nerdexam
Palo_Alto_Networks

XSOAR-ENGINEER · Question #23

XSOAR-ENGINEER Question #23: Real Exam Question with Answer & Explanation

The correct answer is B. Enhancement script C. Integration command. An enhancement script can be used to automatically act on extracted indicators (such as IPs), and it can call an integration command to execute a search on a remote SIEM. Together, they enable automated enrichment or investigation workflows directly tied to indicator extraction.

Question

Which two features can be used together to automatically execute a search on a remote SIEM for extracted IP Indicators? (Choose two.)

Options

  • AReputation script
  • BEnhancement script
  • CIntegration command
  • DFeed-triggered job

Explanation

An enhancement script can be used to automatically act on extracted indicators (such as IPs), and it can call an integration command to execute a search on a remote SIEM. Together, they enable automated enrichment or investigation workflows directly tied to indicator extraction.

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full XSOAR-ENGINEER Practice