Cybereason Endpoint Detection & Response vs OpenText EnCase eDiscovery comparison

The compared Cybereason and OpenText solutions aren't in the same category. Cybereason is ranked #30 in EDR , with an average rating of 7.7, and holds a 1.2% mindshare in the category. OpenText is ranked #12 in eD , and holds a 3.1% mindshare. Additionally, 85% of Cybereason users are willing to recommend the solution, compared to 75% of OpenText users who would recommend it.

Cybereason Endpoint Detecti...

Read 22 Cybereason Endpoint Detection & Response reviews

4,014 Views
2,569 Comparison Views

85% willing to recommend

OpenText EnCase eDiscovery

Read 8 OpenText EnCase eDiscovery reviews

880 Views
493 Comparison Views

75% willing to recommend

Cybereason Endpoint Detecti...

OpenText EnCase eDiscovery

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Cybereason Endpoint Detection & Response and OpenText EnCase eDiscovery based on real PeerSpot user reviews.

Find out in this report how the two Endpoint Detection and Response (EDR) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

To learn more, read our detailed Cybereason Endpoint Detection & Response vs. OpenText EnCase eDiscovery Report (Updated: January 2020).

Buyer's Guide

Cybereason Endpoint Detection & Response vs. OpenText EnCase eDiscovery

January 2020

Download the complete report

Helped 881,821 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Cybereason Endpoint Detecti...

Average Rating

7.8

Reviews Sentiment

5.6

Number of Reviews

Ranking in other categories

Endpoint Protection Platform (EPP) (40th), Endpoint Detection and Response (EDR) (30th)

OpenText EnCase eDiscovery

Average Rating

7.8

Reviews Sentiment

7.7

Number of Reviews

Ranking in other categories

eDiscovery (12th)

Mindshare comparison

Cybereason Endpoint Detection & Response and OpenText EnCase eDiscovery aren’t in the same category and serve different purposes. Cybereason Endpoint Detection & Response is designed for Endpoint Detection and Response (EDR) and holds a mindshare of 1.2%, up 1.0% compared to last year.
OpenText EnCase eDiscovery, on the other hand, focuses on eDiscovery, holds 3.1% mindshare, up 3.1% since last year.

Endpoint Detection and Response (EDR) Market Share Distribution
Product	Market Share (%)
Cybereason Endpoint Detection & Response	1.2%
CrowdStrike Falcon	8.7%
Microsoft Defender for Endpoint	7.3%
Other	82.8%

Endpoint Detection and Response (EDR)

eDiscovery Market Share Distribution
Product	Market Share (%)
OpenText EnCase eDiscovery	3.1%
Microsoft Purview eDiscovery	9.8%
kCura Relativity	5.5%
Other	81.6%

eDiscovery

Featured Reviews

Ivan Burke

Head of Research Development and Innovation at CSIR

Offers useful threat hunting and response capabilities but struggles to justify cost for smaller deployments

I mostly work with incident response, so I work with a bunch of them interchangeably, but mostly with the EDR components; I also get involved with some of the XDR components, especially for the cloud. Regarding analysis features, such as deep behavioral detection, I do use it sometimes; I usually don't use the automated version of it, as I prefer threat hunting directly, depending on if the season is available. I know some of them have pretty good analytics engines, but I tend to do the threat hunting on my own. I manage incident response for a bunch of companies, so some of them have Cybereason Endpoint Detection & Response integrated into Sentinel, some into Fortinet, and others into various tools. When considering cost-effectiveness, their pricing structure works such that if you're a large organization with more than a thousand endpoints to deploy to, then Cybereason Endpoint Detection & Response is worthwhile. But for anything less than 300, it's too expensive; obviously, the more you buy, the better the price, making it cheaper for you. Cybereason Endpoint Detection & Response best fits enterprise-level businesses such as huge corporations; however, we are in the process of removing it from many of our endpoint clients because it's not really showing enough value for them at the moment. We're trying to see how we can improve it with some of our clients, but at the moment, it's struggling compared to other EDR solutions that we have deployed. On a scale of one to ten, I rate Cybereason Endpoint Detection & Response a six.

Read full review

Alejandro Stromer

Director Consulting SAP OpenText en Entelgy at DCL Consultores EIM SL

A stable and scalable hybrid solution with easy setup

The solution is scalable. It has three levels. You have the presentation area that can be escalated to the balance sheet. You have the back-end area that can be escalated using higher viability to configure more application servers. Also, the area of storage can be increased. We usually cater to enterprise solutions but have small- and medium-sized customers. It starts with 25 users and goes up to 100s and 1000s.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"Cybereason absolutely enables us to mitigate and isolate on the fly. Our managed detection response telemetry has dropped dramatically since we began using it. It's very top-of-mind. We were running some tabletop exercises and none of the detections were getting triggered by the managed security services provider. So we needed to find a solution that would trigger high-fidelity alerts. That was Cybereason and it dramatically changed our landscape from the detection and response perspective."

"We didn't have the visibility that we now have. It has increased our visibility by a lot. So, we put a lot more time into really looking at our environment and what is happening throughout our different networks. It has increased our visibility by around fivefold."

"Cybereason's threat hunting and investigation are the most valuable features. Threat hunting is a user-friendly feature that keeps you safe. Investigation offers an added value that I haven't seen with other EDR services. It allows you to find specific policy problems within your environment."

"The interface is user-friendly."

"The initial setup was straightforward."

"What I find most valuable is the clarity of the platform. It is very straightforward."

"What I find most valuable is the clarity of the platform."

"To get my Cybereason instance up and running, I just install it; it takes less than a minute or two to actually install and run the installer."

More Cybereason Endpoint Detection & Response pros

"The technical support is excellent."

"The solution is very stable."

"It indexes much faster, and is more reflexive because of the Enscripts."

"I like the processing feature on the product because it does everything at once, i.e, indexing, recovery, keyword searches, etc."

"The most important feature we've found is the Enscripts. That is one powerful feature that I, personally, love to use."

"Data Recovery: Its ability to repair damaged partitions and uncover hidden partitions from within the tool, and allow further analysis."

"It speeds up the process, so I can meet my deadlines."

Cons

"There can be problems with the EDI."

"Ad hoc higher-level reporting to senior management can be improved or can be implemented. That's definitely an area of improvement that they need to focus on."

"I feel it is a shame that I cannot create groups of groups with inheritance."

"The integration with Microsoft solutions and Microsoft capabilities needs to be improved."

"The product's reporting isn't great."

"I would like to see improvements on the operational side, specifically in grouping."

"Its Microsoft PowerShell protections still need some compatibility improvements. We have run across just a few. It is compatible with 90% of what we have in our network, but there is that 10% that we are still struggling with as far as compatibility with the type of PowerShell scripts needed to run our day-to-day business."

"Compared to our previous endpoint, we have a lot more false positives and a lot more duplication of alerts. So we're chasing more alerts."

More Cybereason Endpoint Detection & Response cons

"In the past, incident response time for tech support was slow."

"Ease of use and learning curve need improvement."

"I would like to see a capability to ingest and absorb more data. That would be really good. It currently is lacking this function."

"The reporting is a bit unreliable. It needs to be better."

"We have come across problems with the end-case. We could not find an email discovery type of module and there was not flexibility with the email."

"Sometimes the application can take more time to complete the image processing or fail at the end of the process."

"There were minor UI bugs."

Pricing and Cost Advice

"Though it is not the cheapest solution but it fits our budget. We pay an annual licensing fee."

"I had to go through a third-party to purchase it, which I wasn't really pleased about."

"The pricing is manageable."

"I do not have experience with the licensing of the product."

"On a scale of one to ten, where one is cheap and ten is expensive, I rate the pricing an eight."

"In terms of cost, this is a good choice for our needs."

"This product is somewhat expensive and should be cheaper."

"In terms of pricing, it's a good solution."

More Cybereason Endpoint Detection & Response pricing and cost advice

"The product is affordable and user-friendly."

"We have a license. And, we found the cost high. We contacted them and talked to them about the ratio of the US dollar versus the Indian rupee and then we came to a solution."

"EnCase is an affordable solution."

See which vendors are best for you

Use our free recommendation engine to learn which Endpoint Detection and Response (EDR) solutions are best for your needs.

See recommendations

881,821 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

12%

Computer Software Company

11%

Manufacturing Company

Outsourcing Company

Performing Arts

14%

Financial Services Firm

Government

Manufacturing Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	5
Midsize Enterprise	4
Large Enterprise	13

By reviewers
Company Size	Count
Small Business	2
Midsize Enterprise	2
Large Enterprise	3

Questions from the Community

What is your primary use case for Cybereason Endpoint Detection & Response?

My main use case for Cybereason Endpoint Detection & Response is mostly for incident response.

See all answers

What needs improvement with Cybereason Endpoint Detection & Response?

When it comes to advanced threats, it sometimes helps me with finding them and hunting them down with threat detection capabilities; sometimes it's helpful, but sometimes it just drops more data on...

See all answers

What advice do you have for others considering Cybereason Endpoint Detection & Response?

See all answers

Ask a question

Earn 20 points

Comparisons

CrowdStrike Falcon vs Cybereason Endpoint Detection & Response

Compared 11% of the time

SentinelOne Singularity Complete vs Cybereason Endpoint Detection & Response

Compared 7% of the time

Fortinet FortiEDR vs Cybereason Endpoint Detection & Response

Compared 4% of the time

ESET Inspect vs Cybereason Endpoint Detection & Response

Compared 4% of the time

Trellix Endpoint Security Platform vs Cybereason Endpoint Detection & Response

Compared 3% of the time

More Cybereason Endpoint Detection & Response Competitors

BigFix vs OpenText EnCase eDiscovery

Compared 14% of the time

Trellix Endpoint Security Platform vs OpenText EnCase eDiscovery

Compared 13% of the time

Exterro vs OpenText EnCase eDiscovery

Compared 12% of the time

Nuix eDiscovery vs OpenText EnCase eDiscovery

Compared 10% of the time

CrowdStrike Falcon vs OpenText EnCase eDiscovery

Compared 9% of the time

More OpenText EnCase eDiscovery Competitors

Product Reports

Buyer's Guide

Cybereason Endpoint Detection & Response

February 2026

Cybereason Endpoint Detection & Response report

Download Cybereason Endpoint Detection & Response product report

Buyer's Guide

eDiscovery

February 2026

Download OpenText EnCase eDiscovery product report

Also Known As

Cybereason EDR, Cybereason Deep Detect & Respond

EnCase eDiscovery

Overview

Cybereason's Endpoint Detection and Response platform detects in real-time both signature and non-signature-based attacks and accelerates incident investigation and response. Cybereason connects together individual pieces of evidence to form a complete picture of a malicious operation.

Cybereason

eDiscovery collection tools address the rise in dispersed and remote workforces, the proliferation of mobile devices and new sources of data. Comprehensively collecting data across all data sources, including endpoints, such as desktops and laptops, is critical to defensibility. Collection analytics and culling is key to efficient digital investigations, narrowing the document collection to drive down the cost of legal review.

With OpenText™ EnCase™ eDiscovery, organizations can streamline the collection, culling and preservation of data across diverse sources in a single efficient process.

OpenText

Sample Customers

Lockheed Martin, Spark Capital, DocuSign, Softbank Capital

Ontario Ministry of Government, Aerospace Company, Chesterfield Police Department

Buyer's Guide

Cybereason Endpoint Detection & Response vs. OpenText EnCase eDiscovery

January 2020

Free Report: Cybereason Endpoint Detection & Response vs. OpenText EnCase eDiscovery

Find out what your peers are saying about Cybereason Endpoint Detection & Response vs. OpenText EnCase eDiscovery and other solutions. Updated: January 2020.

DOWNLOAD NOW

881,821 professionals have used our research since 2012.

See our Cybereason Endpoint Detection & Response vs. OpenText EnCase eDiscovery report.

We monitor all Endpoint Detection and Response (EDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.