ZADIG: A novel Extended Detection and Response System

This paper introduces ZADIG XDR, an innovative Extended Detection and Response system designed to enhance real-time anomaly detection, response, and prevention. Using advanced artificial intelligence and machine learning techniques, the system is able to evaluate anomalous events and predict their recurrence. ZADIG XDR's modular architecture allows for extensive customization, supporting targeted and effective protection. The system's efficient proprietary data ingestion pipeline, based on multiple tools such as Zeek, Kafka, Logstash, ElasticSearch, and a fork of LoudML: ZADIG AI, maintained by bitCorp, automates data collection, processing, and storage, ensuring seamless integration of multiple sources for in-depth security analysis. ZADIG XDR's robustness and flexibility in detecting anomalies and mitigating advanced cyber threats are then demonstrated through a simulation of multiple attack scenarios: Man-in-the-Middle, Denial of Service, and Scanning attacks.