Endpoint Detection and Response (EDR) is a security technology that monitors endpoint activity—such as processes, file changes, network connections, and memory operations—to detect, investigate, and respond to threats. EDR tools provide telemetry, behavioral analytics, alerting, and remote response actions such as host isolation, process killing, and forensic collection.