No more typing reviews! Try our Samantha, our new voice AI agent.

Bitdefender GravityZone Extended Detection and Response (XDR) vs Trellix Active Response comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Sep 9, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cortex XDR by Palo Alto Net...
Sponsored
Ranking in Endpoint Detection and Response (EDR)
6th
Average Rating
8.4
Reviews Sentiment
6.8
Number of Reviews
114
Ranking in other categories
Endpoint Protection Platform (EPP) (4th), Extended Detection and Response (XDR) (4th), Ransomware Protection (2nd), AI-Powered Cybersecurity Platforms (1st)
Bitdefender GravityZone Ext...
Ranking in Endpoint Detection and Response (EDR)
30th
Average Rating
8.4
Reviews Sentiment
7.3
Number of Reviews
8
Ranking in other categories
Network Detection and Response (NDR) (13th), Extended Detection and Response (XDR) (27th)
Trellix Active Response
Ranking in Endpoint Detection and Response (EDR)
49th
Average Rating
7.0
Reviews Sentiment
5.1
Number of Reviews
5
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of July 2026, in the Endpoint Detection and Response (EDR) category, the mindshare of Cortex XDR by Palo Alto Networks is 3.6%, down from 3.9% compared to the previous year. The mindshare of Bitdefender GravityZone Extended Detection and Response (XDR) is 0.8%, up from 0.3% compared to the previous year. The mindshare of Trellix Active Response is 0.6%, up from 0.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Endpoint Detection and Response (EDR) Mindshare Distribution
ProductMindshare (%)
Cortex XDR by Palo Alto Networks3.6%
Bitdefender GravityZone Extended Detection and Response (XDR)0.8%
Trellix Active Response0.6%
Other95.0%
Endpoint Detection and Response (EDR)
 

Featured Reviews

ABHISHEK_SINGH - PeerSpot reviewer
Senior Process Expert at A.P. Moller - Maersk
Gained full visibility and streamlined threat detection through behavior-based insights and AI integration
Initially, we got to have a lot of false positives when we onboarded, but nowadays it's quite smooth. We have fine-tuned our security policies and allowed different levels of policies to get rid of those false positives. Currently, we are getting a fairly good amount of incidents that are not false positives or benign, but actionable items. The process is streamlined. In the initial days, the operations used to get involved in a lot of benign and other activities, but now the process is streamlined. We are leveraging the auto-detection and remediation plans. The operations teams are now more involved in other business roles as well, not just looking into the logs and fetching out what's happening there. They have fixed a lot of things. Initially, they didn't have IAC code drift detection, cloud posture management, or security posture management, but they have those now. They purchased different vendors and did a merger with that. They have now Prisma Cloud that gets integrated and now they are working with Cortex Cloud. Everything that was negative has now been addressed, and the product altogether looks to be in a very better and mature shape now. Currently, it's more or less detecting the workloads with AI-based best practices. Since most organizations are consuming AI agents and other things, we are looking forward to seeing what other feature enhancements Palo Alto can support in that.
reviewer2165952 - PeerSpot reviewer
Company Advisor
Automated protection has reduced our management time and keeps all client environments consistently secure
Reporting in Bitdefender GravityZone Extended Detection and Response (XDR) could be improved. It has some reporting in it, but it's a little cumbersome to work with, so the reporting that is there could be improved. The analytics dashboards of Bitdefender GravityZone Extended Detection and Response (XDR) are quite useful, and they are nice in that we can see an overview very quickly and drill down into specific issues or specific clients. The dashboards are quite good, though it would be nice if we had the same with automated reports. It would be much more useful for us to have that via email or having a report. The only downside that we find is that the product is a little bit slow.
ED
Senior Manager Operational Technology and Cyber Security at Eskom Ltd
Operational efficiencies increase with immediate threat alerts for endpoints
We use Trellix Active Response primarily for our endpoints, including desktop computers. It monitors all the tools that our users use for their day-to-day work The alerts provided by Trellix Active Response are its most valuable feature. They notify us immediately of any vulnerabilities on the…

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"We use Cortex XDR by Palo Alto Networks for its ability to detect based on behavior rather than simple virus scan to prevent malicious activities."
"Its ability to react to cyber data attacks is awesome. That is pretty much the use of it. What blows your mind is the ability to access your assets remotely and see what is actually going on with them. You can not only see them in a console. You can also react very rapidly to your assets that are compromised."
"The anti-exploit is impenetrable."
"Being a cloud solution it is very flexible in serving internal and external connections and a broad range of devices."
"The interface is easy to use and it is more up to date than our previous solution."
"It's a perfect solution. It integrates well into the environment."
"The dashboard is customizable."
"These days it's machine-learning technology and behavior-based analytics features that make us more secure."
"The quarantine computer functionality is very good for me."
"Bitdefender GravityZone Ultra Plus is highly stable."
"The best thing about Bitdefender is that it has got top-notch features and it is not tied to specific countries like some other antivirus tools."
"The best features in the product, as a reseller, are the integrated SOC; integration with a SOC is one of the advantages."
"The threat detection rates are exceptionally good, better than most of the competition."
"The product is easy to use."
"I find Bitdefender GravityZone Ultra Plus to be a pretty good solution for the mid-level market, specifically for organizations with up to two hundred fifty users. I like that it is an averagely priced solution. It also has a straightforward installation that can be completed within three to five minutes. Its technical support is also good enough."
"We moved from Sophos antivirus to Bitdefender GravityZone Extended Detection and Response (XDR), and ever since then, we've been very happy with the product."
"The continuous monitoring component of this solution allows Trellix to launch the MDR solution, which correlates all incidents and provides investigation reports within a short period of time, hence offering an advantage to the customers using Trellix Active Response and its integrated products."
"The alerts provided by Trellix Active Response are its most valuable feature."
"It's a little lighter compared to the older version, which was mostly signature-based."
"We are hoping to automate detection and response and take advantage of user behavior analytics, given that we are working from home. About half of our workers are still remote, so Active Response gives us that visibility and lets us automate a number of those events."
"The solution is scalable."
"With the ADR parts of it or the Active Response parts of it, we're able to get a little more information compared to the older version, such as analytics, user behavior analytics, triaging, and meaningful reporting."
 

Cons

"Cortex XDR by Palo Alto Networks is a very good product, but financially, it is very expensive, so the company should look into that area."
"I would like to see them include NDR (Network Detection Response). Then it would work well with SIEM Response."
"There are some default policies which sometimes affect our applications and cause them to run around. In the hotel industry, we use a different type of data versus Oracle and SQL. By default, there are some policies which stop us from running properly. Because of this, the support level is also not that strong. We have to wait to get a results."
"We had a problem with getting our older endpoints up to date, but their newest updates have been really good. I've been pleased with it in terms of what our needs are. It's doing what we want it to do."
"Limited remote connection."
"The solution should enhance the ADR and reporting."
"The technical support is not very good. I find the process difficult."
"Whenever the tool releases a new version when deploying the product across the organization, I feel like there are some disturbances in the CPU usage after upgrading the tool to the latest version."
"Detection and response is a disadvantage that could be improved."
"Reporting in Bitdefender GravityZone Extended Detection and Response (XDR) could be improved."
"Adding a feature like Data Loss Prevention would be beneficial."
"I would like automatic issue fixing for users without needing to physically open the PC. I'd prefer updates and fixes from the cloud to avoid headaches and save time."
"The solution must improve its management features."
"Some customers would like additional features that aren't available through the current GravityZone platform. Some feedback has been about the deletion of other software not going smoothly during the installation of Bitdefender, particularly the removal of previous software like Sophos."
"The solution seems to be pretty amateur for an EDR solution, and it should be more in sync in terms of features, with solutions such as FireEye and SentinelOne."
"I would rate technical support from Trellix Active Response as a seven because sometimes we face difficulties finding engineers quickly, leading to customer frustration."
"The truth, however, is that I was really looking for something much more advanced with user behavior analytics and some AI features that the other competitor's next-gen AV does offer."
"While the product is good, we are currently facing support issues."
"The only area for improvement is regarding operational technology devices, specifically the engineering automation systems."
"There are some components on the cloud that should also reside in the on-prem deployment models but don't."
"I also expected Active Response 's user interface to be much more analytical."
 

Pricing and Cost Advice

"Cortex XDR by Palo Alto Networks is an expensive solution."
"It's way too expensive, but security is expensive. You pay for your licensing, and then you pay for someone to monitor the stuff."
"I am using the Community edition."
"The price of the product is not very economical."
"I feel it is fairly priced."
"The pricing seems fair, and I do like the licensing model. You use wherever they are, and it is elastic."
"It is "expensive" and flexible."
"The price is on the higher side, but it's okay."
"Bitdefender GravityZone Ultra Plus is pretty average, meaning it's not cheaper, but it's pretty good. It has average pricing."
"We have purchased licenses for the use of Bitdefender GravityZone Ultra Plus. The price of the solution is reasonable but could be better."
"Our costs were somewhere around $600K in Trinidad dollars, which might be about $100K US. We have the ETP plus the EDR. Our recent renewal was 1800 licenses as opposed to the full amount. Our transaction cost was about $600K Trinidad dollars, which is somewhere around $90-100K US."
report
Use our free recommendation engine to learn which Endpoint Detection and Response (EDR) solutions are best for your needs.
902,988 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Construction Company
12%
Financial Services Firm
11%
Manufacturing Company
10%
Comms Service Provider
9%
Construction Company
14%
Comms Service Provider
13%
University
7%
Manufacturing Company
6%
Construction Company
18%
Financial Services Firm
18%
Comms Service Provider
12%
Performing Arts
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business46
Midsize Enterprise21
Large Enterprise53
By reviewers
Company SizeCount
Small Business6
Large Enterprise1
No data available
 

Questions from the Community

Cortex XDR by Palo Alto vs. Sentinel One
Cortex XDR by Palo Alto vs. SentinelOne SentinelOne offers very detailed specifics with regard to risks or attacks. ...
Comparing CrowdStrike Falcon to Cortex XDR (Palo Alto)
Cortex XDR by Palo Alto vs. CrowdStrike Falcon Both Cortex XDR and Crowd Strike Falcon offer cloud-based solutions th...
How is Cortex XDR compared with Microsoft Defender?
Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface,...
What is your experience regarding pricing and costs for Bitdefender GravityZone Ultra Plus?
The pricing and licensing of Bitdefender GravityZone Extended Detection and Response (XDR) is reasonable. We moved fr...
What needs improvement with Bitdefender GravityZone Ultra Plus?
Reporting in Bitdefender GravityZone Extended Detection and Response (XDR) could be improved. It has some reporting i...
What is your primary use case for Bitdefender GravityZone Ultra Plus?
Our customers typically use Bitdefender GravityZone Extended Detection and Response (XDR) primarily as an antivirus s...
What is your experience regarding pricing and costs for McAfee Active Response?
Based on our evaluations, Trellix Active Response's pricing was the most feasible from a cost perspective. I rate the...
What needs improvement with McAfee Active Response?
For Trellix Active Response, there is room for improvement in the platform area and security area to make the dashboa...
What is your primary use case for McAfee Active Response?
The typical use case for Trellix Active Response is to provide quick incident response, as the product collects and c...
 

Comparisons

 

Also Known As

Cyvera, Cortex XDR, Palo Alto Networks Traps
GravityZone Ultra Plus
McAfee Active Response
 

Overview

 

Sample Customers

CBI Health Group, University Honda, VakifBank
Archdiocese, Northstar, SeSa, W&W Informatik, Yamaha Motor Europe
Liquor Control Board of Ontario
Find out what your peers are saying about Bitdefender GravityZone Extended Detection and Response (XDR) vs. Trellix Active Response and other solutions. Updated: June 2026.
902,988 professionals have used our research since 2012.