You need to have the ability to monitor suspicious VBA macros. Which Sensor Visibility setting should be turned on within the Prevention policy settings?
You need to have the ability to monitor suspicious VBA macros. Which Sensor Visibility setting should be turned on within the Prevention policy settings?
To monitor suspicious VBA macros, the correct Sensor Visibility setting to enable is Script-based Execution Monitoring. This setting allows the monitoring of scripts and macros, including VBA macros, which are often used to execute malicious code.
Correct is Script-based Execution Monitoring, I checked the Falcon Documentation Turn on the Script-Based Execution Monitoring prevention policy setting to enable the "Falcon sensor to monitor the contents of scripts and shells that are popular mechanisms for executing malicious code on hosts. This setting does not kill or block scripts." Scripting languages: Excel 4.0 macros JScript VBA Macros VBScript
Script-Based Execution Monitoring For hosts running Windows 10 and Servers 2016 and later, provides visibility into suspicious scripts and VBA macros in Office documents. Requires Quarantine & Security Center Registration toggle to be enabled.
A is correct, Checked through documentation and course slides.
A is correct
A is correct.