CrowdStrike Certified Falcon Hunter (CCFH) — Question 11

To find events that are outliers inside a network, ___________is the best hunting method to use.

Answer options

• A. time-based
• B. machine learning
• C. searching
• D. stacking

Correct answer: D

Explanation

The correct answer is D, stacking, which utilizes multiple models to identify anomalies effectively. The other options like A (time-based) and C (searching) may help in some cases but aren't as comprehensive, while B (machine learning) can be useful but is not specifically focused on outlier detection in the same manner as stacking.