Palo Alto Networks Certified Detection and Remediation Analyst (PCDRA) — Question 76

Which Exploit Prevention Module (EPM) provides better entropy for randomization of memory locations?

Answer options

• A. UASLR
• B. JIT Mitigation
• C. Memory Limit Heap spray check
• D. DLL Security

Correct answer: A

Explanation

UASLR (User Address Space Layout Randomization) significantly improves entropy in memory location randomization, making it harder for attackers to predict memory addresses. The other options, while providing security measures, do not focus specifically on enhancing randomness in memory allocation like UASLR does.