Try our new research platform with insights from 80,000+ expert users

Cortex XDR by Palo Alto Networks vs FortiXDR comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cortex XDR by Palo Alto Net...
Ranking in Extended Detection and Response (XDR)
7th
Average Rating
8.4
Reviews Sentiment
7.4
Number of Reviews
91
Ranking in other categories
Endpoint Protection Platform (EPP) (5th), Ransomware Protection (2nd), AI-Powered Cybersecurity Platforms (4th)
FortiXDR
Ranking in Extended Detection and Response (XDR)
30th
Average Rating
8.0
Reviews Sentiment
6.6
Number of Reviews
4
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of September 2025, in the Extended Detection and Response (XDR) category, the mindshare of Cortex XDR by Palo Alto Networks is 5.5%, down from 5.7% compared to the previous year. The mindshare of FortiXDR is 0.9%, up from 0.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Extended Detection and Response (XDR) Market Share Distribution
ProductMarket Share (%)
Cortex XDR by Palo Alto Networks5.5%
FortiXDR0.9%
Other93.6%
Extended Detection and Response (XDR)
 

Q&A Highlights

AM
Jan 17, 2022
 

Featured Reviews

NiteshSharma - PeerSpot reviewer
Automated threat response and behavioral control improve security measures
I recommend adding a data loss prevention (DLP) solution to Cortex XDR by Palo Alto Networks. The inclusion of this feature would allow the application of DLP policies alongside antivirus policies via a single agent and console, making it more competitive as other OEMs often offer DLP solutions as part of their antivirus products. Additionally, multi-tenancy and multi-cloud features are not available and should be considered for inclusion.
HenrikPedersen - PeerSpot reviewer
Comprehensive endpoint protection ensures robust defense against threats with seamless integration
I use FortiXDR as an all-in-one solution for endpoint protection, incorporating features like VPN, malware protection, and antivirus capabilities The most valuable feature of FortiXDR is its ability to block clients, providing comprehensive endpoint protection. This all-in-one tool seamlessly…

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Its interface and pricing are most valuable. It is better than other vendors in terms of security."
"This software helps us understand any issues that may arise when someone is not at work."
"One thing that I like about Cortex XDR by Palo Alto Networks, it is detecting all the suspicious or malicious binaries, and it has integration with Palo Alto Firewall."
"The anti-exploit is impenetrable. We chose Traps because it is the only product that we were not able to get anything past."
"The one feature of Palo Alto Networks Traps that our organization finds most valuable is the App ID service."
"The ability to kind of stitch everything together and see the actual complete picture is very useful. I guess you'd call it a playbook. Some people call it the forensics analysis of what was happening on particular endpoints when they detected some malicious behavior, and what transpired before that to cause that. It is also very user friendly. The way they have done everything and integrated all the solutions that they've purchased over the years to make it a very seamless, effective product is very good. One thing about Palo Alto is that they take the products or services that they purchase and make them seamless for the end user as compared to some companies that purchase other companies and then just kind of have their products off to the side or keep different interfaces. Palo Alto doesn't do that."
"We can visualize and control the activities in the environment from anywhere."
"From a single pane of glass, you can easily manage all of your endpoints."
"FortiXDR is valuable for its integration capabilities with one hundred percent compatibility with other vendors in cloud environments like Google, Oracle, and Microsoft."
"The most valuable feature of FortiXDR is its ability to block clients, providing comprehensive endpoint protection."
"Our customers are satisfied with FortiXDR."
"FortiXDR is valuable for its integration capabilities with one hundred percent compatibility with other vendors in cloud environments like Google, Oracle, and Microsoft."
"The product is stable enough."
"The most valuable feature of FortiXDR is it integrates well with other Fortinet solutions, such as Fortinet firewall, FortiMail, FortiSandbox, Forti Fabric, switches, and access points. Whatever the flow of the traffic comes in or goes out, the entire traffic can be managed and monitored properly."
"The most valuable feature of FortiXDR is its ability to block clients, providing comprehensive endpoint protection."
 

Cons

"They have the worst support, as a company, that I have ever worked with, as they are difficult to get a hold of and keep on the phone. They don't know what they are talking about when you get them on the phone. They don't like to respond to messages when you send them to them. They like to "research problems" for weeks on end, then pass you off to somebody else."
"They've been having some issues with updating their endpoint agents, and it has been quite frustrating."
"The dashboard could use some significant improvement, just making it more useful with more information. It has a limited amount of information right now. It is customizable, but I'd love to see a better out-of-box dashboard."
"The playbooks could be improved to include more functionalities or actions."
"It would be good to have a better way to search for a file within the UI."
"Traps doesn't work with McAfee. You need to remove McAfee to install Traps. This is very common, and its nothing that should be an issue. Some antivirus engines recognize Traps as an threat component, so maybe they need to shake hands somewhere."
"Limited remote connection."
"The solution should force customers to integrate with network traffic to see the full benefits of XDR."
"They could change their licensing costs to make it more affordable for smaller businesses."
"Improvement is needed in the intuitiveness and integration measures of FortiXDR, especially in terms of compatibility."
"The pricing of FortiXDR should be improved. It's a point of concern for us."
"The pricing of FortiXDR should be improved."
"Improvement is needed in the intuitiveness and integration measures of FortiXDR, especially in terms of compatibility."
"They could change their licensing costs to make it more affordable for smaller businesses."
"Many of the solutions, such as CrowdStrike have an MDR solution where remediation can be provided by the vendor. For example, if there is any zero data threat found, a new threat that the customer is not able to recognize, fix, or understand what needs to be done this feature has to be added in FortiXDR so that the customer feels comfortable."
 

Pricing and Cost Advice

"It has a yearly renewal."
"The cost depends on your chosen license type, like Pro or other licenses."
"The price was fine."
"We didn't have to pay any additional fee for the cloud instance. It just came with the renewal, which was nice."
"The price of the solution could be reduced. I have customers that have voiced that the solution is good for the value but if I want to sell more of the solution the price reduction would help."
"It has reasonable pricing for the use cases it provides to the company."
"The pricing seems fair, and I do like the licensing model. You use wherever they are, and it is elastic."
"We pay about $50,000 USD per year for a bundle that includes Cortex XDR."
"This is an expensive solution compared to other vendors, such as Check Point."
report
Use our free recommendation engine to learn which Extended Detection and Response (XDR) solutions are best for your needs.
866,483 professionals have used our research since 2012.
 

Answers from the Community

AM
Jan 17, 2022
Jan 17, 2022
@KostiantynFrolov, @Zubair Ahmad, @Mantu Shaw, @Gian Michele Roletto, Can you please share any advice here?
See 2 answers
ER
Mar 10, 2021
Disclosure - I work for a company where we are Partners of Palo Alto Networks. Hi Augusto, The answer depends on what you are looking for and your current infrastructure. If you have Fortinet security infrastructure, it will "make sense" to go with them, if you have palo alto firewalls "then" Cortex XDR PRO.  However, As I am not completely familiar with FortiXDR, I am going to showcase why I will select Cortex XDR PRO: 0- Security: Cortex XDR PRO does really well compared to other endpoint products (NSS labs showed this, not sure what happened to them). Look info at MITRE.  1- More time and expertise on the XDR market: Cortex XDR was the first XDR platform out there to integrate, endpoint, network and cloud. 2- Integrations with other firewalls: Cortex XDR can integrate checkpoint, fortigate and cisco ASA logs. 3- Licensing model: You can start with EPP (Prevent), PRO for endpoint (EDR + other features), and PRO for network (integrate fw/cloud) using the same cloud platform. I believe that the best way is to see both product by yourself. Let me know if you are interested to see Cortex XDR PRO, we can schedule a call. We have some clients in Brazil (assuming that based in your title). Regards, Edwardo
EB
Jan 17, 2022
@KostiantynFrolov, @Zubair Ahmad, @Mantu Shaw, @Gian Michele Roletto, Can you please share any advice here?
 

Top Industries

By visitors reading reviews
Computer Software Company
13%
Financial Services Firm
9%
Manufacturing Company
8%
Government
7%
Computer Software Company
17%
Comms Service Provider
11%
Financial Services Firm
9%
Government
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business41
Midsize Enterprise18
Large Enterprise35
No data available
 

Questions from the Community

Cortex XDR by Palo Alto vs. Sentinel One
Cortex XDR by Palo Alto vs. SentinelOne SentinelOne offers very detailed specifics with regard to risks or attacks. The ability to reverse damage caused by ransomware with minimal interruptions to...
Comparing CrowdStrike Falcon to Cortex XDR (Palo Alto)
Cortex XDR by Palo Alto vs. CrowdStrike Falcon Both Cortex XDR and Crowd Strike Falcon offer cloud-based solutions that are very scalable, secure, and user-friendly. Cortex XDR by Palo Alto offers ...
How is Cortex XDR compared with Microsoft Defender?
Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface, applies behavioral-based endpoint protection and response, and includes risk-ba...
What is your experience regarding pricing and costs for FortiXDR?
Comparing to the enterprise level, the pricing is reasonable. However, for some companies, it might be a little high.
What needs improvement with FortiXDR?
They could change their licensing costs to make it more affordable for smaller businesses.
What is your primary use case for FortiXDR?
We are a system integrator and cloud service provider. Although I am in sales and not technical, I am involved with these products to sell them to our customers.
 

Also Known As

Cyvera, Cortex XDR, Palo Alto Networks Traps
No data available
 

Overview

 

Sample Customers

CBI Health Group, University Honda, VakifBank
Information Not Available
Find out what your peers are saying about Cortex XDR by Palo Alto Networks vs. FortiXDR and other solutions. Updated: July 2025.
866,483 professionals have used our research since 2012.