Try our new research platform with insights from 80,000+ expert users

Elastic Security vs Kaspersky Endpoint Detection and Response Expert comparison

Elastic and Kaspersky are both solutions in the Endpoint Detection and Response (EDR) category. Elastic is ranked #16 with an average rating of 8.5, while Kaspersky is ranked #23 with an average rating of 7.7. Elastic holds a 2.5% mindshare in EDR, compared to Kaspersky’s 1.6% mindshare. Additionally, 86% of Elastic users are willing to recommend the solution, compared to 95% of Kaspersky users who would recommend it.
Elastic Security
Read 66 Elastic Security reviews
  • 10,861 Views
  • 3,801 Comparison Views
86% willing to recommend
Kaspersky Endpoint Detectio...
Read 51 Kaspersky Endpoint Detection and Response Expert reviews
  • 2,421 Views
  • 2,421 Comparison Views
95% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Sep 9, 2024

Elastic Security and Kaspersky Endpoint Detection and Response Expert are leading cybersecurity solutions with distinct strengths and weaknesses. Reviews indicate Elastic Security has an edge in pricing and customer support, while Kaspersky provides a comprehensive feature set.

Features: Elastic Security offers robust threat intelligence, real-time data monitoring, and cost-effective solutions. Kaspersky Endpoint Detection and Response Expert stands out for advanced threat detection algorithms, comprehensive reporting tools, and automated response with detailed forensic analysis.

Room for Improvement: Elastic Security needs more intuitive navigation, expanded integration options, and better scalability. Kaspersky requires improved performance in large-scale deployments, better documentation, and enhanced user interface usability.

Ease of Deployment and Customer Service: Elastic Security is known for straightforward deployment and responsive customer service. Kaspersky has a more complex deployment process but provides detailed support resources.

Pricing and ROI: Elastic Security is cost-effective with low setup costs, offering immediate financial accessibility. Kaspersky's higher setup costs are justified by its comprehensive feature set, promising strong long-term ROI.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Elastic Security vs. Kaspersky Endpoint Detection and Response Expert Report (Updated: September 2025).
Buyer's Guide
Elastic Security vs. Kaspersky Endpoint Detection and Response Expert
September 2025
Download the complete report
Helped 873,808 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
6.0
Elastic Security provides satisfactory ROI and cost savings, though users experience varied support levels and payback periods.
Sentiment score
2.5
Kaspersky Endpoint Detection and Response Expert enhances data security and confidence, proving valuable for small to large businesses.
It does not require hefty security budgets and can be deployed for enterprise security effectively.
For more quotes and insights, download the Elastic Security report
No quotes available
For more quotes and insights, download the Kaspersky Endpoint Detection and Response Expert report
 

Customer Service

Sentiment score
6.4
Elastic Security support is inconsistent; users favor community and documentation, while premium users seek more responsive and personalized help.
Sentiment score
6.2
Kaspersky EDR Expert's customer support is mixed, with rapid premium response but slow standard assistance, prompting self-reliance.
Support is prompt and helpful.
Most of the time when my team encounters issues, they receive responses within 24 hours.
I have not faced any difficulties with Elastic Security, as we have a pretty good support service from them.
For more quotes and insights, download the Elastic Security report
I rate the technical support from Kaspersky a 10, as they respond quickly with engineers joining the conversation within three to five minutes.
I have my own independent team for Kaspersky deployment and operational support, so I am not dependent on Kaspersky's backend technical support.
From my perspective, the local team and the support team of Kaspersky Endpoint Detection and Response Expert need to be more accurate and more responsible.
For more quotes and insights, download the Kaspersky Endpoint Detection and Response Expert report
reviewer2181228 - PeerSpot reviewerSyedAli17 - PeerSpot reviewerLaurentiu Popescu - PeerSpot reviewerMohamedTantawy - PeerSpot reviewerRavi-Upadhyay - PeerSpot reviewer
ZS
 

Scalability Issues

Sentiment score
7.3
Elastic Security offers scalable solutions adaptable to various environments, praised for flexibility and requiring careful planning for integration.
Sentiment score
7.0
Kaspersky EDR Expert is scalable and robust, but flexibility and resource needs vary by organization and infrastructure.
It allows us to think about specific use cases, such as gathering malicious IPs in a single view and analyzing threats based on geolocation.
Elastic Security is quite scalable.
For more quotes and insights, download the Elastic Security report
Kaspersky Endpoint Detection and Response Expert is very scalable, working with high availability techniques across three main data centers in my organization.
I believe Kaspersky Endpoint Detection and Response Expert is scalable, as I can keep adding agents without hard limitations.
For more quotes and insights, download the Kaspersky Endpoint Detection and Response Expert report
SyedAli17 - PeerSpot reviewerLaurentiu Popescu - PeerSpot reviewerMohamedTantawy - PeerSpot reviewerRavi-Upadhyay - PeerSpot reviewer
 

Stability Issues

Sentiment score
7.7
Elastic Security is generally stable and reliable but can face challenges with big data and requires careful configuration.
Sentiment score
6.6
Kaspersky Endpoint Detection and Response Expert offers reliable, scalable threat protection with minor issues with older engines and components.
In terms of stability, I would rate Elastic a solid eight out of ten.
For more quotes and insights, download the Elastic Security report
It effectively detects new applications and requires whitelisting based on assessments discussed with the technical teams or vendors.
Customers using Kaspersky Endpoint Detection and Response Expert can manage environments with as few as 100 endpoints or as many as 5,000 endpoints very effectively.
I haven't found any issues with this particular solution, and there's no room for improvement for Kaspersky Endpoint Detection and Response Expert.
For more quotes and insights, download the Kaspersky Endpoint Detection and Response Expert report
reviewer2181228 - PeerSpot reviewerMohamedTantawy - PeerSpot reviewerRavi-Upadhyay - PeerSpot reviewer
RK
 

Room For Improvement

Elastic Security needs improvements in authentication, usability, automation, scalability, integration, and pricing, with user-friendly dashboards and documentation.
Kaspersky Endpoint Detection and Response Expert requires better efficiency, integration, support, pricing, and user interface enhancements for competitive advantage.
CrowdStrike and Defender have more established threat intelligence integration due to having a larger client base.
My security testing team continuously reports vulnerabilities, and we have to fix and update the versions frequently.
Machine learning algorithms become better with time; as they ingest a huge volume of data, they become better.
For more quotes and insights, download the Elastic Security report
A centralized dashboard is a primary requirement, as it would facilitate easier management without needing to install multiple agents.
Deployment with the console directly, without depending on other workers to deploy the agents, would be beneficial.
Compared to my previous product, Kaspersky Endpoint Detection and Response Expert is not up to the mark; it's below my rating.
For more quotes and insights, download the Kaspersky Endpoint Detection and Response Expert report
reviewer2181228 - PeerSpot reviewerSyedAli17 - PeerSpot reviewerLaurentiu Popescu - PeerSpot reviewerRavi-Upadhyay - PeerSpot reviewerRodrigo Censi - PeerSpot reviewer
ZS
 

Setup Cost

Elastic Security provides a free open-source option, competitive pricing, and subscription plans, appealing to cost-conscious enterprises.
Kaspersky EDR Expert pricing is competitive, cost-effective for large enterprises, user-based, but may be pricey for small businesses.
The pricing is reasonable, especially for Small Medium Enterprises (SMEs), making it a viable option for businesses building their security infrastructure.
This is beneficial for SMEs as they do not need extensive budgets for security solutions.
Elastic Security is considered cost-effective, especially at lower EPS levels.
For more quotes and insights, download the Elastic Security report
The pricing is nominal when we compare it with other solutions.
Compared to other products, the pricing for Kaspersky Endpoint Detection and Response Expert is almost the same.
For more quotes and insights, download the Kaspersky Endpoint Detection and Response Expert report
reviewer2181228 - PeerSpot reviewerSyedAli17 - PeerSpot reviewerreviewer2405523 - PeerSpot reviewer
RK
ZS
 

Valuable Features

Elastic Security provides scalable, customizable threat response with fast search, real-time analysis, and strong community support for actionable insights.
Kaspersky Endpoint Detection and Response Expert provides comprehensive security with easy setup and integration, ideal for institutions facing online threats.
Elastic Security offers good insight regarding alerts, reports, and cases.
Elastic Security offers advanced features such as machine learning and integration with ChatGPT.
We require rapid processing speed for alerts and event data, and Elastic Security is very efficient at handling this level of data.
For more quotes and insights, download the Elastic Security report
The ATP functionality is quite strong because it utilizes the behavioral analytics engine in the backend, which employs machine learning mechanisms to identify any kind of vulnerability or exploit running on the operating system level and the network level.
Almost all our clients use the Patch Management, vulnerability, and integration feature.
The product is strong enough and capable of handling the type of detections as protection and security.
For more quotes and insights, download the Kaspersky Endpoint Detection and Response Expert report
reviewer2181228 - PeerSpot reviewerreviewer2405523 - PeerSpot reviewerSyedAli17 - PeerSpot reviewerRavi-Upadhyay - PeerSpot reviewerRodrigo Censi - PeerSpot reviewer
ZS
 

Categories and Ranking

Elastic Security
Ranking in Endpoint Detection and Response (EDR)
16th
Average Rating
7.8
Reviews Sentiment
6.8
Number of Reviews
66
Ranking in other categories
Log Management (7th), Security Information and Event Management (SIEM) (5th), Security Orchestration Automation and Response (SOAR) (5th), Extended Detection and Response (XDR) (8th)
Kaspersky Endpoint Detectio...
Ranking in Endpoint Detection and Response (EDR)
23rd
Average Rating
8.2
Reviews Sentiment
6.5
Number of Reviews
51
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of November 2025, in the Endpoint Detection and Response (EDR) category, the mindshare of Elastic Security is 2.5%, up from 2.1% compared to the previous year. The mindshare of Kaspersky Endpoint Detection and Response Expert is 1.6%, up from 1.0% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Endpoint Detection and Response (EDR) Market Share Distribution
ProductMarket Share (%)
Elastic Security2.5%
Kaspersky Endpoint Detection and Response Expert1.6%
Other95.9%
Endpoint Detection and Response (EDR)
 

Featured Reviews

Laurentiu Popescu - PeerSpot reviewer
Has improved threat detection with deep log analysis and streamlined investigation workflows
The most useful features I find in Elastic Security are the forensic ones that allow us to carry deeper analysis into the logs for in-depth investigations, and the dashboards, with the reporting dashboard being quite user-friendly. Elastic Security is quite good at identifying threats, as it is part of the deep investigation tool that I mentioned before. Unless we need to look further into a certain log, we can carry out a deeper analysis and forensics on those particular logs. I can assess the impact of Elastic Security's real-time data analysis on our threat response efficiency as working pretty good. We are looking for real-time analysis because we have a continuous inflow of logs from different sources: from our cloud, from Active Directory, from our network. So it works pretty well.
Read full review
Ravi-Upadhyay - PeerSpot reviewer
Provides strong threat detection and response through behavior analytics and network isolation
I have found the most valuable features of Kaspersky Endpoint Detection and Response Expert to be its ability to tackle the biggest challenges customers face when they have to mitigate any kind of a malware, ransomware attack, or online theft scenarios. The solution utilizes its HIPS, which is the host intrusion prevention system, behavior analytics system, and device control mechanism, making the antivirus capabilities of EDR quite strong. It is able to detect zero-day threats as well as historical or legacy malware, providing protection against current threats in the market and legacy malware. My opinion on the advanced threat detection algorithms in Kaspersky Endpoint Detection and Response Expert is that the ATP functionality is quite strong because it utilizes the behavioral analytics engine in the backend, which employs machine learning mechanisms to identify any kind of vulnerability or exploit running on the operating system level and the network level. If an attack is about to happen on the endpoint, it is able to protect over the network as well and checks for any illegitimate encryption activities. The machine learning capability within Kaspersky Endpoint Detection and Response Expert has contributed to improving detection accuracy and reducing false positives in my environment by helping me identify malicious activity and differentiate between any malicious activity on the operating system level and on the network level. I have seen customers with in-house developed applications that have no public signatures available. Once I whitelist a particular application, it intelligently whitelists not only the executable but also all the dependent services required to run that application. Furthermore, Kaspersky Endpoint Detection and Response Expert has successfully blocked network-level attacks on the endpoint. For example, during a recent DoS attack aimed at choking the entire network, Kaspersky detected the attack, isolated the device in a sandbox network, and alerted my SOC team via email for corrective action, thereby proactively helping me detect and protect devices from malicious attacks.
Read full review
report
See which vendors are best for you
Use our free recommendation engine to learn which Endpoint Detection and Response (EDR) solutions are best for your needs.
See recommendations
873,808 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
14%
Government
10%
Comms Service Provider
8%
University
7%
Computer Software Company
16%
Financial Services Firm
9%
Manufacturing Company
8%
Comms Service Provider
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business40
Midsize Enterprise11
Large Enterprise15
By reviewers
Company SizeCount
Small Business30
Midsize Enterprise4
Large Enterprise18
 

Questions from the Community

Datadog vs ELK: which one is good in terms of performance, cost and efficiency?
With Datadog, we have near-live visibility across our entire platform. We have seen APM metrics impacted several times lately using the dashboards we have created with Datadog; they are very good c...
See all answers
What do you like most about Elastic Security?
Elastic provides the capability to index quickly due to the reverse indexes it offers. This data is crucial as it contains critical information. The reverse index allows fast data indexing because ...
See all answers
What is your experience regarding pricing and costs for Elastic Security?
I am satisfied with the pricing, setup cost, and licensing cost. It is a pure 10.
See all answers
What do you like most about Kaspersky Endpoint Detection and Response Expert?
The integration with our hypervisor is quite smooth, especially within the Kaspersky Enterprise environment. We have many virtual machines, and the integration is helpful.
See all answers
What is your experience regarding pricing and costs for Kaspersky Endpoint Detection and Response Expert?
The price of the solution is economical.
See all answers
What needs improvement with Kaspersky Endpoint Detection and Response Expert?
The remote installation can be improved, or it should include zero-time protection.
See all answers
 

Comparisons

Wazuh vs Elastic Security Logo
Wazuh vs Elastic Security
Compared 13% of the time
Splunk Enterprise Security vs Elastic Security Logo
Splunk Enterprise Security vs Elastic Security
Compared 7% of the time
IBM Security QRadar vs Elastic Security Logo
IBM Security QRadar vs Elastic Security
Compared 7% of the time
CrowdStrike Falcon vs Elastic Security Logo
CrowdStrike Falcon vs Elastic Security
Compared 6% of the time
Microsoft Defender for Endpoint vs Elastic Security Logo
Microsoft Defender for Endpoint vs Elastic Security
Compared 5% of the time
More Elastic Security Competitors
Fortinet FortiEDR vs Kaspersky Endpoint Detection and Response Expert Logo
Fortinet FortiEDR vs Kaspersky Endpoint Detection and Response Expert
Compared 26% of the time
Trend Vision One vs Kaspersky Endpoint Detection and Response Expert Logo
Trend Vision One vs Kaspersky Endpoint Detection and Response Expert
Compared 16% of the time
Check Point Harmony Endpoint vs Kaspersky Endpoint Detection and Response Expert Logo
Check Point Harmony Endpoint vs Kaspersky Endpoint Detection and Response Expert
Compared 9% of the time
Cortex XDR by Palo Alto Networks vs Kaspersky Endpoint Detection and Response Expert Logo
Cortex XDR by Palo Alto Networks vs Kaspersky Endpoint Detection and Response Expert
Compared 7% of the time
Intercept X Endpoint vs Kaspersky Endpoint Detection and Response Expert Logo
Intercept X Endpoint vs Kaspersky Endpoint Detection and Response Expert
Compared 3% of the time
More Kaspersky Endpoint Detection and Response Expert Competitors
 

Product Reports

Buyer's Guide
Elastic Security
November 2025
Elastic Security reportDownload Elastic Security product report
Buyer's Guide
Kaspersky Endpoint Detection and Response Expert
November 2025
Kaspersky Endpoint Detection and Response Expert reportDownload Kaspersky Endpoint Detection and Response Expert product report
 

Also Known As

Elastic SIEM, ELK Logstash
Kaspersky EDR
 

Overview

Elastic Security is a robust, open-source security solution designed to offer integrated threat prevention, detection, and response capabilities across an organization's entire digital estate. Part of the Elastic Stack (which includes Elasticsearch, Logstash, and Kibana), Elastic Security leverages the power of search, analytics, and data aggregation to provide real-time insight into threats and vulnerabilities. It is a comprehensive platform that supports a wide range of security needs, from endpoint protection to cloud and network security, making it a versatile choice for organizations looking to enhance their cybersecurity posture.


Elastic Security combines the features of a security information and event management (SIEM) system with endpoint protection, allowing organizations to detect, investigate, and respond to threats in real time. This unified approach helps reduce complexity and improve the efficiency of security operations.

Additional offerings and benefits:

  • The platform utilizes advanced analytics, machine learning algorithms, and anomaly detection to identify threats and suspicious activities.
  • It offers extensive integration options with other tools and platforms, facilitating a more cohesive and comprehensive security ecosystem.
  • With Kibana, users gain access to powerful visualization tools and dashboards that provide real-time insight into security data.

Finally, Elastic Security benefits from a global community of users who contribute to its threat intelligence, helping to enhance its detection capabilities. This collaborative approach ensures that the solution remains on the cutting edge of cybersecurity, with up-to-date information on the latest threats and vulnerabilities.

Elastic

Kaspersky Endpoint Detection and Response Expert is a comprehensive cybersecurity solution designed to detect and respond to advanced threats in real time. It combines advanced threat intelligence, machine learning algorithms, and behavioral analysis to provide proactive protection against sophisticated attacks. 

With its centralized management console, security teams can easily monitor and investigate incidents, while automated response capabilities enable quick remediation. This solution offers deep visibility into endpoint activities, allowing organizations to identify and mitigate potential risks effectively. Kaspersky Endpoint Detection and Response Expert is a powerful tool for enhancing the overall security posture of businesses, ensuring the protection of critical assets and sensitive data.

Kaspersky
 

Sample Customers

Texas A&M, U.S. Air Force, NuScale Power, Martin's Point Health Care
Ferrari, Insolar, Tael, Republic of Serbia
Buyer's Guide
Elastic Security vs. Kaspersky Endpoint Detection and Response Expert
September 2025
Free Report: Elastic Security vs. Kaspersky Endpoint Detection and Response Expert
Find out what your peers are saying about Elastic Security vs. Kaspersky Endpoint Detection and Response Expert and other solutions. Updated: September 2025.
DOWNLOAD NOW
873,808 professionals have used our research since 2012.
See our Elastic Security vs. Kaspersky Endpoint Detection and Response Expert report.
See our list of best Endpoint Detection and Response (EDR) vendors.

We monitor all Endpoint Detection and Response (EDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.