Cortex XDR by Palo Alto Networks vs Symantec Endpoint Detection and Response comparison

Cortex XDR by Palo Alto Networks vs. Symantec Endpoint Detection and Response

Download the complete report

Helped 849,686 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Cortex XDR by Palo Alto Net...

Average Rating

8.4

Reviews Sentiment

7.4

Number of Reviews

Ranking in other categories

Endpoint Protection Platform (EPP) (4th), Extended Detection and Response (XDR) (7th), Ransomware Protection (2nd), AI-Powered Cybersecurity Platforms (4th)

Symantec Endpoint Detection...

Average Rating

7.6

Reviews Sentiment

7.2

Number of Reviews

Ranking in other categories

Endpoint Detection and Response (EDR) (30th)

Featured Reviews

Mohammad Qaw

Senior Security Consultant at helpag

Perfect correlation and XDR capabilities for network traffic plus endpoint security

The solution should force customers to integrate with network traffic to see the full benefits of XDR. If you are not integrating it or feeding in your network traffic, then you are just buying a normal antivirus which doesn't make any sense. You are paying double the price to use the antivirus feature or to say you have XDR, but in reality you are not using it. The solution should include an on-premises option because some customers want only on-premises. It would be hard, but good to do if possible. Open XDR would be beneficial in the future. Right now, the solution is Closed XDR so cannot communicate with the few new vendors in the Open XDR market.

Read full review

YusufAhmed

Information Security Specialist at IHV-Nigeria

Easy to use and competitively priced

Honestly, the product needs to continue the way it is, and I feel that everything will be fine. I haven't had any reasons to complain about the product. The product doesn’t offer MDM functionality under its current licensing model. In the future, I want the product to offer MDM. It can allow me to manage my mobile device more efficiently and effectively. Currently, there is a need for a separate license to be added to Symantec Endpoint Detection and Response to be able to use the MDM part. If both are bundled up under the same license, the administration part can be made easier.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"Traps has drastically reduced our endpoint attack surface via advanced detection capabilities, sandboxing of never before seen programs, and by drastically limiting where executables can launch in the first place."

"It is easy to use."

"We can use Cortex XDR to get the entire graph of the incidents from source to destination, and we can take remedial action."

"I've found the solution to be highly scalable for enterprises."

"We've had a significant increase in blocking with a decrease in false positives, because it's looking at how the files work, not just a list of files that it's been told to look for."

"It collects and caches and the knowledge of machine learning from different customers to take to the cloud. It makes it better to use for everybody. It allows for quick learning and updates and can, therefore, offer zero-day malware security. This sharing of metadata helps make the solution very safe."

"Monitoring is most valuable."

"From a single pane of glass, you can easily manage all of your endpoints."

More Cortex XDR by Palo Alto Networks pros

"The most valuable feature is that the same agent can act as the endpoint detection and response agent."

"IPS and the user interface are good features."

"The most valuable features are that it is easy to connect and global settings are good."

"The setup is quite easy."

"The pricing is good."

"I have had absolutely no problem with using this solution, it really works well."

"The solution does all that we expect it to do."

"The pricing is pretty reasonable."

More Symantec Endpoint Detection and Response pros

Cons

"The solution needs better reports. I think they should let the customer go in and customize the reports."

"Traps doesn't work with McAfee. You need to remove McAfee to install Traps. This is very common, and its nothing that should be an issue. Some antivirus engines recognize Traps as an threat component, so maybe they need to shake hands somewhere."

"I don't like that they have different types of licenses. For example, if users select a license, they think they will have all the platforms they need to improve their network or security. But after some time, Palo Alto Networks changed their licensing, and some of the features that, for example, were free at the beginning now have a cost. I think the integration can be improved. For example, a lot of tools are just integrated through APIs."

"It is not a suitable solution if you are looking for a single product with multiple features such as DLP, encryption, rollback, etc."

"The solution should add unwanted malicious hash values to a block list so that whenever the action is triggered, it will automatically prevent the malicious content."

"The GUI could be improved."

"Cortex XDR could improve its sales support team, including better commission structures and referral programs."

"It's not an ideal choice for smaller businesses, as you need a minimum of 200 endpoints to even use the solution at all."

More Cortex XDR by Palo Alto Networks cons

"In the future, it would be nice to have playbooks in the tool, to allow for some of the common activities to be automated. For example, some of the scannings of the malware can be too manual for a specific device. Additionally, a vulnerability manager would be beneficial."

"The product doesn’t offer MDM functionality under its current licensing model."

"The interface is very complicated."

"That's why I wouldn't recommend it for other systems. It works only with SAP clients. That's why I'm giving it a six. It would get higher if it worked on all networks without the help of SAP."

"I think we have experienced some technical issues because the company focuses mainly on bigger clients. Also, sometimes the solution fails to detect zero-day attacks, so that feature needs some enhancement because it is lacking compared to other solutions."

"It would be nice to see more granular timeline analysis."

"The solution can always be more stable and more secure."

"Reporting is a major issue, as it is not user friendly."

More Symantec Endpoint Detection and Response cons

Pricing and Cost Advice

"Cortex XDR's pricing is ok."

"The price of the product is not very economical."

"It is present, but when compared to other competitive products, I would say it is not less expensive; however, when all of the other added values are considered, the price is reasonable."

"The price was fine."

"Cortex XDR by Palo Alto Networks is quite an expensive solution."

"Cortex XDR’s pricing is very reasonable."

"Its pricing is kind of in line with its competitors and everybody else out there."

"It is cost-effective compared to similar solutions. It fits for the small businesses through to the big businesses."

More Cortex XDR by Palo Alto Networks pricing and cost advice

"Symantec Endpoint Detection and Response is expensive."

"Of late, because of the Broadcom purchase, its price has been increasing."

"It is an expensive solution."

"The product is cheap."

"It's a yearly subscription."

"The price is reasonable."

"The price is really high and it should be lower."

"We have a yearly subscription, and the pricing is fair."

More Symantec Endpoint Detection and Response pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Endpoint Detection and Response (EDR) solutions are best for your needs.

See recommendations

849,686 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

14%

Financial Services Firm

Manufacturing Company

Government

Computer Software Company

16%

Financial Services Firm

14%

Manufacturing Company

University

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

Cortex XDR by Palo Alto vs. Sentinel One

Cortex XDR by Palo Alto vs. SentinelOne SentinelOne offers very detailed specifics with regard to risks or attacks. The ability to reverse damage caused by ransomware with minimal interruptions to...

Comparing CrowdStrike Falcon to Cortex XDR (Palo Alto)

Cortex XDR by Palo Alto vs. CrowdStrike Falcon Both Cortex XDR and Crowd Strike Falcon offer cloud-based solutions that are very scalable, secure, and user-friendly. Cortex XDR by Palo Alto offers ...

How is Cortex XDR compared with Microsoft Defender?

Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface, applies behavioral-based endpoint protection and response, and includes risk-ba...

What do you like most about Symantec Endpoint Detection and Response?

The security is good.

What is your experience regarding pricing and costs for Symantec Endpoint Detection and Response?

I am not aware of the pricing details, as that falls under the management's responsibility.

What needs improvement with Symantec Endpoint Detection and Response?

There are several areas where Symantec Endpoint Detection and Response can improve, including shell features, web control, asset management, and device control. Specifically, the application contro...

Microsoft Defender for Endpoint vs Cortex XDR by Palo Alto Networks

Comparisons

Compared 12% of the time

CrowdStrike Falcon vs Cortex XDR by Palo Alto Networks

Compared 7% of the time

Darktrace vs Cortex XDR by Palo Alto Networks

Compared 5% of the time

Wazuh vs Cortex XDR by Palo Alto Networks

Compared 5% of the time

SentinelOne Singularity Complete vs Cortex XDR by Palo Alto Networks

Compared 4% of the time

More Cortex XDR by Palo Alto Networks Competitors

Kaspersky Endpoint Detection and Response Expert vs Symantec Endpoint Detection and Response

Compared 21% of the time

Cisco Secure Endpoint vs Symantec Endpoint Detection and Response

Compared 14% of the time

Kaspersky Endpoint Security Cloud vs Symantec Endpoint Detection and Response

Compared 12% of the time

Trend Vision One vs Symantec Endpoint Detection and Response

Compared 10% of the time

Fortinet FortiEDR vs Symantec Endpoint Detection and Response

Compared 7% of the time

More Symantec Endpoint Detection and Response Competitors

Product Reports

Cortex XDR by Palo Alto Networks

Download Cortex XDR by Palo Alto Networks product report

Symantec Endpoint Detection and Response

Download Symantec Endpoint Detection and Response product report

Symantec Endpoint Detection and Response report

Also Known As

Cyvera, Cortex XDR, Palo Alto Networks Traps

No data available

Overview

Cortex XDR by Palo Alto Networks delivers comprehensive endpoint security, integrating well with other systems to offer robust threat detection and real-time protection through AI-driven analytics.

Cortex XDR by Palo Alto Networks offers advanced endpoint protection and threat detection through AI and behavior-based analytics. Its user-friendly design simplifies integration with firewalls, delivering multi-layered protection with low resource consumption. Valued for policy management, USB control, and incident correlation, Cortex XDR enhances threat management and real-time threat hunting capabilities. However, users note challenges with third-party integration, reporting, and dashboard automation. Agent performance across operating systems and memory consumption are areas for improvement, alongside reducing false positives and simplifying endpoint management and setup.

What features does Cortex XDR offer?

Behavior-Based Detection: Analyzes user behavior to identify suspicious activities.
AI Analytics: Utilizes AI for accurate threat detection and response.
Real-Time Protection: Provides immediate defense against threats.
Policy Management: Allows customization of security policies across endpoints.
USB Control: Regulates USB device access for added security.
Incident Correlation: Connects and analyzes various security events for better response.
Firewall Integration: Seamlessly works with firewalls for enhanced security.
Machine Learning Capabilities: Continuously improves threat detection precision.

What benefits should be considered in reviews?

Low Resource Consumption: Efficient security functions without taxing system resources.
Multi-Layered Protection: Comprehensive security across multiple attack vectors.
User-Friendly Interface: Intuitive design for easier management.
Enhanced Threat Management: Identifies and mitigates threats effectively.
Real-Time Threat Hunting: Proactively searches for and mitigates potential threats.

Cortex XDR is crucial in industries requiring robust endpoint protection, such as finance, healthcare, and technology. It supports malware detection, behavioral analysis, and ransomware mitigation across endpoints, including remote work environments, providing comprehensive threat visibility and security policy management. The solution's integration with firewalls and specialized industry requirements enhances security posture in diverse operational settings.

Palo Alto Networks

Symantec Endpoint Detection and Response (EDR) is a powerful security solution designed to help organizations proactively detect, investigate, and mitigate advanced threats across their endpoint environments. As part of Broadcom's cybersecurity portfolio, Symantec EDR provides comprehensive visibility into endpoint activities, enabling security teams to quickly identify and respond to threats that evade traditional defenses.

Symantec EDR leverages machine learning, behavioral analysis, and global threat intelligence from Symantec's vast network to detect sophisticated threats, including zero-day attacks, ransomware, and advanced persistent threats (APTs). This allows organizations to identify malicious activities early and respond swiftly to mitigate potential damage. The solution offers automated response options that enable security teams to contain and remediate threats quickly.

Symantec EDR provides detailed forensic capabilities, allowing security analysts to dive deep into endpoint data, investigate incidents thoroughly, and understand the scope and impact of attacks. Features such as timeline analysis, incident graphing, and the ability to isolate endpoints enhance investigative efforts and support effective remediation strategies.

With its centralized management console, Symantec EDR offers visibility across the entire endpoint environment, regardless of the operating systems or whether endpoints are on-premise or remote. Symantec EDR seamlessly integrates with other Symantec security solutions, enhancing its detection capabilities and enabling a unified approach to threat management. Its scalable architecture ensures that businesses of all sizes can benefit from its advanced security features without compromising performance.

Quickly discover and resolve threats with deep endpoint visibility and superior detection analytics, reducing mean time to remediation. Overcome cyber security skills shortages and streamline SOC operations with extensive automation and built-in integrations for sandboxing, SIEM, and orchestration.

Fortify security teams with the unmatched expertise and global scale of Symantec Managed Endpoint Detection and Response services.
Roll out Endpoint Detection and Response (EDR) across Windows, macOS, and Linux devices using Symantec Endpoint Protection (SEP)-integrated EDR or a dissolvable agent.

Broadcom

Sample Customers

CBI Health Group, University Honda, VakifBank

Information Not Available

Cortex XDR by Palo Alto Networks vs. Symantec Endpoint Detection and Response