Endpoint Detection and Response (EDR) is a cybersecurity technology that addresses the need for constant monitoring and response to advanced threats. It is a subset of endpoint security technology and a crucial piece of an optimal security posture. EDR is different from other endpoint protection platforms (EPP), such as antivirus (AV) and anti-malware. Its main focus is not to automatically stop threats in the pre-execution phase on an endpoint. Instead, EDR focuses on giving proper endpoint visibility with correct insights to help security analysts discover, investigate, and respond to advanced threats and broader attack campaigns stretching across multiple endpoints. Many EDR tools, however, combine EDR and EPP.