What is Samurai XDR?
Samurai XDR is a vendor-agnostic, cloud native, scalable, API-driven, advanced threat detection, and response platform. The platform is used to deliver the Managed Detection and Response (MDR) service and XDR SaaS.
What is the XDR Application?
The Samurai XDR application is a workbench that enables you to detect advanced threats, investigate and automate actions.
Who uses the XDR application?
Different teams or individuals may use the application based on their specific areas of responsibility. The application is typically used by security analysts within SecOps (Security Operations) teams to manage, detect and respond to threats to their organization. It may also be used by other teams to integrate telemetry sources and view security related information.
Why use the XDR Application?
Once you have integrated your telemetry sources there are specific features available which allow you to review alerts and carry out investigations in order to determine and prioritize any potential threats, see useful links below covering each feature:
For Managed Detection and Response (MDR) clients, the XDR application is available for you to view alerts and create your own investigations, however this is not required as our MDR SOC analysts handle this on your behalf providing security incident reports. From the XDR application you can also access the Samurai Help Center to view reported security incident tickets and submit requests as needed.
For XDR SaaS clients the XDR application is self service, meaning you are responsible for alerts and investigations including any response actions required. From the XDR application you can also access the Samurai Help Center to submit requests as needed.
How do I get help?
Review our Getting Help guide for information. You may also wish to review our Support Policy.
If you have not already done so, the first place to start is by integrating your products with Samurai XDR - this may require a local collector deployed on your network. Review Samurai XDR Collectors to understand more!
Article is closed for comments.