Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us[email protected]
Menu
Crowdstrike Discussions
exam questions

Exam CCFR-201 All Questions

View all questions & answers for the CCFR-201 exam
Go to Exam

Exam CCFR-201 topic 1 question 17 discussion

Actual exam question from CrowdStrike's CCFR-201
Question #: 17
Topic #: 1
[All CCFR-201 Questions]

Sensor Visibility Exclusion patterns are written in which syntax?

  • A. Glob Syntax
  • B. Kleene Star Syntax
  • C. RegEx
  • D. SPL (Splunk)
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by wildbandana at Dec. 18, 2023, 8:29 a.m.

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Submit Cancel
silva222222
6 months ago
View Link - Olha essa dica: https://www.examtopics.com/discussions/crowdstrike/view/96918-exam-ccfa-topic-1-question-51-discussion/
upvoted 1 times
alanalanalan
6 months ago
You gave couple different answers, you commented A and C, then now you just post a link, but not directly related. So what is the correct answer? That question is : Custom IOA rules are defined using which syntax? Don't waste your time, dude.
upvoted 1 times
...
...
alanalanalan
6 months ago
Selected Answer: A
Answer A, A. Glob Syntax Globs in the Falcon console Glob wildcards offer flexibility when file names and directory structures vary across multiple hosts. For example, wildcards can match partial file names or match file names regardless of what directory they’re in. Features that support globs: Prevention policy exclusions. For more info, see Understanding prevention policy exclusions. Falcon FileVantage file integrity monitoring rules and scheduled exclusions. For more info, see Falcon FileVantage. Falcon Firewall wildcard IFN rules. For more info, see Manage your firewall rules and rule groups. Falcon USB Device Control serial numbers used to create prevention policy exceptions. For more info, see USB Device Control. Reference : In 2024, the Advanced event search will use the CrowdStrike Query Language (CQL).
upvoted 2 times
...
alanalanalan
6 months ago
Answer A, A. Glob Syntax Globs in the Falcon console Glob wildcards offer flexibility when file names and directory structures vary across multiple hosts. For example, wildcards can match partial file names or match file names regardless of what directory they’re in. Features that support globs: Prevention policy exclusions. For more info, see Understanding prevention policy exclusions. Falcon FileVantage file integrity monitoring rules and scheduled exclusions. For more info, see Falcon FileVantage. Falcon Firewall wildcard IFN rules. For more info, see Manage your firewall rules and rule groups. Falcon USB Device Control serial numbers used to create prevention policy exceptions. For more info, see USB Device Control. Reference : In 2024, the Advanced event search will use the CrowdStrike Query Language (CQL).
upvoted 1 times
...
silva222222
6 months, 1 week ago
Selected Answer: A
Correct is A Correction: IOA = Regex Sensor Visibility = Glob Syntax
upvoted 2 times
...
silva222222
6 months, 1 week ago
Selected Answer: C
The correct answer for Sensor Visibility Exclusion patterns in Crowdstrike is: C. RegEx (Regular Expressions) https://www.crowdstrike.com/blog/tech-center/custom-ioas/
upvoted 1 times
...
Pipo12345
11 months ago
Selected Answer: A
It's A
upvoted 1 times
...
Acrby
11 months, 1 week ago
Selected Answer: A
Checked on UI
upvoted 2 times
...
wildbandana
11 months, 1 week ago
Selected Answer: B
checked in docs
upvoted 1 times
e6cb31b
6 months, 1 week ago
You’re on a mission!! Lmfaooo
upvoted 2 times
...
...

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel