In an industry desperate for objective efficacy testing performed with integrity, the introduction of the MITRE ATT&CK evaluation of endpoint detection and response (EDR) security products is a much-welcomed event. However, when MITRE published its results, it did so as a scientific data set, leaving security pros to interpret individual vendor performance on their own. This report is Forrester’s guide to understanding what each vendor’s MITRE ATT&CK evaluation results say about the competence of their offering’s ability to detect threats and enable response.