Traditional Anti Virus vs an EDR Solution
An antivirus program is a type of software that is designed to prevent, detect, and remove malware infections on individual computing devices. This type of program is typically installed on a single computer and is used to scan that computer’s files and system for any signs of malware. If a malware infection is detected, the antivirus program will attempt to remove it and restore the computer to a healthy state.
An EDR, or endpoint detection and response, solution is a type of security program that is designed to provide broader protection for an entire network of computers. Rather than being installed on individual computers, an EDR solution is typically installed on a central server and is used to monitor the entire network for signs of malware infections or other security threats. In addition to detecting and removing malware, an EDR solution also typically provides other security features, such as the ability to block malicious network traffic and to provide real-time visibility into the network’s security posture.
In short, an antivirus program is designed to protect a single computer, while an EDR solution is designed to protect an entire network.