Palo Alto Networks PSE-Cortex Exam - Topic 1 Question 29 Discussion
An Administrator is alerted to a Suspicious Process Creation security event from multiple users.The users believe that these events are false positives Which two steps should the administrator take to confirm the false positives and create an exception? (Choose two )
B) Within the Malware Security profile add the specific parent process, child process, and command line argument to the child process whitelist and C) In the Cortex XDR security event, review the specific parent process, child process, and command line arguments
A) With the Malware Security profile, disable the 'Prevent Malicious Child Process Execution' module
D) Contact support and ask for a security exception.
Hyman
8 months agoMilly
8 months agoJin
8 months agoBronwyn
8 months agoKaty
8 months agoTemeka
8 months agoVan
8 months agoNada
9 months agoDenny
9 months agoKanisha
9 months agoTarra
9 months agoYolande
9 months ago