XDR: Extended Detection and Response

Extended Detection and Response (XDR) is a security architecture that unifies telemetry from endpoint, network, cloud, email, and identity sources into a single platform, then applies correlated detection and automated response across all of those sources simultaneously.

Threat IntelligenceTIDThreatIntermediateCONFIDENTIAL1,891 words8 min readApr 7, 2026

Last updated Apr 11, 2026

CLASSIFICATION: CONFIDENTIAL

This article requires CONFIDENTIAL clearance or higher.

What you need

Create a free Nexus ID to access CDA proprietary content including PDM domain explainers, methodology deep-dives, and reconnaissance mission briefings.

Create Nexus ID (Free)

Also at this clearance level

Threat IntelligenceTIDThreatIntermediate

Table of Contents

XDR: Extended Detection and Response

What you need

Also at this clearance level

APT28 (Fancy Bear / Forest Blizzard)

Lazarus Group (HIDDEN COBRA / Diamond Sleet)

Salt Typhoon

Single Sign-On (SSO) Architecture

The Academy

The Command Post

The Armory