XDR Evaluator
Extended Detection and Response (XDR) with the number of products, frameworks, and rules repositories on the market can be tough to meaningfully evaluate. Particularly in the context of security operations where teams have diverse backgrounds and like avalanche preparedness, it’s very easy to have the appearance of looking fine. All this before considering AI/ML powered options.
Our approach uses a combination of Game Theory and Monte Carlo strategies to make a multi-point evaluation of the entire system from identification to lessons learned. We include points like return on investment for individual alerts and the system as a whole, performance against known baselines and so on.
There’s 4 questions below. You’ll also need a CSV or JSON file with names of individual detections, alert counts and false positive counts.
We’ll use the data for running a simulation, stored on our GDrive, and delete it afterwards. If you’d like other arrangements reach out and we make it work.