DASHBOARD

Question 1

What does the Endpoint Security module do?

Answer 1

-Provides info about incidents, detection & prevention activities found by Falcon sensors

**Detections are triggered from prevention policies

Question 2

What does the Cloud Security module do?

Answer 2

Registers cloud accounts and sets cloud policies

Question 3

What does Identity Protection module do?

Answer 3

-Monitors network traffic to build user behavioral profiles and identifies unusual behavior

-Enables frictionless Zero Trust Security w/ real-time threat prevention and IT policy enforcement

*Falcon identity threat detection or falcon identity threat protection subscription needed

Question 4

What does the spotlight module do?

Answer 4

-Identifies vulnerabilities on Windows and Linux hosts
Helps the team proactively patch vulnerable hosts, reducing team falcons attack surface and lowering risk profile

*Falcon insight add on

Question 5

What does the discover module do?

Answer 5

-Provides deep visibility into the apps used in your environment
Information helps you determine:
-whether or not approved apps are being used
-which device may not have a sensor installed on them
-which users have administrator access

*falcon insight add-on

Question 6

What does the FileVantage module do?

Answer 6

-Helps with industry compliance

*May need to modify host groups to create file integrity policies

Question 7

What does the Threat Intelligence module do?

Answer 7

-provides reports, feeds, alerts, and data to subscribers of CS intelligence products (Falcon X)

*Falcon prevent add on

Question 8

What does the investigate module do?

Answer 8

-gives access to several reports and queries. Allows a deeper dive into event data that is captured by the sensor

Question 9

What does the dashboards & reports module do?

Answer 9

-gives a graphical view into data sets that matter most

Question 10

What does the Host setup and management module do?

Answer 10

-set up and manages the orgs defenses w/ host groups, sensor, and response policies, user, and user permissions

Question 11

What does the crowdstrike store module do?

Answer 11

-A marketplace that allows you to try out new apps in your environment

Question 12

What does the audit logs module do?

Answer 12

-audits various activites within the falcon console

Question 13

Which icon allows you to choose a “Stay signed in” option to stay logged into the activity dashboard until the borrower is restarted?

Answer 13

-Settings

Question 14

What does the Support and resources module do?

Answer 14

-P rovides access to all CS product documentation and a variety of tools

Question 15

This module can be used as an auditing tool to find gaps in defenses that may need new policies..

Answer 15

Endpoint Security module

Question 16

This module can be used to install patches for vulnerabilities on your hosts with the appropriate roles

Answer 16

spotlight module

Question 17

This module can be used to learn how policies need to be modified by finding assets that are unmanaged or unsupported

Answer 17

discover module

Question 18

This module can set up prevention policies that automatically submit files to falcon X

Answer 18

threat intelligence

Question 19

This module can be used to conduct proactive hunting and as an auditing tool

Answer 19

investigate module

Question 20

Use this module to setup sensors, create workflows using falcon fusion, and manage installation tokens

Answer 20

Host setup and management module

Question 21

This module can use the executive summary dashboard to find sensors that have become inactive

Answer 21

dashboards & reports module

Question 22

Use this module to review logs, audit activity, and fine tune prevention policy settings

Answer 22

audit logs module

Question 23

As a falcon admin role, you can use this module to create, view, edit API clients and keys and can access the sensor unintaller

Answer 23

Support and resources module

Question 24

You need to create new users, host groups and prevention policies to protect your environment. Which 2 sections will you use to complete these tasks?

Answer 24

-endpoint security X

-Host setup and managementX