Hi Kaspersky:
We are a small company and only have 2 IT engineers. Therefore, we use KES + EDR Optimum + MDR as our solution.
Next year we want one platform to monitor every endpoint security status.
1. Kaspersky XDR
I have read the datasheet of XDR. It seems like an unified platform to monitor everything.
In the datasheet, there is a quote: For advanced network management, KATA is an additional option.But the infrastructure shows that KATA will send information to XDR.
My questions are:
1. Is XDR a basic KATA or just KUMA system?
2. Is Kaspersky XDR like CrowdStrike Falcon platform, which approaches "Unified platform. Complete protection"?
2. KATA
Since we lack of IT engineer, there is no time to deal with incident by ourselves. That's the reason we use MDR.
But KATA has a lot of component like EDR Expert and additional sandbox function. We can test unknown threat by ourselves and have quick response.
My question is:
1. Does KATA like a small automatic analysis system of KSN? Therefore we can add IoC or YARA rule easily and quickly.
Because we just get a little information of Kaspersky XDR from local reseller. The product is too new and no Chinese version.
They will send detail information next year. I want to know in advanced so we can evaluate which product is suit for us.
Thank you.