CrowdStrike Falcon vs Symantec Content Analysis comparison

The compared CrowdStrike and Broadcom solutions aren't in the same category. CrowdStrike is ranked #1 in XDR , with an average rating of 8.5, and holds a 9.9% mindshare in the category. Broadcom is ranked #53 in Anti-Malware Tools , and holds a 0.8% mindshare. Additionally, 97% of CrowdStrike users are willing to recommend the solution, compared to 100% of Broadcom users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between CrowdStrike Falcon and Symantec Content Analysis based on real PeerSpot user reviews.

Find out what your peers are saying about CrowdStrike, SentinelOne, TrendAI and others in Extended Detection and Response (XDR).

To learn more, read our detailed Extended Detection and Response (XDR) Report (Updated: April 2026).

Buyer's Guide

Extended Detection and Response (XDR)

April 2026

Download the complete report

Helped 885,789 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Cortex XDR by Palo Alto Net...

Mindshare comparison

Extended Detection and Response (XDR) Mindshare Distribution
Product	Mindshare (%)
CrowdStrike Falcon	9.9%
Wazuh	6.8%
SentinelOne Singularity Complete	5.8%
Other	77.5%

Extended Detection and Response (XDR)

Anti-Malware Tools Mindshare Distribution
Product	Mindshare (%)
Symantec Content Analysis	0.8%
Microsoft Defender for Endpoint	7.8%
F-Secure Total	3.6%
Other	87.8%

Anti-Malware Tools

Featured Reviews

ABHISHEK_SINGH

Senior Process Expert at A.P. Moller - Maersk

Gained full visibility and streamlined threat detection through behavior-based insights and AI integration

Initially, we got to have a lot of false positives when we onboarded, but nowadays it's quite smooth. We have fine-tuned our security policies and allowed different levels of policies to get rid of those false positives. Currently, we are getting a fairly good amount of incidents that are not false positives or benign, but actionable items. The process is streamlined. In the initial days, the operations used to get involved in a lot of benign and other activities, but now the process is streamlined. We are leveraging the auto-detection and remediation plans. The operations teams are now more involved in other business roles as well, not just looking into the logs and fetching out what's happening there. They have fixed a lot of things. Initially, they didn't have IAC code drift detection, cloud posture management, or security posture management, but they have those now. They purchased different vendors and did a merger with that. They have now Prisma Cloud that gets integrated and now they are working with Cortex Cloud. Everything that was negative has now been addressed, and the product altogether looks to be in a very better and mature shape now. Currently, it's more or less detecting the workloads with AI-based best practices. Since most organizations are consuming AI agents and other things, we are looking forward to seeing what other feature enhancements Palo Alto can support in that.

Read full review

Waleed Omar

Information Security Specialist at Arab Open University

Provides effective real-time threat detection with potential for cost optimization

Some features such as device control, firewall management, and file analysis are standalone products that we need to purchase separately. If these features came out of the box within the product, it would be much more beneficial for us. Other providers such as SentinelOne include these features in their base product. We attended a CrowdStrike Falcon event where they discussed some shallow AI features, but we cannot see these in our panel yet. We work with different solutions such as Darktrace and SocRadar, where AI features are automatically displayed in our dashboards after release. However, for CrowdStrike Falcon, we cannot see these features.

Read full review

Mel Stevenson

Security Consultant at DXC Technology

The solution can be used for malware scanning, but its alerting and reporting could be improved

We use Symantec Content Analysis for malware scanning. Symantec Content Analysis is used to scan for viruses The solution's alerting and reporting are basic and could use some improvement. I have been working with Symantec Content Analysis since 2006. I rate Symantec Content Analysis an eight…

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"It's a perfect solution. It integrates well into the environment."

"The most valuable features are the fact that it was running in the background and it would intercept any weird stuff, and the fact that it would send things directly to the cloud for sandboxing. It's quite practical."

"Threat identification and detection are the most valuable features of this solution."

"I generally believe that Cortex XDR by Palo Alto Networks is probably the best in the market right now."

"The best feature of Cortex XDR by Palo Alto Networks is that it collects logs from different sections such as the endpoint, the network, and the cloud, making it easy to investigate alerts, collect some of the investigation packages related to the infected machines, and provide live response."

"Overall, it's a great platform; it integrates very well with other solutions from Palo Alto and also with our vendors, the ease of use is excellent, I love the root cause analysis from Cortex, which is amazing, and in a few clicks you can have the full root cause."

"Since they've done their most recent update, the ease to isolate endpoints is valuable. If we find one where there is a virus on it, we can easily isolate it. We don't even have to contact the user. We don't have to manually take them off the network. We can easily isolate them."

"The good thing about the product is that it's always scanning."

More Cortex XDR by Palo Alto Networks pros

"The detection is very reliable. Also, OverWatch is a great feature."

"CrowdStrike Falcon helps with endpoint protection by having very low memory utilization and processor usage, so it doesn't impact the computer system performance, and the computer system works very fast compared to all other endpoint protection solutions."

"The EDR is amazing and ease of integration with Splunk is a big plus. Integration with BigQuery is also a plus for me and workflow creation is easy. Overall, CrowdStrike Falcon is a great product."

"CrowdStrike Falcon's most valuable feature is the fact that it's not getting in the way of our workforce and their workflow."

"The most valuable features in CrowdStrike Falcon are the full EDR with antivirus, hunting, reporting, and RTR remote control."

"The most valuable feature of CrowdStrike Falcon for me is its unified sensor, applicable across all models."

"The detection and response have been excellent overall."

"The pay-as-you-go model enabled me to deploy quickly from the AWS Marketplace management account, scaled protection for workloads without upfront commitments, and reduced the initial operational overhead."

More CrowdStrike Falcon pros

"We use Symantec Content Analysis for malware scanning."

Cons

"While using Cortex, I noticed some aspects that could be improved, such as increasing the synchronization speed between XDR and Xnor."

"There is a severe gap in functionality between Windows, Linux, and Mac versions."

"Cortex XDR by Palo Alto Networks could improve by offering remote management."

"Technology evolves every day, so it would be nice if it gets more secure. It can also have more integration with other platforms."

"To jump from the partner to Palo Alto directly was challenging."

"The playbooks could be improved to include more functionalities or actions."

"Cortex XDR could be improved with more GUI features."

"Enhancing UI simplicity and playbook flexibility are areas that could benefit from more low-code automation options for smoother integrations."

More Cortex XDR by Palo Alto Networks cons

"The solution isn't known in my market. The brand isn't as recognizable. Their shortcomings are more on the marketing side."

"We have had to open a case with the technical support to get some issues and bugs resolved."

"Falcon could be improved with more function on the mobile end of things and better optimization with mobile devices."

"They should provide us with good visibility for everything."

"There are some areas where some customers would prefer a different service."

"The stability of the solution varies, several weeks ago I had some difficulties deploying CrowdStrike."

"The price of CrowdStrike Falcon is expensive."

"If we have a dashboard capability to uninstall agents, I think that would be great."

More CrowdStrike Falcon cons

"The solution's alerting and reporting are basic and could use some improvement."

Pricing and Cost Advice

"Compared to CrowdStrike, Cortex XDR is an expensive solution."

"I did PoCs on products called Cylance and CrowdStrike. Although, I consider these products and they were also good, when it come to cost and budgetary factors, Traps has been proven to be better than the other two products. It is quite cost-effective and delivers all the entire solution which we require."

"The price of the solution could be reduced. I have customers that have voiced that the solution is good for the value but if I want to sell more of the solution the price reduction would help."

"I don't have any issues with the pricing. We are satisfied with the price."

"This is an expensive solution."

"Cortex XDR by Palo Alto Networks is quite an expensive solution."

"It's the most expensive solution, but features-wise, it's quite strong. It's very good for protection, so the results are very good in the case of protection. I would rate it a two out of ten in terms of pricing."

"I am using the Community edition."

More Cortex XDR by Palo Alto Networks pricing and cost advice

"The licensing model is straightforward. We choose the features we want and we then can download the package we want."

"We are at about $60,000 per year."

"The price of CrowdStrike Falcon could be better. It is very expensive, we pay approximately $900 per month for the licenses. There are not any additional fees."

"Our licensing fees were between $50,000 and $60,000 per year, which was pretty expensive for a small business."

"While CrowdStrike Falcon offers significant security benefits, its high price point might make it prohibitively expensive for many small and medium-sized businesses, including companies like ours."

"We have a yearly subscription and find the price to be good. I'd give it a rating of four out of five for price, we got a good discount."

"It is expensive compared to SentinelOne, but as the market leader, it is worth it."

"The pricing on CrowdStrike is per license. It was about $42 per seat yearly."

More CrowdStrike Falcon pricing and cost advice

"Symantec Content Analysis is a very expensive solution."

See which vendors are best for you

Use our free recommendation engine to learn which Extended Detection and Response (XDR) solutions are best for your needs.

See recommendations

885,789 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Construction Company

14%

Financial Services Firm

10%

Comms Service Provider

Manufacturing Company

Computer Software Company

11%

Financial Services Firm

10%

Manufacturing Company

Government

No data available

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	44
Midsize Enterprise	20
Large Enterprise	48

By reviewers
Company Size	Count
Small Business	50
Midsize Enterprise	33
Large Enterprise	62

No data available

Questions from the Community

Cortex XDR by Palo Alto vs. Sentinel One

Cortex XDR by Palo Alto vs. SentinelOne SentinelOne offers very detailed specifics with regard to risks or attacks. ...

See all answers

Comparing CrowdStrike Falcon to Cortex XDR (Palo Alto)

Cortex XDR by Palo Alto vs. CrowdStrike Falcon Both Cortex XDR and Crowd Strike Falcon offer cloud-based solutions th...

See all answers

How is Cortex XDR compared with Microsoft Defender?

Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface,...

See all answers

How does Crowdstrike Falcon compare with Darktrace?

Both of these products perform similarly and have many outstanding attributes. CrowdStrike Falcon offers an amazing u...

See all answers

How does Microsoft Defender for Endpoint compare with Crowdstrike Falcon?

The CrowdStrike solution delivers a lot of information about incidents. It has a very light sensor that will never pu...

See all answers

Is Crowdstrike Falcon better than Trend Micro Deep Security?

I like that Crowdstrike allows me to easily correlate data between my firewalls. What’s most useful for my needs is t...

See all answers

Ask a question

Earn 20 points

Comparisons

Microsoft Defender for Endpoint vs Cortex XDR by Palo Alto Networks

Compared 8% of the time

SentinelOne Singularity Complete vs Cortex XDR by Palo Alto Networks

Compared 6% of the time

Cortex XSIAM vs Cortex XDR by Palo Alto Networks

Compared 4% of the time

Symantec Endpoint Security vs Cortex XDR by Palo Alto Networks

Compared 3% of the time

Trellix Endpoint Security Platform vs Cortex XDR by Palo Alto Networks

Compared 3% of the time

More Cortex XDR by Palo Alto Networks Competitors

Microsoft Defender for Endpoint vs CrowdStrike Falcon

Compared 3% of the time

Fortinet FortiEDR vs CrowdStrike Falcon

Compared 3% of the time

Microsoft Defender XDR vs CrowdStrike Falcon

Compared 3% of the time

SentinelOne Singularity Complete vs CrowdStrike Falcon

Compared 2% of the time

Trellix Endpoint Security Platform vs CrowdStrike Falcon

Compared 1% of the time

More CrowdStrike Falcon Competitors

MetaDefender vs Symantec Content Analysis

Compared 61% of the time

Forcepoint ZT CDR (Zero Trust Content Disarm & Reconstruction) vs Symantec Content Analysis

Compared 39% of the time

More Symantec Content Analysis Competitors

Product Reports

Buyer's Guide

Cortex XDR by Palo Alto Networks

April 2026

Download Cortex XDR by Palo Alto Networks product report

Buyer's Guide

CrowdStrike Falcon

April 2026

Download CrowdStrike Falcon product report

Buyer's Guide

Anti-Malware Tools

April 2026

Download Symantec Content Analysis product report

Also Known As

Cyvera, Cortex XDR, Palo Alto Networks Traps

CrowdStrike Falcon XDR, CrowdStrike Falcon Threat Intelligence, CrowdStrike Identity Protection, CrowdStrike Falcon Surface, CrowdStrike Falcon Platform

Symantec Content & Malware Analysis, Symantec Content and Malware Analysis

Overview

Cortex XDR by Palo Alto Networks provides advanced threat detection with AI-driven endpoint protection and seamless integration, ensuring multi-layered security and automatic threat response.

Cortex XDR is designed to safeguard endpoints against malware and suspicious activities. It offers advanced threat detection and response capabilities using behavioral analysis, AI, and machine learning. It seamlessly integrates with security infrastructures, providing endpoint security, firewall integration, and enhanced visibility in both cloud-based and on-premises environments.

What are the key features of Cortex XDR?

Advanced Threat Detection: Uses AI and machine learning for proactive threat identification.
Multi-layered Security: Combines various security measures for comprehensive protection.
Endpoint Protection: Safeguards against malware and exploits.
Behavioral Analysis: Monitors suspicious activity for early detection.
Automatic Threat Response: Automates responses to neutralize threats.

What benefits should users expect?

Ease of Use: Simplifies security management with intuitive design.
Resource Efficiency: Minimizes impact on system resources.
Integration Capabilities: Works well with existing security setups.
Reduced Analyst Workload: Automates processes to decrease manual intervention.

Organizations in diverse sectors deploy Cortex XDR to protect against malware, leveraging its advanced threat detection capabilities. Its integration with existing security infrastructures appeals to those seeking comprehensive protection in both cloud and on-premises environments, providing enhanced visibility and threat intelligence.

Palo Alto Networks

CrowdStrike Falcon provides cutting-edge endpoint detection with automatic alerts, real-time monitoring, and seamless integration capabilities. Cloud-native architecture and AI-driven processes ensure scalable protection and efficient threat remediation.

CrowdStrike Falcon is recognized for its robust EDR and threat intelligence features that enhance security and streamline operations. Its lightweight agent minimizes system impact while offering real-time monitoring and detailed reporting. This platform uses cloud-native architecture for scalable, consistent protection, significantly reducing administrative demands. AI and machine learning empower precise threat hunting and behavioral analysis, which mitigates false positives and boosts cybersecurity efficiency. Users seek improvements in integration with other systems, reporting functions, and compatibility with specific operating systems. While the solution handles malware mitigation and threat response efficiently, suggestions for on-demand scanning, enhanced visibility, and better dashboard features are noted.

What are the key features of CrowdStrike Falcon?

Automatic Alert System: Provides instant alerts to enhance threat detection.
Robust EDR: Offers advanced endpoint detection capabilities.
Threat Intelligence: Delivers detailed insights for proactive security measures.
Real-time Monitoring: Enables continuous security assessments.
Seamless Integration Options: Streamlines operations with existing infrastructure.
Lightweight Agent: Minimizes system impact, maintaining performance efficiency.
Cloud-native Architecture: Provides scalable, consistent protection against threats.
AI and ML-driven Processes: Offers accurate threat hunting and behavioral analysis.

What benefits or ROI should users expect from CrowdStrike Falcon?

Enhanced Security: Comprehensive protection for endpoints using cutting-edge technologies.
Reduced Administrative Burden: Simplifies management of security incidents.
Efficient Threat Remediation: Minimizes downtime with quick threat response actions.
Improved Threat Visibility: Provides detailed reports and insights.
Scalable Protection: Ensures adaptable security measures across multiple devices.

In technology sectors, CrowdStrike Falcon commonly supports endpoint protection and threat response initiatives, allowing companies to replace traditional antivirus systems with more advanced solutions. In finance, it secures sensitive data across multiple platforms, ensuring compliance. In healthcare, real-time security analysis protects patient data on critical devices like servers and laptops, utilizing AI to enhance cybersecurity defenses.

CrowdStrike

Symantec Content Analysis uses a comprehensive approach to security that offers unequaled protection against known, unknown, and targeted attacks. ... Together, this fusion of content and malware analysis is the best protection against targeted malware attacks.

Broadcom

Sample Customers

CBI Health Group, University Honda, VakifBank

Information Not Available

OLFA, Ricoh, McKesson, COTA, ABS-CBN, Finastra, KAKUDAI, SGN, Caravel, KORAMIS, Snapper, Budapest Bank, Rockwell Automation

Buyer's Guide

Extended Detection and Response (XDR)

April 2026

Download Free Report

Find out what your peers are saying about CrowdStrike, SentinelOne, TrendAI and others in Extended Detection and Response (XDR). Updated: April 2026.

DOWNLOAD NOW

885,789 professionals have used our research since 2012.

We monitor all Extended Detection and Response (XDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.