Palo Alto Networks Exam PSE-Endpoint-Associate Topic 1 Question 76 Discussion

Actual exam question for Palo Alto Networks's PSE-Endpoint-Associate exam

Question #: 76
Topic #: 1

[All PSE-Endpoint-Associate Questions]

Which two statements about file hashes are true? (Choose two.)

AWildFire populates ESM Server's cache with hashes of files known from other customers to be malicious.

BThe Traps agent caches the hashes of executable files for which it has verdicts.

CESM Servers send hashes of application data files to WildFire.

DESM Servers send hashes of executable files to WildFire.

Show Suggested Answer

Suggested Answer: A, C

by Kris at Jan 28, 2025, 08:25 AM

Limited Time Offer

25%

Off

Get Premium PSE-Endpoint-Associate Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Fletcher

3 days ago

I'm not sure about A, but I think B is also true. The Traps agent caches hashes of executable files for which it has verdicts.

upvoted 0 times

...

Lavonne

5 days ago

I agree with you, Casandra. A and D make sense because ESM Servers send hashes of executable files to WildFire.

upvoted 0 times

...

A and B seem to be the correct options. The Traps agent caching hashes of executable files makes sense, and WildFire populating ESM's cache with known malicious hashes is a great way to leverage crowd-sourced intelligence.

upvoted 0 times

...

Casandra

13 days ago

I think A and D are true.

upvoted 0 times

...

Palo Alto Networks Exam PSE-Endpoint-Associate Topic 1 Question 76 Discussion

Contribute your Thoughts:

Fletcher

Lavonne

Fredric

Casandra