Palo Alto Networks System Engineer – Cortex — Question 3
Which two types of indicators of compromise (IOCs) are available for creation in Cortex XDR? (Choose two.)
Answer options
- A. registry
- B. file path
- C. hash
- D. hostname
Correct answer: B, C
Explanation
The correct answers are B and C because Cortex XDR allows users to create IOCs based on specific file paths and hash values to detect potential threats. Options A and D are not correct as they do not represent the types of IOCs that can be created in this system.