Sign in Subscribe
By Robert Katic in What is XAV?

What is a XAV Platform?

What is a XAV Platform?

Cross-Agent Verification (XAV) platforms are a new way to verify that the agents meant to protect and manage your endpoints are actually there: installed, healthy, updated, and reporting.

In most IT and security environments every device is expected to run a long list of agents: your XDR, RMM, MDM, Log collector, Remote control client, DNS filter, patching tool, and more. Each of those platforms collect data about their own coverage, but none of them can easily and verifiably see the full picture. That’s where a XAV comes in.

The problem: false confidence in agent coverage

Most teams assume that if their RMM or MDM shows “installed” for one of their agents, everything is fine. In reality however agents go dark, fail to update, or silently stop checking in.

Common examples:

  • A device was reimaged, but the EDR didn’t reinstall.
  • A VPN-only laptop hasn’t synced to your internally hosted service in weeks.
  • An MDM shows “compliant”, but the local Defender service is disabled.

Every agent you add to your environment introduces another set of potential blind spots and most organizations don’t know how many they have.

What Cross-Agent Verification does

Cross-Agent Verification (XAV) solves this by correlating device identity across all your agent platforms. It continuously compares what each system claims against what others observe.

In short, XAV:

  1. Aggregates data from multiple agent platforms (XDRs, RMMs, MDMs, DNS filters, etc.) via API.
  2. Normalizes and correlates device identity, so “LAPTOP-123” detected on both your XDR and RMM are now correlated in an internal database (in example).
  3. Verifies cross-presence: if a device is seen in one platform then it should appear in others, as defined by requirements set by your IT team.
  4. Highlights stale, missing, or conflicting data so your IT and Security teams can take action before it becomes an incident.

Think of it as a coverage auditor that checks your checkers.

Why it’s important

In today’s security landscape, unless your confident you've got every edge case covered, agent gaps don’t announce themselves.
A single unmanaged laptop can undo the work of an entire SOC — and those gaps are usually caused by simple visibility drift.

Without a XAV:

  • Security teams rely on manual exports and spreadsheets to reconcile device lists.
  • Coverage reports are often built from manual exports or ad-hoc queries. They’re accurate for a moment, then drift as devices change.
  • Teams waste cycles writing custom PowerShell or Bash scripts to “double-check” their data and create overhead on devices.

With a XAV:

  • Coverage is measured continuously, directly from the sources themselves.
  • Agent telemetry and health states are stored in a live database, creating a permanent, query-able record of your fleet’s coverage.
  • Blind spots appear as data anomalies immediately.
  • You get a true, unified view of which agents are healthy, stale, or missing across every platform.

Why RMMs and MDMs aren’t enough

RMMs and MDMs are excellent at managing what they can see. But they’re self-referential — they only know about devices that are already enrolled.

If an endpoint agent loses contact, or is missing from the RMM/MDM entirely, or simply doesn't cover an edge case of why an agent might go dark, there’s no internal mechanism to detect that absence.

Each is a silo, and each assumes it’s the source of truth.
XAV connects those silos and exposes the overlaps and gaps.

How a XAV fits into your stack

Cross-Agent Verification doesn’t replace your RMM, XDR, or MDM, it gives you proof they're doing their job.

  • Your XDR focuses on threats.
  • Your RMM focuses on management.
  • Your MDM focuses on compliance.
  • Your XAV focuses on assurance: confirming that the above layers are present, functional, and aligned.

It’s the meta-layer of endpoint visibility — the trust fabric for all the tools that keep your fleet secure.

Why we built Fieldmark XAV

At Fieldmark.io, we built the first platform purpose-built for Cross-Agent Verification.

The idea came directly from lived pain — I’ve spent years as a systems administrator, reconciling agent coverage across devices.

Even with the best tools in place there is always uncertainty, were agents truly deployed everywhere? Were the scans up to date? How many devices had quietly drifted out of coverage without anyone noticing?

Fieldmark was built to end that uncertainty.

It continuously aggregates data from your existing systems to give you a single, reliable view of endpoint coverage.

  • Audit coverage across XDR, RMM, MDM, and DNS platforms.
  • Detect silent failures before they turn into incidents.
  • Guide remediation by knowing exactly which endpoints are missing which agents.
  • Maintain historical context — every change, every drift, every update is recorded automatically.

No more spreadsheets. No more guesswork. No more custom scripting.
Just clear, continuous assurance that every device is protected and managed as intended — the kind of visibility I always wished existed.

The bottom line

Cross-Agent Verification (XAV) is to endpoint assurance what SIEM was to logs — a unifying layer that turns fragmented data into visibility and trust.

Your tools already collect the signals. Fieldmark XAV finally connect them.

Robert Katic - Founder, Fieldmark.io

Subscribe to Fieldmark XAV

Don’t miss out on the latest issues. Sign up now to get access to the library of members-only issues.
jamie@example.com
Subscribe