ADR vs. EDR: Why EDR Isn’t Enough in the AI Era
2026.08.19 Raven.io-LandingPage-1540x660

Sponsored By:

Logo Black 1
Wednesday, August 19th

11 am ET

EDR changed how security teams detect and respond to threats on endpoints. But EDR was originally designed for laptops, desktops, and traditional endpoint activity - not for understanding what is happening inside modern applications, cloud workloads, containers, dependencies, and server-side runtime environments.

Today’s attackers are increasingly targeting the application layer, where traditional endpoint and perimeter tools often lack the context to see exploit paths, vulnerable library execution, CVE-less attacks, and zero-day behavior. That is why Application Detection and Response, or ADR, is quickly becoming one of the hottest topics in security.

Join Raven CEO and Co-Founder Roi Abitboul, Chief Research Officer and Co-Founder Omer Yair, and Futurum’s Fernando Montenegro for a practical discussion on ADR vs. EDR.

We will cover:

  1. How ADR differs from EDR: Understand why EDR is powerful for endpoint detection, but was not built to provide deep visibility into server-side application behavior, runtime code execution, dependencies, and business logic.

  2. Why application runtime visibility matters now: Learn how attackers are moving deeper into applications, cloud workloads, open-source packages, and AI-driven development environments and why security teams need visibility beyond the endpoint.

  3. How ADR improves SOC investigations and AI-driven response: Explore how runtime application visibility gives SOC teams and AI systems the context they need to triage alerts faster, understand exploitability, reduce noise, and resolve cases with greater speed and accuracy.

  4. Where ADR fits in the existing security stack: See how ADR complements EDR, WAF, SCA, CNAPP, SIEM, and other security tools rather than replacing them.

  5. How to evaluate ADR for your organization: Walk away with practical criteria for assessing ADR solutions, including deployment model, runtime context, alert fidelity, integrations, ownership, and operational impact.



Register Below:

We'll send you an email confirmation
Roi Headshot-modified

Roi Abitboul

CEO and Co-Founder - Raven.io

 Chief Executive Officer, Roi Abitboul previously co-founded Javelin Networks, a pioneering Active Directory security company acquired by Symantec, where he also served as VP of Engineering. Roi also served for eight years in the Israeli Defense Force, where he gained invaluable experience and honed his skills in advanced cybersecurity operations. 

Omer-modified

Omer Yair

Chief Research Officer and Co-Founder - Raven.io

 Chief Research Officer, Omer Yair served in the elite intelligence unit 81 of the Israeli Defense Force and as the Endpoint Architect at Symantec's endpoint division. While his 25 years career spread among different fields from medical imaging to cyber security, he kept his focus on low level and the interaction of the code, OS and the hardware. 

Screenshot 2026-03-25 at 12.01.14 PM-modified

Fernando Montenegro

Vice President and Practice Lead, Cybersecurity - Futurum

Fernando Montenegro serves as the Vice President & Practice Lead for Cybersecurity & Resilience at The Futurum Group. In this role, he leads the development and execution of the Cybersecurity research agenda, working closely with the team to drive the practice’s growth. His research focuses on addressing critical topics in modern cybersecurity. These include the multifaceted role of AI in cybersecurity, strategies for managing an ever-expanding attack surface, and the evolution of cybersecurity architectures toward more platform-oriented solutions.

Before joining The Futurum Group, Fernando held senior industry analyst roles at Omdia, S&P Global, and 451 Research. His career also includes diverse roles in customer support, security, IT operations, professional services, and sales engineering. He has worked with pioneering Internet Service Providers, established security vendors, and startups across North and South America.

Fernando holds a Bachelor’s degree in Computer Science from Universidade Federal do Rio Grande do Sul in Brazil and various industry certifications. Although he is originally from Brazil, he has been based in Toronto, Canada, for many years.



Alan_20Shimel_202024 (3)

Alan Shimel

Founder & CEO - Techstrong Group

 Alan is founder, CEO & editor-in-chief of Techstrong Group, the company behind DevOps.com, Container Journal, Security Boulevard and Digital Anarchist, as well as co-founder of the DevOps Institute. As such, he is attuned to the world of technology, particularly cloud, DevOps, security and open source. With almost 30 years of entrepreneurial experience, Alan has been instrumental in the success of several organizations. He is an often-cited personality in the security and technology community and is a sought-after speaker at industry and government conferences and events. In addition to his writing, his DevOps Chats podcast, DevOps TV and Digital Anarchist audio and videos are widely followed. Alan attributes his success to a combination of a strong business background and a deep knowledge of technology. His legal background, long experience in the field and New York street smarts combine to form a unique personality. He is a graduate of St. John's University with a Bachelor of Arts in Government and Politics, and holds a JD degree from NY Law School.