Black Friday Special Limited Time Flat 70% Discount offer - Ends in 0d 00h 00m 00s - Coupon code: 70spcl

Activedumpsnet Logo
  1. Home
  2. Fortinet
  3. NSE 5 Network Security Analyst
  4. NSE5_EDR-5.0 - Fortinet NSE 5 - FortiEDR 5.0 Exam

Fortinet NSE5_EDR-5.0 Fortinet NSE 5 - FortiEDR 5.0 Exam Exam Practice Test

Page: 1 / 3
Total 30 questions
Get NSE5_EDR-5.0 Full Access Download NSE5_EDR-5.0 PDF

Fortinet NSE 5 - FortiEDR 5.0 Exam Questions and Answers

Question 1

Refer to the exhibit.

Question # 1

Based on the threat hunting event details shown in the exhibit, which two statements about the event are true? (Choose two.)

Options:

A.

The PING EXE process was blocked

B.

The user fortinet has executed a ping command

C.

The activity event is associated with the file action

D.

There are no MITRE details available for this event

Question 2

Refer to the exhibit.

Question # 2

Based on the threat hunting query shown in the exhibit which of the following is true?

Options:

A.

RDP connections will be blocked and classified as suspicious

B.

A security event will be triggered when the device attempts a RDP connection

C.

This query is included in other organizations

D.

The query will only check for network category

Question 3

Refer to the exhibit.

Question # 3

Based on the event shown in the exhibit, which two statements about the event are true? (Choose two.)

Options:

A.

The NGAV policy has blocked TestApplication exe

B.

TestApplication exe is sophisticated malware

C.

The user was able to launch TestApplication exe

D.

FCS classified the event as malicious

Question 4

Exhibit.

Question # 4

Based on the event shown in the exhibit which two statements about the event are true? (Choose two.)

Options:

A.

The device is moved to isolation.

B.

Playbooks is configured for this event.

C.

The event has been blocked

D.

The policy is in simulation mode

Load More NSE5_EDR-5.0 Questions 
Page: 1 / 3
Total 30 questions
Get NSE5_EDR-5.0 Full Access Download NSE5_EDR-5.0 PDF