We performed a comparison between Microsoft Defender for Endpoint and Microsoft Defender Threat Intelligence based on real PeerSpot user reviews.
Find out in this report how the two Advanced Threat Protection (ATP) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The most valuable features are that it is flexible, and it is integrated with Microsoft products."
"I like the process visibility. This ability to visualize how something was executed is valuable, and the fact that Defender ATP is also linked to the threat intelligence that they have is also valuable. So, even if you have something that doesn't have a conventional signature, the fact that you get this strange execution means that you can detect things that are normally not visible."
"I like the fact that it has the ransomware solution in there. I'm glad that the ransomware solution is built into it. That's probably the biggest thing that I see in Microsoft Defender."
"The fact that it's from Microsoft, you don't have many false positives, unlike products from other vendors might have."
"Defender's analytics are much better than CrowdStrike's."
"It is easy to use because it is already pre-installed in Windows 10. We don't have to do anything to configure it. You can also configure the firewall by using a group policy so that it can be easily adopted in an environment."
"Defender is stable, I haven't had any problems with viruses when using it, and it's easy to update."
"It captures data through machine learning, which is built-in on the back-end. It also provides built-in analytics and a threat intelligence feature. It is a one-stop solution that doesn't require an antivirus because it comes prebuilt into Windows 10."
"The technical support services are excellent."
"The tool can proactively detect potential incidents."
"You can use it to monitor third parties and ensure they are not under threat attacks. It is beneficial in the GRC model."
"The product is useful when the end user downloads malware files."
"The tool is managed from the cloud, because of which the maintenance is very low."
"The product's initial setup phase was straightforward."
"I value how Threat Intelligence integrates with the different platforms in Microsoft."
"The solution blocks incoming threats on the local PC or any cloud-based threats."
"More integration with different platforms is an area for improvement for this product, and should be included in its next release."
"With the XDR dashboard, when you're doing an investigation and you're drilling down to obtain further details it tends to open many different tabs that take you away from your main tabs. You can end up having 10 tabs open for one investigation. This is another area for improvement because you can end up getting lost in the multiple tabs. Therefore, the central console can be improved so that it does not take you to several different pages for each investigation."
"The automation could be simpler on the mitigation side. It has a learning curve. Otherwise, it's pretty easy."
"Lowering the price would be an improvement."
"I would like to have a dashboard that shows an overview of the results for the enterprise."
"From an audit point of view, our auditors would like to have more reports on how things are used, if things go wrong, and how they went wrong. For example, if something got a warning, "Why?" So, we would like more versatility for tracing and reporting. That would improve the product, as long as the user interface doesn't get bogged down."
"The solution could be more friendly for end-users, with different type of scans or scheduled scans for it."
"Localization is always a challenge, especially with new products you typically want. Solutions are designed to be deployed where the most licenses are being consumed, such as in the United States. They focus on US products, devices, and networks. Specialized deployments for other countries would allow for a smoother experience in transition."
"One area that can be improved is reducing false positives."
"The software is expensive."
"The price point is something they can improve slightly for those who don't have an M 365 E5."
"Microsoft Defender Threat Intelligence should integrate with different platforms."
"I would like to see more AI features and capabilities."
"Having up-to-date documentation and real-time reflections in all portals would be beneficial to keep users informed about any changes. Additionally, the frequent changes in Microsoft's UI and the movement of features between different products in the set pose difficulties."
"I would like for there to be extra confirmation that there aren't viruses. Even if the virus detection software is always running there could be hidden applications that are using the computer."
"The price could be improved."
More Microsoft Defender for Endpoint Pricing and Cost Advice →
More Microsoft Defender Threat Intelligence Pricing and Cost Advice →
Microsoft Defender for Endpoint is ranked 2nd in Advanced Threat Protection (ATP) with 182 reviews while Microsoft Defender Threat Intelligence is ranked 15th in Advanced Threat Protection (ATP) with 23 reviews. Microsoft Defender for Endpoint is rated 8.0, while Microsoft Defender Threat Intelligence is rated 8.4. The top reviewer of Microsoft Defender for Endpoint writes "Eliminates the need to look at multiple dashboards by automatically providing one XDR dashboard to show the security score of each subscription". On the other hand, the top reviewer of Microsoft Defender Threat Intelligence writes "A tool that offers endpoint protection with low maintenance costs". Microsoft Defender for Endpoint is most compared with Symantec Endpoint Security, Intercept X Endpoint, CrowdStrike Falcon, SentinelOne Singularity Complete and Cortex XDR by Palo Alto Networks, whereas Microsoft Defender Threat Intelligence is most compared with Microsoft Sentinel, STAXX, Cisco Threat Grid, ThreatConnect Threat Intelligence Platform (TIP) and VirusTotal. See our Microsoft Defender Threat Intelligence vs. Microsoft Defender for Endpoint report.
See our list of best Advanced Threat Protection (ATP) vendors and best Microsoft Security Suite vendors.
We monitor all Advanced Threat Protection (ATP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.