Try our new research platform with insights from 80,000+ expert users

Cortex XDR by Palo Alto Networks vs Lumu comparison

Palo Alto Networks and Lumu Technologies are both solutions in the Extended Detection and Response (XDR) category. Palo Alto Networks is ranked #7 with an average rating of 8.6, while Lumu Technologies is ranked #17 with an average rating of 9.0. Palo Alto Networks holds a 5.6% mindshare in XDR, compared to Lumu Technologies’s 1.5% mindshare. Additionally, 95% of Palo Alto Networks users are willing to recommend the solution, compared to 100% of Lumu Technologies users who would recommend it.
Cortex XDR by Palo Alto Net...
Read 90 Cortex XDR by Palo Alto Networks reviews
  • 7,304 Views
  • 2,293 Comparison Views
95% willing to recommend
Lumu
Read 8 Lumu reviews
  • 890 Views
  • 398 Comparison Views
100% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Oct 8, 2024

Cortex XDR and Lumu compete in cybersecurity, focusing on threat detection and network analysis. Lumu seems to have the upper hand due to more favorable pricing and feature set.

Features: Cortex XDR offers robust threat detection, integration with various security tools, and comprehensive threat intelligence. Lumu provides advanced network traffic analysis, effective activity monitoring, and actionable intelligence.

Room for Improvement: Cortex XDR requires enhancements in reporting capabilities, configuration simplicity, and usability. Lumu needs improved threat response times, enhanced documentation, and operational efficiency.

Ease of Deployment and Customer Service: Cortex XDR's deployment process is complex but supported by responsive service. Lumu allows seamless deployment, though customer service feedback is mixed.

Pricing and ROI: Cortex XDR has higher initial costs with slower ROI due to complexity. Lumu offers competitive pricing and quicker ROI, appealing to budget-conscious users.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Cortex XDR by Palo Alto Networks vs. Lumu Report (Updated: June 2025).
Buyer's Guide
Cortex XDR by Palo Alto Networks vs. Lumu
June 2025
Download the complete report
Helped 859,129 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cortex XDR by Palo Alto Net...
Ranking in Extended Detection and Response (XDR)
7th
Average Rating
8.4
Reviews Sentiment
7.4
Number of Reviews
90
Ranking in other categories
Endpoint Protection Platform (EPP) (4th), Ransomware Protection (1st), AI-Powered Cybersecurity Platforms (4th)
Lumu
Ranking in Extended Detection and Response (XDR)
17th
Average Rating
9.2
Reviews Sentiment
7.7
Number of Reviews
8
Ranking in other categories
Intrusion Detection and Prevention Software (IDPS) (11th), Network Detection and Response (NDR) (6th)
 

Mindshare comparison

As of June 2025, in the Extended Detection and Response (XDR) category, the mindshare of Cortex XDR by Palo Alto Networks is 5.6%, down from 6.3% compared to the previous year. The mindshare of Lumu is 1.5%, up from 0.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Extended Detection and Response (XDR)
 

Featured Reviews

NiteshSharma - PeerSpot reviewer
Automated threat response and behavioral control improve security measures
I recommend adding a data loss prevention (DLP ( /categories/data-loss-prevention-dlp )) solution to Cortex XDR ( /categories/extended-detection-and-response-xdr ) by Palo Alto Networks. The inclusion of this feature would allow the application of DLP ( /categories/data-loss-prevention-dlp ) policies alongside antivirus policies via a single agent and console, making it more competitive as other OEMs often offer DLP solutions as part of their antivirus products. Additionally, multi-tenancy and multi-cloud features are not available and should be considered for inclusion.
Read full review
Juan Solano - PeerSpot reviewer
Protects against threats and handles it in time with moderate pricing
Mostly, Lumu is an automatic tool. We'll deploy on firewalls and DNS servers. Lumu detects every attack on our network. The other day, we had CLC, the command controller, and the tool reacted automatically. It detected the attack and immediately blocked it without intervention from my team. The improvement is in the security process, as it's now entirely automated. We no longer require a technician or engineer to monitor our network 24/7. Lumu updates with AI and global threat intelligence, which greatly assists us. Since our workload is lighter, Lumu handles all of our tasks. We're using FortiGate for the firewall and Kaspersky for endpoints. If you are going to Lumu, you need another solution for the endpoint. You need to integrate with other tools like firewalls or another antivirus. I recommend the solution based on the price, usability, and service offered by the solution. Overall, I rate the solution a nine out of ten.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The stability of the solution is very good. We have about 100 users on it right now, and we use it twice a week."
"Cortex covers everything I need. It's a perfect solution. Cortex provides a different level of visibility because it's an extended EDR, allowing you to grab logs from the network and firewalls. Palo Alto invented the concept of the extended EDR or XDR."
"We've had a significant increase in blocking with a decrease in false positives, because it's looking at how the files work, not just a list of files that it's been told to look for."
"It is an easy-to-use tool."
"The most valuable feature of Cortex XDR by Palo Alto Networks is the low consumption of system resources. The solution uses a lot of AI and machine learning."
"The most valuable features are incident creation, policy-based protection, IP whitelisting, and device encryption. These are beneficial for endpoint and server security."
"Provides behavior-based detection which offers many benefits over signature-based detection."
"Cortex XDR lets us manage several clients from the same console, and its endpoint defense is more advanced than traditional antivirus."
More Cortex XDR by Palo Alto Networks pros
"Most of it is automated, so I do not have to watch it to get alerts."
"I like Lumu's simple user interface. When we deployed it, we got full access, allowing us to identify IP addresses on the network and connect machine names to users. It helped us identify and block threats via the firewall. I also appreciate the chat support and ticket closure process. We're currently reviewing network detection solutions, and my recommendations include Lumu, Sentinel, and a few others. Regarding functionality and user-friendliness, I would recommend Lumu over the others."
"It's been helpful for overall extended network visibility."
"You can access external links, playbooks, MITRE Matrix, and a lot of information."
"The tool's support team helps partners resolve any problems with the product."
"The automated response to incidents works effectively out of the box, and the number of interfaces and platforms it can work with is impressive."
"Lumu protects against threats immediately and handles them in time."
"The context provided by the tool is very complete, it includes the miter matrix, playbooks, links, hashes, and much more."
 

Cons

"I would like to see better protection, specifically to protect email applications."
"Dashboards do not allow everyone to see what's happening."
"When it comes to core analysis, and security analysis, Cortex needs to provide more information."
"It would be better if they could educate the customers more. Some sort of seminars and roadshows will help educate the customers and show what the product can do. The price could be better. It would also help if they had a team for deployment and support."
"We would also like to have advanced tech protection and email scanning."
"Every 30 or 40 days, there's a new version and we need to go and make sure our customer's laptops are upgraded."
"Managing the product should be easier."
"Cortex XDR by Palo Alto Networks can improve mobile integration to allow access to the console."
More Cortex XDR by Palo Alto Networks cons
"Nothing so far needs to be improved."
"Having a larger support network would be beneficial. Nobody I know has heard of Lumu, so they are in the same space as Darktrace or CrowdStrike, but people give blank stares."
"The integration with different vendors and endpoints could be improved."
"The free version is minimal compared to the full version."
"The reports need improvement."
"I am happy with the current features. However, one important one is to improve the reports."
"It would be good if we could access the physical logs."
"Lumu's ability to discover threats is an area of concern where improvements are needed."
 

Pricing and Cost Advice

"When we first bought it, it was a bit expensive, but it was worth it. The licensing was straightforward."
"The cost of Cortex XDR by Palo Alto Networks is $55 to $90 USD per endpoint per month."
"The price of the solution is high for the license and in general."
"Its pricing is kind of in line with its competitors and everybody else out there."
"Our customers have expressed that the price is high."
"It has a higher cost than other solutions, like CrowdStrike or Microsoft’s EDR tools, but it reduces the cost of our operations because it’s a new generation antivirus tool."
"I don't recall what the cost was, but it wasn't really that expensive."
"Compared to CrowdStrike, Cortex XDR is an expensive solution."
More Cortex XDR by Palo Alto Networks pricing and cost advice
"Compared to Lumu, other solutions are more expensive. SentinelOne was a bit cheaper, and another provider's price structure is unclear, but Lumu fit our budget nicely. SentinelOne's cost depends on the number of devices, and it might be similar to Lumu's, depending on deployment."
"The tool is available at a good price. The tool offers a good and competitive price for customers."
"It is the cheapest solution we found."
report
See which vendors are best for you
Use our free recommendation engine to learn which Extended Detection and Response (XDR) solutions are best for your needs.
See recommendations
859,129 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
14%
Financial Services Firm
9%
Manufacturing Company
8%
Government
7%
Educational Organization
12%
Financial Services Firm
9%
Comms Service Provider
8%
Computer Software Company
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Cortex XDR by Palo Alto vs. Sentinel One
Cortex XDR by Palo Alto vs. SentinelOne SentinelOne offers very detailed specifics with regard to risks or attacks. The ability to reverse damage caused by ransomware with minimal interruptions to...
See all answers
Comparing CrowdStrike Falcon to Cortex XDR (Palo Alto)
Cortex XDR by Palo Alto vs. CrowdStrike Falcon Both Cortex XDR and Crowd Strike Falcon offer cloud-based solutions that are very scalable, secure, and user-friendly. Cortex XDR by Palo Alto offers ...
See all answers
How is Cortex XDR compared with Microsoft Defender?
Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface, applies behavioral-based endpoint protection and response, and includes risk-ba...
See all answers
What do you like most about Lumu?
Lumu protects against threats immediately and handles them in time.
See all answers
What needs improvement with Lumu?
There is always room for improvement. I am not giving it a perfect score because I am sure there is something that could be enhanced.Having some sort of certification or training, along with more p...
See all answers
What is your primary use case for Lumu?
We use it as our managed SOC instead of contracting with an MSP. It coordinates endpoint and gives us a single pane of glass for our security events.It fulfills the role of a SIEM, serving as our d...
See all answers
 

Comparisons

Microsoft Defender for Endpoint vs Cortex XDR by Palo Alto Networks Logo
Microsoft Defender for Endpoint vs Cortex XDR by Palo Alto Networks
Compared 11% of the time
CrowdStrike Falcon vs Cortex XDR by Palo Alto Networks Logo
CrowdStrike Falcon vs Cortex XDR by Palo Alto Networks
Compared 7% of the time
SentinelOne Singularity Complete vs Cortex XDR by Palo Alto Networks Logo
SentinelOne Singularity Complete vs Cortex XDR by Palo Alto Networks
Compared 5% of the time
Wazuh vs Cortex XDR by Palo Alto Networks Logo
Wazuh vs Cortex XDR by Palo Alto Networks
Compared 5% of the time
Darktrace vs Cortex XDR by Palo Alto Networks Logo
Darktrace vs Cortex XDR by Palo Alto Networks
Compared 4% of the time
More Cortex XDR by Palo Alto Networks Competitors
Darktrace vs Lumu Logo
Darktrace vs Lumu
Compared 55% of the time
Wazuh vs Lumu Logo
Wazuh vs Lumu
Compared 11% of the time
Stellar Cyber Open XDR vs Lumu Logo
Stellar Cyber Open XDR vs Lumu
Compared 10% of the time
Vectra AI vs Lumu Logo
Vectra AI vs Lumu
Compared 8% of the time
Fortinet FortiGate IPS vs Lumu Logo
Fortinet FortiGate IPS vs Lumu
Compared 5% of the time
More Lumu Competitors
 

Product Reports

Buyer's Guide
Cortex XDR by Palo Alto Networks
June 2025
Cortex XDR by Palo Alto Networks reportDownload Cortex XDR by Palo Alto Networks product report
Buyer's Guide
Lumu
June 2025
Lumu reportDownload Lumu product report
 

Also Known As

Cyvera, Cortex XDR, Palo Alto Networks Traps
No data available
 

Overview

Cortex XDR by Palo Alto Networks delivers comprehensive endpoint security, integrating well with other systems to offer robust threat detection and real-time protection through AI-driven analytics.

Cortex XDR by Palo Alto Networks offers advanced endpoint protection and threat detection through AI and behavior-based analytics. Its user-friendly design simplifies integration with firewalls, delivering multi-layered protection with low resource consumption. Valued for policy management, USB control, and incident correlation, Cortex XDR enhances threat management and real-time threat hunting capabilities. However, users note challenges with third-party integration, reporting, and dashboard automation. Agent performance across operating systems and memory consumption are areas for improvement, alongside reducing false positives and simplifying endpoint management and setup.

What features does Cortex XDR offer?
  • Behavior-Based Detection: Analyzes user behavior to identify suspicious activities.
  • AI Analytics: Utilizes AI for accurate threat detection and response.
  • Real-Time Protection: Provides immediate defense against threats.
  • Policy Management: Allows customization of security policies across endpoints.
  • USB Control: Regulates USB device access for added security.
  • Incident Correlation: Connects and analyzes various security events for better response.
  • Firewall Integration: Seamlessly works with firewalls for enhanced security.
  • Machine Learning Capabilities: Continuously improves threat detection precision.
What benefits should be considered in reviews?
  • Low Resource Consumption: Efficient security functions without taxing system resources.
  • Multi-Layered Protection: Comprehensive security across multiple attack vectors.
  • User-Friendly Interface: Intuitive design for easier management.
  • Enhanced Threat Management: Identifies and mitigates threats effectively.
  • Real-Time Threat Hunting: Proactively searches for and mitigates potential threats.

Cortex XDR is crucial in industries requiring robust endpoint protection, such as finance, healthcare, and technology. It supports malware detection, behavioral analysis, and ransomware mitigation across endpoints, including remote work environments, providing comprehensive threat visibility and security policy management. The solution's integration with firewalls and specialized industry requirements enhances security posture in diverse operational settings.

Palo Alto Networks

Lumu Technologies is a cyber-security company that illuminates threats, attacks, and adversaries affecting enterprises worldwide. Using actionable intelligence, Lumu provides a radical way to secure networks by enhancing and augmenting existing defense capabilities established over the past 25 years.

Lumu Technologies
 

Sample Customers

CBI Health Group, University Honda, VakifBank
Information Not Available
Buyer's Guide
Cortex XDR by Palo Alto Networks vs. Lumu
June 2025
Free Report: Cortex XDR by Palo Alto Networks vs. Lumu
Find out what your peers are saying about Cortex XDR by Palo Alto Networks vs. Lumu and other solutions. Updated: June 2025.
DOWNLOAD NOW
859,129 professionals have used our research since 2012.
See our Cortex XDR by Palo Alto Networks vs. Lumu report.
See our list of best Extended Detection and Response (XDR) vendors.

We monitor all Extended Detection and Response (XDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.