Introduction
Microsoft Defender XDR is an integrated threat protection suite with solutions that detect malicious activity across email, endpoints, applications, and identity. These solutions provide a complete attack chain compromise story that enables a complete understanding of the threat. And, enables you to remediate and protect your organization from future attacks.
In the sample attack chain graphic example, see the attacker activity visible to each Microsoft Defender XDR product.
You're a Security Operations Analyst working at a company that is implementing Microsoft Defender XDR solutions. You need to understand how Extended Detection and Response (XDR) combines signals from:
- endpoints
- identity
- applications
to detect and mitigate threats.