We performed a comparison between Forescout Platform and Intercept X Endpoint based on real PeerSpot user reviews.
Find out in this report how the two Extended Detection and Response (XDR) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."There is also one dashboard that shows us the status of many controls at once and the details I can get... It gives a great overview of many areas, such as files, emails, chats, and links. Even with the apps, it gives you a great overview. In one place you can see where you should look into things more deeply..."
"The product integrates security into one tool instead of having third-party security tools."
"The most valuable feature depends on the scenario. For compliance, I like Microsoft Purview Information Protection and Data Loss Prevention. Sentinel is the most helpful feature for security. 365 Defender helps us prioritize threats across an enterprise. It's a crucial feature for the managed services team."
"I like that it's fully integrated with Windows, Microsoft 365 Exchange Online, and Outlook. It is better than other antivirus solutions because it's fully integrated with all Microsoft products. It's easy to integrate them and onboard all Windows devices from SCCM."
"Defender XDR has a feature called the timeline that lets you track all activities. It helps a lot with investigations."
"It gives a lot of flexibility in terms of configuration and customization as per the business requirements."
"From the perspective of Microsoft 365 XDR, the main benefit is a single, centralized dashboard offering the holistic visibility organizations crave."
"It has great stability."
"It's one of the tools that has given the federal government visibility into network devices and everything."
"The interface is easy to use."
"You can quickly filter your view of devices and zero in on the ones you want using a variety of tools, such as what subnet it is on or what it has been classified as."
"The plugins are very robust -- the ability scanner, patch management system, and SQL integrator."
"The most valuable features are remote access and administration scripts."
"The most valuable features of ForeScout is the fact that it can do network access control either with 802.1x or without 802.1x."
"The threat prevention feature provides complete visibility."
"Forescout Platform provides multiple features. They have a very effective device fingerprinting in their cloud. You do not need to add any devices manually, such as in Mac devices. Other solutions you have to add IoT devices and OT devices manually. This is one of the major areas that Forescout Platform is excelling in."
"It is a very scalable solution."
"The base product and the anti-malware feature are most valuable."
"The dashboard is user-friendly."
"The package we use also comes with spam filtering features, which are quite useful."
"It is one of the best in terms of technicality."
"It is easy to interact with, and its cost is also good."
"We find all features valuable. It has zero-day protection, which is the most valuable feature of Intercept X. We have Intercept X with EDR. EDR is a very important feature. It gives an idea about the source of a particular attack. An administrator gets to know everything, which helps in understanding the things that need to be done or protected in the organization. Based on this information, an administrator can decide what needs to open or allowed in the network. Without EDR, Intercept X is like an antivirus, and the administrator won't get to know the things going on at the organizational level. I recommend purchasing an EDR solution for every organization."
"The most valuable feature of the solution is that it is less hash-based than competitors."
"The logs could be better."
"Intrusion detection and prevention would be great to have with 365 Defender."
"I'd like to see a wider solution that includes not only desktop devices but also other devices, such as servers, storage cabinets, switching equipment, et cetera."
"The support could be more knowledgable to improve their offering."
"A simple dashboard without having to use MS Sentinel would be a welcome improvement."
"At times, when we have an incident email and we click on the link for that incident, it opens a pop-up, but there is nothing. It has happened a couple of times."
"We should be able to use the product on devices like Apple, Linux, etc."
"The advanced threat-hunting capabilities are phenomenal, and the security copilot enhances that, but some data elements could be better or have more context inside of the advanced tables themselves. The schemas feel a little limited to what they're building into the product. It's probably just a maturity thing. I imagine we'll see the features I want in the next year."
"The reporting feature needs improvement."
"For the user, the policy that they have implemented sometimes needs adjustments. Sometimes the features that the customer asks for aren't involved in the main installation, and I need to bolt an add-on in. However, I never know if this policy is the right one when I do this."
"The licensing costs are quite high. With the amount of hardware we have, we need too many licenses to make the product effective and it's ultimately just too costly."
"The system controls could be better."
"They need to handle their Tier 1 cases differently. The biggest negative regarding Forescout is their support. Not having the ability to get instantly transferred to a support engineer for Tier 1 cases is pretty ridiculous."
"Search - needs boolean functionality (or pseudo operand now working)."
"We experienced some detection issues when checking compliance for the Sophos agent."
"The ability to block external devices in Mac is lacking and needs to be added."
"It's a challenge to do system maintenance work on a notebook. You always have to disable Sophos first."
"They should work on the logs and events. Sophos Intercept X needs to increase the interface test so that it can export to a live event."
"We would like more application control in order to be able to schedule times and access."
"As for improvement, more notifications or emails about what to watch out for globally would be nice. For instance, information about the spread of a current phishing campaign or ransomware would be very helpful. I find that I have to dig in the back to find out what is happening on the global scene for things to be aware of."
"The security is good but the feature set is limited."
"They might want to offer an MSP model for licensing, to offer the solution as a software as a service."
"It would be a value-add if they can include integration with other technologies or solutions, like Fortinet, Blue Coat, etc."
"The deployment part needs to be improved."
Forescout Platform is ranked 12th in Extended Detection and Response (XDR) with 69 reviews while Intercept X Endpoint is ranked 8th in Extended Detection and Response (XDR) with 101 reviews. Forescout Platform is rated 8.4, while Intercept X Endpoint is rated 8.4. The top reviewer of Forescout Platform writes "We can go granular on each endpoint, quarantine non-compliant machines, and target vulnerabilities through scripting". On the other hand, the top reviewer of Intercept X Endpoint writes "A standard offering with good threat analysis but reduces machine performance". Forescout Platform is most compared with Cisco ISE (Identity Services Engine), Aruba ClearPass, Fortinet FortiNAC, Nozomi Networks and Armis, whereas Intercept X Endpoint is most compared with Microsoft Defender for Endpoint, CrowdStrike Falcon, Kaspersky Endpoint Security for Business, SentinelOne Singularity Complete and Fortinet FortiClient. See our Forescout Platform vs. Intercept X Endpoint report.
See our list of best Extended Detection and Response (XDR) vendors.
We monitor all Extended Detection and Response (XDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.