nerdexam
CrowdStrike

CCFR-201B · Question #38

CCFR-201B Question #38: Real Exam Question with Answer & Explanation

The correct answer is B. It takes you to the raw Insight event data and provides you with a number of Event Actions. See the full explanation below for the reasoning.

Question

What does pivoting to an Event Search from a detection do?

Options

  • AIt gives you the ability to search for similar events on other endpoints quickly
  • BIt takes you to the raw Insight event data and provides you with a number of Event Actions
  • CIt takes you to a Process Timeline for that detection so you can see all related events
  • DIt allows you to input an event type, such as DNS Request or ASEP write, and search for those

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full CCFR-201B Practice