[OOTB] XDR package - ENG
<html lang="en">
<body>
  
  <p>
	The package contains a set of rules for detecting advanced attacks in the infrastructure. It can be used to detect not only attempts to use the most popular, according to Kaspersky MDR, vector for obtaining initial access - phishing, but also virus infections, attempts to bypass protection tools, deliver and launch payloads, persistence, reconnaissance, lateral movement techniques and communication with the control server in various ways. The rules work on events of Kaspersky Lab products such as KEDR, KSC, KSMG, and also use events of Microsoft Windows OS.
  </p>

</body>
</html>