Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

CrowdStrike Exam CCFH-202 Topic 9 Question 33 Discussion

Actual exam question for CrowdStrike's CCFH-202 exam
Question #: 33
Topic #: 9
[All CCFH-202 Questions]

What kind of activity does a User Search help you investigate?

Show Suggested Answer Hide Answer
Suggested Answer: B

User Search is an Investigate tool that helps you investigate a list of process activity executed by the specified user account. It shows information such as process name, command line, parent process name, parent command line, etc. for each process that was executed by the user account on any host in your environment. It does not show a history of Falcon UI logon activity, a count of failed user logon activity, or a list of DNS queries by the specified user account.


by Clay at Oct 21, 2024, 12:26 PM

Limited Time Offer

25%

Off

Get Premium CCFH-202 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Kathrine
3 months ago
Option C is a bit too narrow in my opinion. I'd want a more comprehensive list of user actions, not just failed logins.
upvoted 0 times
Jarvis
2 months ago
D) A list of DNS queries by the specified user account
upvoted 0 times
...
Daniel
2 months ago
B) A list of process activity executed by the specified user account
upvoted 0 times
...
Mee
2 months ago
A) A history of Falcon Ul logon activity
upvoted 0 times
...
...
Filiberto
3 months ago
Haha, Option A is clearly a trick answer. Who cares about Falcon UI login history when we're trying to investigate user activity?
upvoted 0 times
Vincenza
2 months ago
I see your point, but Option D might also provide valuable information about user activity.
upvoted 0 times
...
Rosina
2 months ago
I think Option C could also be useful to track failed logon attempts.
upvoted 0 times
...
Ahmad
2 months ago
Yeah, Option A seems like a distraction from the main goal.
upvoted 0 times
...
Johanna
2 months ago
I agree, Option B is the most relevant for investigating user activity.
upvoted 0 times
...
...
Avery
4 months ago
Hmm, I'm torn between B and C. Both sound like they could be useful for user activity investigations. Might need more context to decide.
upvoted 0 times
...
Tyra
4 months ago
I think Option D is the way to go. Tracking DNS queries by user could be really useful for investigating their activity.
upvoted 0 times
...
Elli
4 months ago
Option B seems the most relevant to me. A user search should provide details on the processes executed by a specific user account.
upvoted 0 times
Norah
3 months ago
That information can give us valuable insights into what the user has been doing.
upvoted 0 times
...
Lindsey
3 months ago
It's important to know the list of process activity executed by the specified user account.
upvoted 0 times
...
Staci
3 months ago
I agree, option B is definitely the most relevant for investigating user activity.
upvoted 0 times
...
...
Phillip
4 months ago
I agree with Ashley, because it can provide valuable insights into user behavior and potential security issues.
upvoted 0 times
...
Ashley
4 months ago
I think a User Search helps investigate B) A list of process activity executed by the specified user account.
upvoted 0 times
...

Save Cancel