SC-200 • Mock Exam 76
Free SC-200 mock exam — 25 questions with explanations. Set 76. No signup required.
Your organization uses Microsoft Sentinel with the Microsoft 365 Defender connector. You are hunting for a threat that uses 'process hollowing' to evade detection. Which advanced hunting query in Microsoft Defender for Endpoint would be most effective?