Palo Alto Networks System Engineer – Cortex — Question 40
Which two types of indicators of compromise (IOCs) are available for creation in Cortex XDR? (Choose two.)
Answer options
- A. registry entry
- B. Internet Protocol (IP)
- C. domain
- D. endpoint hostname
Correct answer: B, C
Explanation
The correct options, B and C, are valid types of IOCs that can be created in Cortex XDR, specifically focusing on network-related indicators. Options A and D, while relevant in cybersecurity, do not fall under the types of IOCs that Cortex XDR allows for creation.