Extended detection and response (XDR[1][2][3]) is a cybersecurity technology that monitors and mitigates cyber security threats.
Typically, it is deployed by organizations with smaller security teams.The system works by collecting and correlating data across various network points such as servers, email, cloud workloads, and endpoints.
[9] The data is then analyzed and correlated, lending it visibility and context, and revealing advanced threats.
Thereafter, the threats are prioritized, analyzed, and sorted to prevent security collapses and data loss.
It is an alternative to reactive endpoint protection solutions, such as EDR and network traffic analysis (NTA).