Exam SPLK-5002 Topic 1 Question 17 Discussion

Actual exam question for Splunk's SPLK-5002 exam
Question #: 17
Topic #: 1
In Enterprise Security, what is the name of the threat intelligence lookup pertaining to files?

Suggested Answer: B Vote an answer

In Splunk Enterprise Security, the file_intel lookup is used for threat intelligence related to files, such as file hashes or suspicious file indicators. This lookup allows correlation searches and risk scoring to incorporate known malicious file information.

by Joanna at Feb 22, 2026, 06:15 AM

Limited Time Offer

15%

Off

Get Premium SPLK-5002 Questions as Interactive Self Test Engine or PDF

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Nick name: Submit Cancel
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
0
0
0
10