The Traps agent protects Linux servers by preventing attackers from leveraging software exploits or vulnerabilities to compromise an endpoint. The Traps agent enforces your organization’s security policy as defined in Cortex XDR. When a security event occurs on an endpoint, Traps collects forensic information about that event which you can use to analyze the incident further.