SC-200 Perform threat hunting • Set 2
SC-200 Perform threat hunting Practice Test 2 — 15 questions with explanations. Free, no signup.
During a threat hunt, you discover that a PowerShell script executed on multiple servers and established outbound connections to an external IP address. Which data source should you query in Microsoft Defender XDR to identify the specific command-line arguments used?