Cortex XDR by Palo Alto Networks vs Lumu comparison

Palo Alto Networks and Lumu Technologies are both solutions in the Extended Detection and Response (XDR) category. Palo Alto Networks is ranked #7 with an average rating of 8.7, while Lumu Technologies is ranked #18 with an average rating of 9.0. Palo Alto Networks holds a 5.4% mindshare in XDR, compared to Lumu Technologies’s 1.4% mindshare. Additionally, 95% of Palo Alto Networks users are willing to recommend the solution, compared to 100% of Lumu Technologies users who would recommend it.

Cortex XDR by Palo Alto Net...

Read 92 Cortex XDR by Palo Alto Networks reviews

15,111 Views
5,742 Comparison Views

95% willing to recommend

Lumu

Read 8 Lumu reviews

1,503 Views
1,022 Comparison Views

100% willing to recommend

Cortex XDR by Palo Alto Net...

Lumu

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Oct 8, 2024

Cortex XDR and Lumu compete in cybersecurity, focusing on threat detection and network analysis. Lumu seems to have the upper hand due to more favorable pricing and feature set.

Features: Cortex XDR offers robust threat detection, integration with various security tools, and comprehensive threat intelligence. Lumu provides advanced network traffic analysis, effective activity monitoring, and actionable intelligence.

Room for Improvement: Cortex XDR requires enhancements in reporting capabilities, configuration simplicity, and usability. Lumu needs improved threat response times, enhanced documentation, and operational efficiency.

Ease of Deployment and Customer Service: Cortex XDR's deployment process is complex but supported by responsive service. Lumu allows seamless deployment, though customer service feedback is mixed.

Pricing and ROI: Cortex XDR has higher initial costs with slower ROI due to complexity. Lumu offers competitive pricing and quicker ROI, appealing to budget-conscious users.

To learn more, read our detailed Cortex XDR by Palo Alto Networks vs. Lumu Report (Updated: September 2025).

Buyer's Guide

Cortex XDR by Palo Alto Networks vs. Lumu

September 2025

Download the complete report

Helped 869,202 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Cortex XDR by Palo Alto Net...

Ranking in Extended Detection and Response (XDR)

7th

Average Rating

8.4

Reviews Sentiment

7.3

Number of Reviews

Ranking in other categories

Endpoint Protection Platform (EPP) (5th), Endpoint Detection and Response (EDR) (9th), Ransomware Protection (2nd), AI-Powered Cybersecurity Platforms (4th)

Lumu

Ranking in Extended Detection and Response (XDR)

18th

Average Rating

9.2

Reviews Sentiment

7.7

Number of Reviews

Ranking in other categories

Intrusion Detection and Prevention Software (IDPS) (11th), Network Detection and Response (NDR) (6th)

Mindshare comparison

As of October 2025, in the Extended Detection and Response (XDR) category, the mindshare of Cortex XDR by Palo Alto Networks is 5.4%, down from 5.8% compared to the previous year. The mindshare of Lumu is 1.4%, up from 0.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Extended Detection and Response (XDR) Market Share Distribution
Product	Market Share (%)
Cortex XDR by Palo Alto Networks	5.4%
Lumu	1.4%
Other	93.2%

Extended Detection and Response (XDR)

Featured Reviews

HectorRios

IT COMMUNICATIONS AND NETWORKS at Américas BPS

Has detected high-risk threats effectively and provides strong behavioral protection

They did well with handling high-risk threats. I would rate Palo Alto support an eight or nine. I would give them an eight because in the majority of cases, we talk with local partners, and only in case of an emergency or a difficult issue, we jump to Palo Alto support. When we had that experience with Palo Alto support, it was nice service, but it was really difficult to get it. To jump from the partner to Palo Alto directly was challenging. I understand that it's part of the service, as the local partner just jumps up to Palo Alto support in case they need it. In some cases, when we faced an important issue, it was preferred to jump directly to Palo Alto to save time.

Read full review

Juan Solano

IT Director at Atlantic Quantum Innovations

Protects against threats and handles it in time with moderate pricing

Mostly, Lumu is an automatic tool. We'll deploy on firewalls and DNS servers. Lumu detects every attack on our network. The other day, we had CLC, the command controller, and the tool reacted automatically. It detected the attack and immediately blocked it without intervention from my team. The improvement is in the security process, as it's now entirely automated. We no longer require a technician or engineer to monitor our network 24/7. Lumu updates with AI and global threat intelligence, which greatly assists us. Since our workload is lighter, Lumu handles all of our tasks. We're using FortiGate for the firewall and Kaspersky for endpoints. If you are going to Lumu, you need another solution for the endpoint. You need to integrate with other tools like firewalls or another antivirus. I recommend the solution based on the price, usability, and service offered by the solution. Overall, I rate the solution a nine out of ten.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"Cortex XDR by Palo Alto Networks is easy to use and does not consume a lot of hardware resources."

"The information the dashboard provides is very clear."

"They did what they said. This solution could apply to any scenario."

"The solution's most valuable feature is its ability to rapidly detect certain hardware files."

"We have a complete overview of all our PCs and it's very easy to handle and to use the interface. It has a lot of benefits for us."

"From a single pane of glass, you can easily manage all of your endpoints."

"The protection offered by this product is good, as is the endpoint reporting."

"Traps is quite a stable product. Once it was properly deployed and configured, you have nothing to be worried about."

More Cortex XDR by Palo Alto Networks pros

"The automated response to incidents works effectively out of the box, and the number of interfaces and platforms it can work with is impressive."

"Most of it is automated, so I do not have to watch it to get alerts."

"The context provided by the tool is very complete, it includes the miter matrix, playbooks, links, hashes, and much more."

"Lumu protects against threats immediately and handles them in time."

"I like Lumu's simple user interface. When we deployed it, we got full access, allowing us to identify IP addresses on the network and connect machine names to users. It helped us identify and block threats via the firewall. I also appreciate the chat support and ticket closure process. We're currently reviewing network detection solutions, and my recommendations include Lumu, Sentinel, and a few others. Regarding functionality and user-friendliness, I would recommend Lumu over the others."

"You can access external links, playbooks, MITRE Matrix, and a lot of information."

"It's been helpful for overall extended network visibility."

"The tool's support team helps partners resolve any problems with the product."

Cons

"The dashboard could use some significant improvement, just making it more useful with more information. It has a limited amount of information right now. It is customizable, but I'd love to see a better out-of-box dashboard."

"There is a severe gap in functionality between Windows, Linux, and Mac versions. For example all folder restriction settings are Windows only. Traps 5.0+ does not have SAML / LDAP integration."

"I think sometimes Cortex XDR agent automatically stops event capturing from the device, and then even the dashboard does not get any notifications from the agent."

"The playbooks could be improved to include more functionalities or actions."

"There are some false positives. What our guys would have liked is that it would have been easier to manipulate as soon as they found a false positive that they knew was a false positive. How to do so was not obvious. Some people complained about it. The interface, the ESM, is not user-friendly."

"It would be better if they could educate the customers more. Some sort of seminars and roadshows will help educate the customers and show what the product can do. The price could be better. It would also help if they had a team for deployment and support."

"The dashboard is the area that needs to improve so that we can have the ability to drill down without having to go elsewhere to verify results."

"I recommend adding a data loss prevention (DLP) solution to Cortex XDR by Palo Alto Networks. The inclusion of this feature would allow the application of DLP policies alongside antivirus policies via a single agent and console, making it more competitive as other OEMs often offer DLP solutions as part of their antivirus products."

More Cortex XDR by Palo Alto Networks cons

"I am happy with the current features. However, one important one is to improve the reports."

"Having a larger support network would be beneficial. Nobody I know has heard of Lumu, so they are in the same space as Darktrace or CrowdStrike, but people give blank stares."

"The integration with different vendors and endpoints could be improved."

"Lumu's ability to discover threats is an area of concern where improvements are needed."

"The free version is minimal compared to the full version."

"The reports need improvement."

"It would be good if we could access the physical logs."

"Nothing so far needs to be improved."

Pricing and Cost Advice

"Licensing for Palo Alto Networks Cortex XDR can be costly, especially when it comes to a hundred users. A license is required for each user, and the subscription must be renewed on a yearly basis."

"Cortex XDR's pricing is ok."

"I did PoCs on products called Cylance and CrowdStrike. Although, I consider these products and they were also good, when it come to cost and budgetary factors, Traps has been proven to be better than the other two products. It is quite cost-effective and delivers all the entire solution which we require."

"If one wishes to work with another team or large number of users at a future point, he must purchase a license for them."

"I don't have any issues with the pricing. We are satisfied with the price."

"It's about $55 per license on a yearly basis."

"When we first bought it, it was a bit expensive, but it was worth it. The licensing was straightforward."

"This is an expensive solution."

More Cortex XDR by Palo Alto Networks pricing and cost advice

"It is the cheapest solution we found."

"Compared to Lumu, other solutions are more expensive. SentinelOne was a bit cheaper, and another provider's price structure is unclear, but Lumu fit our budget nicely. SentinelOne's cost depends on the number of devices, and it might be similar to Lumu's, depending on deployment."

"The tool is available at a good price. The tool offers a good and competitive price for customers."

See which vendors are best for you

Use our free recommendation engine to learn which Extended Detection and Response (XDR) solutions are best for your needs.

See recommendations

869,202 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

13%

Financial Services Firm

10%

Manufacturing Company

Government

Financial Services Firm

10%

Educational Organization

10%

Insurance Company

Comms Service Provider

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	41
Midsize Enterprise	18
Large Enterprise	36

By reviewers
Company Size	Count
Small Business	5
Midsize Enterprise	1
Large Enterprise	4

Questions from the Community

Cortex XDR by Palo Alto vs. Sentinel One

Cortex XDR by Palo Alto vs. SentinelOne SentinelOne offers very detailed specifics with regard to risks or attacks. The ability to reverse damage caused by ransomware with minimal interruptions to...

See all answers

Comparing CrowdStrike Falcon to Cortex XDR (Palo Alto)

Cortex XDR by Palo Alto vs. CrowdStrike Falcon Both Cortex XDR and Crowd Strike Falcon offer cloud-based solutions that are very scalable, secure, and user-friendly. Cortex XDR by Palo Alto offers ...

See all answers

How is Cortex XDR compared with Microsoft Defender?

Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface, applies behavioral-based endpoint protection and response, and includes risk-ba...

See all answers

What do you like most about Lumu?

Lumu protects against threats immediately and handles them in time.

See all answers

What needs improvement with Lumu?

There is always room for improvement. I am not giving it a perfect score because I am sure there is something that could be enhanced.Having some sort of certification or training, along with more p...

See all answers

What is your primary use case for Lumu?

We use it as our managed SOC instead of contracting with an MSP. It coordinates endpoint and gives us a single pane of glass for our security events.It fulfills the role of a SIEM, serving as our d...

See all answers

Comparisons

Microsoft Defender for Endpoint vs Cortex XDR by Palo Alto Networks

Compared 10% of the time

CrowdStrike Falcon vs Cortex XDR by Palo Alto Networks

Compared 6% of the time

Cortex XSIAM vs Cortex XDR by Palo Alto Networks

Compared 6% of the time

SentinelOne Singularity Complete vs Cortex XDR by Palo Alto Networks

Compared 5% of the time

Wazuh vs Cortex XDR by Palo Alto Networks

Compared 4% of the time

More Cortex XDR by Palo Alto Networks Competitors

Darktrace vs Lumu

Compared 49% of the time

Stellar Cyber Open XDR vs Lumu

Compared 14% of the time

Wazuh vs Lumu

Compared 13% of the time

Vectra AI vs Lumu

Compared 8% of the time

Microsoft Defender XDR vs Lumu

Compared 7% of the time

More Lumu Competitors

Product Reports

Buyer's Guide

Cortex XDR by Palo Alto Networks

October 2025

Download Cortex XDR by Palo Alto Networks product report

Buyer's Guide

Lumu

September 2025

Download Lumu product report

Also Known As

Cyvera, Cortex XDR, Palo Alto Networks Traps

No data available

Overview

Cortex XDR by Palo Alto Networks delivers comprehensive endpoint security, integrating well with other systems to offer robust threat detection and real-time protection through AI-driven analytics.

Cortex XDR by Palo Alto Networks offers advanced endpoint protection and threat detection through AI and behavior-based analytics. Its user-friendly design simplifies integration with firewalls, delivering multi-layered protection with low resource consumption. Valued for policy management, USB control, and incident correlation, Cortex XDR enhances threat management and real-time threat hunting capabilities. However, users note challenges with third-party integration, reporting, and dashboard automation. Agent performance across operating systems and memory consumption are areas for improvement, alongside reducing false positives and simplifying endpoint management and setup.

What features does Cortex XDR offer?

Behavior-Based Detection: Analyzes user behavior to identify suspicious activities.
AI Analytics: Utilizes AI for accurate threat detection and response.
Real-Time Protection: Provides immediate defense against threats.
Policy Management: Allows customization of security policies across endpoints.
USB Control: Regulates USB device access for added security.
Incident Correlation: Connects and analyzes various security events for better response.
Firewall Integration: Seamlessly works with firewalls for enhanced security.
Machine Learning Capabilities: Continuously improves threat detection precision.

What benefits should be considered in reviews?

Low Resource Consumption: Efficient security functions without taxing system resources.
Multi-Layered Protection: Comprehensive security across multiple attack vectors.
User-Friendly Interface: Intuitive design for easier management.
Enhanced Threat Management: Identifies and mitigates threats effectively.
Real-Time Threat Hunting: Proactively searches for and mitigates potential threats.

Cortex XDR is crucial in industries requiring robust endpoint protection, such as finance, healthcare, and technology. It supports malware detection, behavioral analysis, and ransomware mitigation across endpoints, including remote work environments, providing comprehensive threat visibility and security policy management. The solution's integration with firewalls and specialized industry requirements enhances security posture in diverse operational settings.

Palo Alto Networks

Lumu Technologies is a cyber-security company that illuminates threats, attacks, and adversaries affecting enterprises worldwide. Using actionable intelligence, Lumu provides a radical way to secure networks by enhancing and augmenting existing defense capabilities established over the past 25 years.

Lumu Technologies

Sample Customers

CBI Health Group, University Honda, VakifBank

Information Not Available

Buyer's Guide

Cortex XDR by Palo Alto Networks vs. Lumu

September 2025

Free Report: Cortex XDR by Palo Alto Networks vs. Lumu

Find out what your peers are saying about Cortex XDR by Palo Alto Networks vs. Lumu and other solutions. Updated: September 2025.

DOWNLOAD NOW

869,202 professionals have used our research since 2012.

See our Cortex XDR by Palo Alto Networks vs. Lumu report.

See our list of best Extended Detection and Response (XDR) vendors.

We monitor all Extended Detection and Response (XDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.