Professional Documents
Culture Documents
PSE Endpoint Paloaltonetworks
PSE Endpoint Paloaltonetworks
Test Questions
Question 1 of 25.
Which of the following activities shouldn't be highlighted during the Traps demonstration?
Question 2 of 25.
Which is the correct description for the Traps Management Service Security Event Log?
Question 3 of 25.
Question 4 of 25.
Which of the following skills exceed your expectations as a PSE Endpoint Associate certified person?
Question 5 of 25.
Choose right or wrong:Wildfire detects malware using both static and dynamic analysis mechanisms.
True False
® 0
Question 6 of 25.
Which of the following describes the characteristics of the malware executable? (Please select two.)
Question 7 of 25.
Which of the following exception types is not valid in the Traps management service?
0 Support Excepit on
0 Hash Exception
0 Process Exception
® Administrator Exception
Question 8 of 25.
0 Logic flaws
® exploit protection modules (EPM)
0 Memoo1corruption
0 malware protection modules (MPM)
Question 9 of 25.
Question 10 of 25.
Which of the two locations will Traps forward logs to? (Please select two.)
0 FTP server
@ Panorama
0 Next generation firewall
@ syslog server
0 SNMP Trap
0 Local analysis is done for all decisions in the executable, even if WildFire decisions are present.
0 If the executable is determined to be unknown or not connected, alocalanalysis will be performed.
0 Palo Alto Networks uses large datasets to createlocalanalyses.
® Traps endpoint agent soflware builds a local analysis model based on the detected executables.
Question 12 of 25.
Which of the following statements is correct when a user receives an emailwith an attached file containing an exploit?
Question 13 of 25.
Question 14 of 25.
0 The ESM server sends the hash of the fli e directly to the Palo Alto Networks firewall.
0 Information about threats has been uploaded to the Traps agent.
0 The Traps endpoint sends threat signatures directly to the Palo Alto Networks firewall.
® Endpoints are someit mes used outside the boundaries of corporate networks.
Question 15 of 25.
Which of the following is correct about the scans in the Traps Management Service?
Question 16 of 25.
Question 17 of 25.
0 Traps moves malware fromlocalfolders or from removable hard drives to ESM censored folders.
0 Traps moves malware fromlocalfolders or removable hard drives to the ESM Quarantine Server.
® File restoration can be done via the Traps agent console.
0 Traps moves malware fromlocalfolders or from removable hard drives to localquaranit ne folders.
Question 18 of 25.
Which two attack vectors (routes) can Traps protect? (Please select two.)
Question 19 of 25.
Question 20 of 25.
0 https://services.paloaltonetworks.com
0 https://portal.paloaltonetworks.com
0 https://csp.paloaltonetworks.com
® https://apps.paloaltonetworks.com
Question 21 of 25.
Question 22 of 25.
0 When the Traps agent attempts to access a file for determination, if the active ESM server is unavailable, tile file status is registered as safe.
0 The judgment oflocalanalysis has priori/ over the judgment of WildFire.
® End users can use the Traps console to override the malware verdict.
0 If the active ESM server tries to contact WlidFire for a decision and WildFire is not available, tile endpoint gets the decision from local parsing.
Question 23 of 25.
Which Palo Alto Networks cloud service is used by the Traps management service?
0 Magnifier service
® Directory synchronization service
0 Reporting service
0 Domain name service
Question 24 of 25.
What are the three types of files Traps sends to WildFire for malware analysis? (Please select three.)
Question 25 of 25.
0 The ESM server sends the hash of the PDF file to WildFire.
0 WildFire automatically updates the EMS server cache daliy with hashes of known files from other customers.
0 The ESM server sends hashes of PDF fli es and MS Office files to tile local cache folder.
® The Traps agent caches the hash of the determined executable file.