XDR collects data from various devices and devices that make up IT systems, from endpoints (PCs and servers), networks, security devices and workloads on the cloud, and combines correlation analysis and machine learning to Help detect and respond to cyber threats that have entered your organization. XDR is a concept that combines multiple existing technologies.

It is an expansion and development of EDR, which specializes in responding to endpoints, and NDR, which specializes in networks. ” emerges as a single line along the time series. It also includes SIEM for integrated management of logs and SOAR for automating incident response, helping to make incident investigations and initial responses faster and more efficient.