We performed a comparison between Crowdstrike Falcon Endpoint Security and XDR and Trend Micro XDR based on real PeerSpot user reviews.Find out what your peers are saying about Palo Alto Networks, Microsoft, Trellix and others in Extended Detection and Response (XDR).
"I like that it's stable. It's been stable for a long time, and Microsoft Defender has done a good job there."
"Within advanced threat hunting, the tables that have already been defined by Microsoft are helpful. In the advanced threat hunting tab, there were different tables, and one of the tables was related to device info, device alert, and device events. That was very helpful. Another feature that I liked but didn't have access to was deep analysis."
"The solution is well integrated with applications. It is easy to maintain and administer."
"Microsoft 365 Defender is simple to upgrade."
"The EDR features are valuable. By getting the EDR features, we have more control over the device. We have information about events in real-time and more protection against zero-day threats and zero-day vulnerabilities. We can monitor every event or action that a device is going through. We can get an idea if it is something malicious or if we have to take any actions."
"There is also one dashboard that shows us the status of many controls at once and the details I can get... It gives a great overview of many areas, such as files, emails, chats, and links. Even with the apps, it gives you a great overview. In one place you can see where you should look into things more deeply..."
"I like the easy integration and advanced possibilities. We can implement it at customer sites in a few clicks, but we can also dive deep and drill down to extended features. There's a very good starting point to get into this product and all the features from Defender."
"The product is very easy to use."
"The solution has improved my organization by automating the detection and reporting of unwanted applications so we're aware of them and can respond appropriately."
"We have a small IT Team, and this allows us to get sleep at night, knowing that someone else is taking care of any incidents that occur."
"Probably the most valuable thing to me is the real-time response piece. The fact that I can connect to an endpoint as long as it is on the Internet, no matter where it is globally. I can remove files from the endpoint, drop files on the endpoint, stop processes, reboot it, run custom scripts, and deploy software. Pretty much no other tool can do all that."
"As an EDR tool, we can integrate log management and event management. The solution deals with threats automatically, that's the advantage."
"The CrowdStrike Falcon dashboard is good, and we haven't had any problems with it."
"I have found the connection to search the hosts for detections very useful in CrowdStrike Falcon."
"There are two things which customers really like about CrowdStrike. If they buy managed services from CrowdStrike, it offers them detection of security issues in one minute. If you buy their professional services, they offer insurance where you can claim up to $5 million if there's a breach. This is a huge upsell for customers."
"The CS falcon agent is a lightweight agent compared with other agents of EDR products."
"What I like the most about Trend Micro XDR is that the detection and response domain extends to the network. It goes beyond the endpoint and includes data about the network which lets you pinpoint patient zero as well as the root cause of the attack."
"It has the feature to track an attack back. If there is an incident or an attack occurs, you can get a bird's eye view of that attack. You can see how the attackers came in and how they managed the attack. You can trace an attack. If you are giving a presentation to the management, you can easily show it to them in a live environment how the attackers came, which is amazing."
"We can scale the product as needed."
"We haven't had any issues with configurations or customizations."
"Trend Micro XDR is stable, scalable, and reasonably priced."
"The setup is fairly simple."
"One of the features I like in Trend Micro XDR is that you can drill down on the root-cause analysis for anything you find on the solution. I also like that it works for detection purposes. Behavior analytics is also what I like most about Trend Micro XDR. I love that it has features such as behavior detection, program detection, and memory scanning. By default, the solution protects against spyware, apart from the normal virus scan. Smart Scan and DLP are also available in Trend Micro XDR which I like as well."
"The solution is stable."
"The logs could be better."
"The price could be better. It'll also help if they can continuously update and upgrade the solution. Every day there's a new virus uploaded into the network, and we have to keep updating it to identify all these things."
"The message trace feature for investigating mail flow issues should add more detailed information to the summary report... if they could extend the summary report a little bit, make it more descriptive, ordinary administrators could understand what happened and that the emails failed at this or that point. That way they would know the location to go to try to correct it and to prevent it from occurring again."
"This solution could be improved if it included features such as those offered by Malwarebytes."
"Microsoft tends to provide too many features, which makes the solution prone to bugs."
"Offboarding latency should be reduced. Even after a device has been successfully offboarded using a particular offboarding script, it still shows up as onboarded."
"What could be improved in Microsoft 365 Defender is its licensing, e.g. it should be more consolidated and would be good if it has some optimizations. Improving the alerts and notifications, in terms of adding more details, would also be good for this solution."
"Correctly updated records are the most significant area for improvement. There have been times when we were notified of a required fix; we would carry out the fix and confirm it but still get the same notification a week later. This seems to be a delay in records being updated and leads to false reporting, which is something that needs to be fixed."
"It would be nice if the dashboard had some more information upfront, and looked a little better."
"The technical support team often just replies to an issue with a link to an article rather than actually calling back and talking to someone and making sure the problem is solved. To me, that's kind of weak."
"I would like to see a little bit more in the offline scanning ability. This just comes from my background in what I have done in other positions. They only scan on demand, so I always have this fear that we sometimes maybe email out a dormant virus and can be held liable for that. That is something where I would like to see a little bit more robustness to the tool."
"Crowdstrike Falcon XDR can improve the integration. There are some locks on the cloud to on-premise integrations."
"CS Falcon sensing capabilities for non-domain machines should be enhanced since the agent doesn't detect the neighbor's IP Address and/or any anomaly which was identified in the network for the non-domain machine."
"I would like them to improve the correlation of data in the search algorithms. When we run an investigation, malware, phishing, etc., I want to look at multiple endpoints at once to correlate that data to see the likenesses, e.g., how are they not alike or what systems and processes are running across those systems? I don't want to have to run the same search in their Spotlight module five, 10, 15, or 100 times to get 100 different results, copy that data out, and then correlate it on my own. In a very simple way, I want to be able to load up a comma-delimited list giving me the spotlight data on these X amount of hosts, letting me search for it quickly. We have had to go back to CrowdStrike, and say, "Our search are taking far too long for even one host." They did bump up the cores and that did improve performance, but it is still kind of slow to get that Spotlight data. That is probably our biggest pain point. I think that needs some help. I understand this kind of information access is probably not the easiest thing to do. It is probably a big ask depending on how their back-end is setup."
"This solution is relatively expensive."
"The skillsets needed to run CrowdStrike Falcon are extensive if you want to get the most value out of the tool."
"In new versions I would like to see better implementation of the reporting features, especially in regards to EDR visibility."
"It should integrate with more tools. There are a lot of tools that can do the PTP dump."
"We'd like to see a few more integrations."
"Results were delayed."
"The product needs to have a lot more maturity, and they need to improve the overall technical support framework for getting the value out of XDR."
"There isn't a lot I'd do to change it. The web interface could be improved to sort of make it a little easier to manage multiple clients out of one location. It could also be made a bit easier to sort of manage the licensing side of it."
"Trend Micro doesn't have the next-generation firewall."
"The price could be lower."
Microsoft 365 Defender, part of Microsoft’s XDR solution, leverages the Microsoft 365 security portfolio to automatically analyze threat data across domains, building a complete picture of each attack in a single dashboard. With this breadth and depth of clarity defenders can now focus on critical threats and hunt for sophisticated breaches, trusting that the powerful automation in Microsoft 365 Defender detects and stops attacks anywhere in the kill chain and returns the organization to a secure state.
- Reduce signal noise by viewing prioritized incidents in a single dashboard.
- Use the automated investigation capabilities to spend less time on detection and response.
- Take care of routine and complex remediation with Microsoft 365 Defender by auto-healing affected assets.
- Hunt across all your data, leveraging your organizational knowledge with custom queries.
- Develop custom detection and response tools for long-term protection and improved security posture.
To learn more about our solution, ask questions, and share feedback, join our Microsoft Security, Compliance and Identity Community.
CrowdStrike is the leader in cloud-delivered next-generation endpoint protection. CrowdStrike has revolutionized endpoint protection by being the first and only company to unify next-generation antivirus (AV), endpoint detection and response (EDR), and a 24/7 managed hunting service — all delivered via a single lightweight agent.
Many of the world’s largest organizations already put their trust in CrowdStrike, including three of the 10 largest global companies by revenue, five of the 10 largest financial institutions, three of the top 10 health care providers, and three of the top 10 energy companies.
Request a free trial here: https://go.crowdstrike.com/try-falcon-prevent
Trend Micro XDR (extended detection and response) gathers and systematically analyzes data across numerous security layers, such as networks, servers, endpoints, email, cloud workloads, and more. Trend Micro XDR’s security protocol grants faster investigation and response time, and improved detection of risk and threats.
Today’s malicious threats are created to conceal themselves in an organization's network's various security layers. They can easily avoid detection, thrive, and grow in intensity as time goes on. Many times, inundated IT personnel are searching with ineffective tools and very narrow perspectives. Trend Micro XDR uses a next-gen comprehensive automated analysis protocol of response and detection to find issues faster. The solution allows IT personnel to perform more effectively and respond immediately, keeping the organization’s network continuously safe and secure.
Trend Micro XDR hunts deep and wide and creates a data lake for continuous hunting, sweeping, and researching throughout all security layers. With the addition of AI combined with intuitive analytics, Trend Micro XDR greatly reduces the number of alerts going to the organization’s SIEM solution, ensuring that IT personnel can be more focused on what threats and risks are pertinent, critical, and necessitate more thorough investigation.
Trend Micro XDR Benefits
Reviews from Real Users
“I like that it is a comprehensive security solution with a lot of features. You can say XDR is an end-to-end security solution with endpoint security. It includes all your servers, networks, and other devices. The endpoint security solution does not cover this. Plus, machine learning and features like that are the main things in XDR solutions.” - Nadeem S., CEO at Haniya Technologies.
“Its detection rate is valuable. It is really an easy product to install and manage. It is quite effective at what it does, and if needed, it can also be co-managed, which means 24 hours and seven days a week monitoring through a SOC.” - Charles D., Technical Services Manager at Psitech.
Protect your organization from all threats - not just malware - even when computers and servers aren’t connected to the internet. Start your free trial and deploy CrowdStrike Falcon within minutes to start receiving full threat protection.
Crowdstrike Falcon Endpoint Security and XDR is ranked unranked in Extended Detection and Response (XDR) with 56 reviews while Trend Micro XDR is ranked 7th in Extended Detection and Response (XDR) with 13 reviews. Crowdstrike Falcon Endpoint Security and XDR is rated 8.6, while Trend Micro XDR is rated 8.0. The top reviewer of Crowdstrike Falcon Endpoint Security and XDR writes "Speeds up the data collection for our phishing playbooks dramatically". On the other hand, the top reviewer of Trend Micro XDR writes "Good dashboards and easy to navigate but needs more flexibility". Crowdstrike Falcon Endpoint Security and XDR is most compared with Microsoft Defender for Endpoint, SentinelOne, Darktrace and Cortex XDR by Palo Alto Networks, whereas Trend Micro XDR is most compared with Microsoft Defender for Endpoint, SentinelOne, Kaspersky Endpoint Detection and Response, Fortinet FortiEDR and Tanium.
See our list of best Extended Detection and Response (XDR) vendors.
We monitor all Extended Detection and Response (XDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.