Refer to the exhibit.

You must configure the FortiGate connector to allow FortiSOAR to perform actions on a firewall. However, the connection fails. Which two configurations are required? (Choose two answers)
Review the incident report:
Packet captures show a host maintaining periodic TLS sessions that imitate normal HTTPS traffic but run on TCP 8443 to a single external host. An analyst flags the traffic as potential command-and-control. During the same period, the host issues frequent DNS queries with oversized TXT payloads to an attacker-controlled domain, transferring staged files.
Which two MITRE ATT & CK techniques best describe this activity? (Choose two answers)
Which three statements accurately describe step utilities in a playbook step? (Choose three answers)
Refer to the exhibit.

What is the correct Jinja expression to filter the results to show only the MD5 hash values?
{{ [slot 1]|[slot 2] [slot 3].[slot 4] }}
Select the jinja expression in the left column, hold and drag it to a blank position on the right. Place the four correct steps in order, placing the first
step in the first slot. Once you place an expression, you can move it again if you want to change your answer before moving to the next question. You
need to drop four jinja expressions in the work area.
Select and drag the screen divider to change the viewable area of the source and work areas.

Refer to this partial incident output:
Condition: if this pattern occurs within any 1800-second time window.
Host Interface Name: Red Hat VirtIO Ethernet Adapter
Recv Packet Errors: 0
Sent Packet Errors: 0
Recv Packet Discards: 37
Sent Packet Discards: 0
Recv Packet Error Pct: 0.00
Sent Packet Error Pct: 0.00
Recv Packet Discard Pct: 7.17
Sent Packet Discard Pct: 0.00
Avg Recv Interface Error: 0.00
Avg Sent Interface Error: 0.00
Avg Recv Interface Discard: 16.45
Avg Sent Interface Discard: 0.00
Which conclusion can you make about this incident? Choose one answer.
Refer to the exhibits.
You configured a spearphishing event handler and the associated rule. However. FortiAnalyzer did not generate an event.
When you check the FortiAnalyzer log viewer, you confirm that FortiSandbox forwarded the appropriate logs, as shown in the raw log exhibit.
What configuration must you change on FortiAnalyzer in order for FortiAnalyzer to generate an event?
What are three capabilities of the built-in FortiSOAR Jinja editor? (Choose three answers)
|
PDF + Testing Engine
|
|---|
|
$49.5 |
|
Testing Engine
|
|---|
|
$37.5 |
|
PDF (Q&A)
|
|---|
|
$31.5 |
Fortinet Free Exams |
|---|
|