CrowdStrike
CCCS-203B · Question #218
CCCS-203B Question #218: Real Exam Question with Answer & Explanation
Sign in or unlock CCCS-203B to reveal the answer and full explanation for question #218. The question stem and answer options stay visible for context.
Question
You are creating a custom Indicator of Maliciousness (IOM) rule in CrowdStrike Falcon to block access to a specific malicious domain. Which of the following steps is correct for ensuring the IOM rule functions effectively?
Options
- ASelect the "Domain Name" condition type and specify the domain to block.
- BUse the "File Hash" condition type to specify the domain's IP address.
- CAdd the domain to the Global Allowlist to ensure it is blocked.
- DAssign the IOM rule a severity level of "Informational" to ensure it blocks the domain.
Unlock CCCS-203B to see the answer
You've previewed enough free CCCS-203B questions. Unlock CCCS-203B for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.