You are viewing an old version of this page. View the current version.
Compare with Current
View Page History
« Previous
Version 12
Next »
This group includes tags that start with the level edr. These tags identify data generated by Endpoint Detection and Response (EDR) systems.
| Company | Product / service | Valid tags |
|---|
| Carbon Black Endpoint Detection and Response | edr.carbonblack.alertedr.carbonblack.binaryedr.carbonblack.feededr.carbonblack.ingressedr.carbonblack.watchlist
|
| Crowdstrike Endpoint Detection & Response | edr.crowdstrike.cannon
edr.crowdstrike.cannon.asepvalueupdate
edr.crowdstrike.cannon.channelversionrequired
edr.crowdstrike.cannon.dnsrequest
edr.crowdstrike.cannon.endofprocess
edr.crowdstrike.cannon.neighborlistip4
edr.crowdstrike.cannon.networkconnectip4
edr.crowdstrike.cannon.other
edr.crowdstrike.cannon.processrollup2
edr.crowdstrike.cannon.processrollup2stats
edr.crowdstrike.cannon.sensorheartbeat
edr.crowdstrike.cannon.syntheticprocessrollup2
|
| Cylance PROTECT | edr.cylance.appedr.cylance.auditedr.cylance.deviceedr.cylance.memoryedr.cylance.scriptedr.cylance.threats
|
| Fireeye Endpoint Detection & Response | |
| Minerva Labs anti-evasion platform | |
| ObserveIT Insider Threat Detection | |
| Palo Alto Cortex XDR | edr.paloalto.cortex_xdredr.paloalto.cortex_xdr_agent
|
| Symantec Endpoint Detection & Response | |
