Palo Alto Networks Exam PSE-Platform Topic 1 Question 62 Discussion

Actual exam question for Palo Alto Networks's PSE-Platform exam

Question #: 62
Topic #: 1

An endpoint, inside an organization, is infected with known malware. The malware attempts to make a command and control connection to a C&C server via the destination IP address.

Which mechanism prevent this connection from succeeding?

ADNS Sinkholing

BDNS Proxy

CAnti-Spyware Signatures

DWildfire Analysis

Show Suggested Answer

Suggested Answer: A

by Merri at May 31, 2024, 09:54 PM

Limited Time Offer

25%

Off

Get Premium PSE-Platform Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Cathrine

26 days ago

Ah, the age-old battle between malware and cybersecurity. I bet the C&C server is sweating bullets right about now.

upvoted 0 times

Darnell

2 days ago

C) Anti-Spyware Signatures

upvoted 0 times

...

Vivan

10 days ago

B) DNS Proxy

upvoted 0 times

...

Dulce

15 days ago

A) DNS Sinkholing

upvoted 0 times

...

Lenora

1 months ago

Wildfire Analysis? Sounds like something out of a sci-fi movie. I'll stick with the good old DNS Sinkholing.

upvoted 0 times

Ruby

24 days ago

I agree, DNS Sinkholing is a reliable way to prevent those connections.

upvoted 0 times

...

Glenna

1 months ago

Anti-Spyware Signatures? Really? That's like trying to catch a speeding bullet with a butterfly net.

upvoted 0 times

Brandon

18 days ago

A) DNS Sinkholing

upvoted 0 times

...

Rasheeda

1 months ago

I'm not sure about the other options, but DNS Proxy sounds like it could also work by intercepting and controlling the DNS traffic.

upvoted 0 times

...

Glennis

2 months ago

DNS Sinkholing seems like the obvious choice here. It redirects the malware's attempt to connect to the C&C server to a benign destination, effectively blocking the connection.

upvoted 0 times