BlackFriday 2024! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

CrowdStrike Exam CCFH-202 Topic 9 Question 33 Discussion

Actual exam question for CrowdStrike's CCFH-202 exam
Question #: 33
Topic #: 9
[All CCFH-202 Questions]

What kind of activity does a User Search help you investigate?

Show Suggested Answer Hide Answer
Suggested Answer: B

User Search is an Investigate tool that helps you investigate a list of process activity executed by the specified user account. It shows information such as process name, command line, parent process name, parent command line, etc. for each process that was executed by the user account on any host in your environment. It does not show a history of Falcon UI logon activity, a count of failed user logon activity, or a list of DNS queries by the specified user account.


by Clay at Oct 21, 2024, 12:26 PM

Limited Time Offer

25%

Off

Get Premium CCFH-202 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Avery
5 days ago
Hmm, I'm torn between B and C. Both sound like they could be useful for user activity investigations. Might need more context to decide.
upvoted 0 times
...
Tyra
6 days ago
I think Option D is the way to go. Tracking DNS queries by user could be really useful for investigating their activity.
upvoted 0 times
...
Elli
8 days ago
Option B seems the most relevant to me. A user search should provide details on the processes executed by a specific user account.
upvoted 0 times
...
Phillip
16 days ago
I agree with Ashley, because it can provide valuable insights into user behavior and potential security issues.
upvoted 0 times
...
Ashley
29 days ago
I think a User Search helps investigate B) A list of process activity executed by the specified user account.
upvoted 0 times
...

Save Cancel