XDR (Extended Detection & Response)

Definition

XDR extends EDR by integrating threat detection and response across multiple security layers: endpoints, network, cloud, and email. XDR correlates data from different sources for a holistic view of the attack.

Where EDR is limited to endpoints, XDR looks across the entire IT environment. XDR combines data from EDR, firewall, email security, cloud environments, and more.

Related terms

EDR (Endpoint Detection & Response) MDR (Managed Detection & Response) SIEM (Security Information and Event Management)
← Back to glossary