Question

Name three leads used in Cortex XDR.

a) Process Tree, Network Activity, File Permissions
b) Event Logs, Timestamps, Registry Entries
c) User Activity, Endpoint Events, Network Connections
d) Malware, IOC, BIOC

Answer 1

In Cortex XDR, three types of leads used are Malware, IOC (Indicator of Compromise), and BIOC (Behavioral Indicator of Compromise), which help in identifying and investigating potential cybersecurity threats.

Step-by-step explanation:

The three leads used in Cortex XDR are closely related to cybersecurity and endpoint protection strategies. Option d, which lists Malware, IOC (Indicator of Compromise), and BIOC (Behavioral Indicator of Compromise), represents the types of leads or indicators a security analyst might investigate when using Cortex XDR to respond to potential threats. These leads help in identifying malicious activities, compromised systems and understanding the behavior of potential threats.