XDDR - Extended Detection Defense and Response
Framework that Goes Beyond Traditional XDR by Implementing a Real Integrated Security Solution
Solution Advantages

XDDR - All about Synergy
XDDR directly integrates Sangfor and certain third party products together, allowing them to directly communicate with each other, extending and overlapping their spheres of influence. This allows an unprecedented correlation of anomalous behavior between endpoints and that seen on the network and in the cloud.

Product Overview
Sangfor XDDR is a framework that goes beyond traditional XDR by implementing a real integrated security solution, providing a holistic response to malware infections and APT breaches across the entire organization’s network, with ease of management, operation, and maintenance.
Solution Advantages
Multi-Dimensional Response
An example of XDDR synergy is between Sangfor Endpoint Secure and NGAF. Both Endpoint Secure and NGAF use the innovative Sangfor Engine Zero anti-malware analysis engines to detect and block APTs. Although Engine Zero has an extremely high detection success rate, it is still not 100% effective. No solution is. Thus, we consider anti-malware to be a “best effort.” Effective security is being prepared for “when” something gets through, and not “if” it gets through.
XDDR is 360 Degree Protection
- End-to-End Network Protection
- Uncovers hidden threat to on-site/remote employees
- Simplified SOAR
- Business Impact Analysis
XDDR Security Synergy
Security products have spheres of influence based on their function. Malware using Artificial Intelligence (AI) can exploit the gaps between the spheres of influence.
XDDR directly coordinates responses between Sangfor and some 3rd party products together, using Cyber Command to integrate threat information and orchestrating actions with each other, extending and overlapping their spheres of influence. This allows an unprecedented correlation of anomalous behavior between endpoints and that seen on the network and in the cloud.
Work from Anywhere Scenario Solutions

aDesk / HCI + Endpoint Secure
- Data never leaves the environment
- Good for medium to large organizations
- Good for smaller organizations especially with MSSP but may be expensive

Cyber Command + SD-WAN / NGAF SSLVPN + Endpoint Secure
More cost-effective option for smaller organizations or those not cloud ready

IAM + Endpoint Secure SWG/CASB
Endpoint risk analysis in addition to Authorization/Access control

Business Benefits
- Compliance auditing
- Ensures authorized users only
- Prevent data leakage
All it takes is One Breach
XDDR puts emphasis on the coordinated response, ready to contain and mitigate that one breach WHEN it happens.

Scheduled or on-demand endpoint Secure vulnerability scanning initiated by NGAF

Vulnerability Scan results sent back to NGAF for closed-loop patch

Real-time Threat Intelligence (TI) from cloud-based NeuralX recognizes malware

Network-Wide Threat Disposal allows the administrator to respond

Cyber Command for enhanced threat detection/response

NGAF integration can prevent malware from communicating

Enterprise asset tracking and rogue asset detection

Endpoint Secure Protect Agent Ransomware honeypot capability