Smartly Prepare Exam with Free Online CrowdStrike-IDP Practice Test

An attacker gains access to a workstation using valid credentials and attempts to escalate privileges and move laterally to other systems in the network. Which Falcon Identity Protection feature plays a crucial role in mitigating lateral movement within an organization after an initial compromise bypassing traditional MITRE ATT&CK vectors?

During a security review, a CrowdStrike Falcon Identity Threat Detection alert is triggered for a high-risk user attempting to access a sensitive application from an unusual geographic location. As a security analyst, you need to investigate the incident further using available pivots in the CrowdStrike console. Which of the following actions is the most appropriate first step for an identity-based investigation?

Your organization has recently experienced a series of phishing attacks targeting users in multiple domains. You are tasked with updating the "Goal" in the Domain Security Overview of CrowdStrike's Identity Protection platform to better address this threat. Which goal should you select?

An organization is implementing Falcon Identity Protection to enhance its security posture. Which of the following best describes how Falcon Identity Protection protects Active Directory (AD) environments?

An incident responder is reviewing several identity-based detections in CrowdStrike. One detection, "Multiple Failed Login Attempts from a Known Bad IP Address", was flagged on a domain administrator account. The responder wants to determine the potential severity and next steps. Which of the following types of information is least likely to be included in this detection?