Endpoint Detection and Response

GPTKB entity

Statements (51)
Predicate Object
gptkbp:instanceOf cybersecurity technology
gptkbp:abbreviation gptkb:EDR
gptkbp:category incident response
threat detection
endpoint security
gptkbp:complement gptkb:fire
network security
identity and access management
gptkbp:component cybersecurity strategy
defense-in-depth
gptkbp:detects malware
insider threats
zero-day attacks
fileless attacks
gptkbp:enables compliance reporting
real-time monitoring
root cause analysis
threat hunting
automated containment
gptkbp:focusesOn endpoint devices
https://www.w3.org/2000/01/rdf-schema#label Endpoint Detection and Response
gptkbp:includes analysis
data collection
continuous monitoring
threat detection
automated response
gptkbp:marketedAs gptkb:CrowdStrike
gptkb:Sophos_Intercept_X
gptkb:Symantec
gptkb:McAfee
gptkb:Trend_Micro
gptkb:SentinelOne
gptkb:Microsoft_Defender_for_Endpoint
gptkb:Cisco_Secure_Endpoint
VMware Carbon Black
gptkbp:provides forensic analysis
incident response
alerting
threat intelligence
remediation tools
gptkbp:purpose detect cyber threats
respond to cyber threats
gptkbp:relatedTo gptkb:security
gptkb:XDR
SIEM
Managed Detection and Response
gptkbp:usedBy security operations centers
IT security teams
gptkbp:bfsParent gptkb:EDR
gptkb:Xcitium
gptkbp:bfsLayer 6