Thanks for the details .. can we have a list that compares the differences of data that been collected from endpoints in EDR agent vs SIEM agent ? I wonder in modern SOC does we need to install 2 agents in each point-point (one for EDR and one for SIEM) or one agent and have EDR/SIEM as one server is the right approach ?
Lately siem agents have developed capability similar to EDR agents, however which one or both need to be installed will depend on organisational policy, security strategy and requirements.
beautifully explained, clear and to the point. thank you!
Glad it was helpful!
Relatable content 👏🏻Waiting for next videos about rules ,detection example.
amazing content. keep posting more.
Excellent and perfect explanation. Thanks buddy
Awesome explanation as always!
Thank you so much, your video are the best!
Good one
Thankyou for such an amazing video
very good explanation
Thanks for liking
Thanks for the details .. can we have a list that compares the differences of data that been collected from endpoints in EDR agent vs SIEM agent ? I wonder in modern SOC does we need to install 2 agents in each point-point (one for EDR and one for SIEM) or one agent and have EDR/SIEM as one server is the right approach ?
Lately siem agents have developed capability similar to EDR agents, however which one or both need to be installed will depend on organisational policy, security strategy and requirements.
You are amazing
Great
Good explanation Thanku so much , but need some more diagrams to understand the actual flow chart and hierarchy
Are you offering any course on SOC?
ua-cam.com/video/EhaoGqgcNME/v-deo.html
Is EDR role very stressful when it comes to remediation & response?
Sir please make a video and define EDR,XDR,and MDR and both are different
Hi @Turt Akash this might help ua-cam.com/video/mr-PXJ0CsZ8/v-deo.html