` Which regex must the analyst import?
Answer options
- A. File: Clean (.*)
- B. ^Parent File: Clean$
- C. File: Clean
- D. ^File: Clean$
Correct answer: C
Explanation
The correct answer is C, as it directly matches the phrase `File: Clean` without any additional constraints, making it the simplest and most effective regex for extraction. Options A and D include unnecessary elements that either complicate the match or restrict it to specific conditions, while option B references a different phrase that doesn't match the requirement.