• Home
  • Microsoft Defender for Endpoint vs. Microsoft Defender Threat Intelligence

Microsoft Defender Threat Intelligence vs Microsoft Defender for Endpoint comparison

Cancel
You must select at least 2 products to compare!
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
Microsoft Defender Threat Intelligence vs. Microsoft Defender for Endpoint
March 2024
Executive Summary

We performed a comparison between Microsoft Defender for Endpoint and Microsoft Defender Threat Intelligence based on real PeerSpot user reviews.

Find out in this report how the two Advanced Threat Protection (ATP) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.
To learn more, read our detailed Microsoft Defender Threat Intelligence vs. Microsoft Defender for Endpoint Report (Updated: March 2024).
Download the complete report
768,886 professionals have used our research since 2012.
Featured Review
Doug Kinzinger
Has good reporting and logging features
Defender helps us prioritize threats across the organization. When we needed to update the patches on our endpoints, we could look at all the... Read more →
DineshKumar25
Provides threat detection capabilities and protects the environment from zero-day attacks
The platform ensures that the environment is fully protected. Its operational excellence helps us reduce resource costs. We do not need a large... Read more →
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"The most valuable features are that it is flexible, and it is integrated with Microsoft products.""I like the process visibility. This ability to visualize how something was executed is valuable, and the fact that Defender ATP is also linked to the threat intelligence that they have is also valuable. So, even if you have something that doesn't have a conventional signature, the fact that you get this strange execution means that you can detect things that are normally not visible.""I like the fact that it has the ransomware solution in there. I'm glad that the ransomware solution is built into it. That's probably the biggest thing that I see in Microsoft Defender.""The fact that it's from Microsoft, you don't have many false positives, unlike products from other vendors might have.""Defender's analytics are much better than CrowdStrike's.""It is easy to use because it is already pre-installed in Windows 10. We don't have to do anything to configure it. You can also configure the firewall by using a group policy so that it can be easily adopted in an environment.""Defender is stable, I haven't had any problems with viruses when using it, and it's easy to update.""It captures data through machine learning, which is built-in on the back-end. It also provides built-in analytics and a threat intelligence feature. It is a one-stop solution that doesn't require an antivirus because it comes prebuilt into Windows 10."

More Microsoft Defender for Endpoint Pros →

"The technical support services are excellent.""The tool can proactively detect potential incidents.""You can use it to monitor third parties and ensure they are not under threat attacks. It is beneficial in the GRC model.""The product is useful when the end user downloads malware files.""The tool is managed from the cloud, because of which the maintenance is very low.""The product's initial setup phase was straightforward.""I value how Threat Intelligence integrates with the different platforms in Microsoft.""The solution blocks incoming threats on the local PC or any cloud-based threats."

More Microsoft Defender Threat Intelligence Pros →

Cons
"More integration with different platforms is an area for improvement for this product, and should be included in its next release.""With the XDR dashboard, when you're doing an investigation and you're drilling down to obtain further details it tends to open many different tabs that take you away from your main tabs. You can end up having 10 tabs open for one investigation. This is another area for improvement because you can end up getting lost in the multiple tabs. Therefore, the central console can be improved so that it does not take you to several different pages for each investigation.""The automation could be simpler on the mitigation side. It has a learning curve. Otherwise, it's pretty easy.""Lowering the price would be an improvement.""I would like to have a dashboard that shows an overview of the results for the enterprise.""From an audit point of view, our auditors would like to have more reports on how things are used, if things go wrong, and how they went wrong. For example, if something got a warning, "Why?" So, we would like more versatility for tracing and reporting. That would improve the product, as long as the user interface doesn't get bogged down.""The solution could be more friendly for end-users, with different type of scans or scheduled scans for it.""Localization is always a challenge, especially with new products you typically want. Solutions are designed to be deployed where the most licenses are being consumed, such as in the United States. They focus on US products, devices, and networks. Specialized deployments for other countries would allow for a smoother experience in transition."

More Microsoft Defender for Endpoint Cons →

"One area that can be improved is reducing false positives.""The software is expensive.""The price point is something they can improve slightly for those who don't have an M 365 E5.""Microsoft Defender Threat Intelligence should integrate with different platforms.""I would like to see more AI features and capabilities.""Having up-to-date documentation and real-time reflections in all portals would be beneficial to keep users informed about any changes. Additionally, the frequent changes in Microsoft's UI and the movement of features between different products in the set pose difficulties.""I would like for there to be extra confirmation that there aren't viruses. Even if the virus detection software is always running there could be hidden applications that are using the computer.""The price could be improved."

More Microsoft Defender Threat Intelligence Cons →

Pricing and Cost Advice
  • "The product is free of charge and comes integrated into Windows."
  • "The solution is free."
  • "This product is included in the pricing for Windows."
  • "If you don't purchase the advanced threat protection then there is no additional charge."
  • "It is affordable and comes in the Office 365 bundle."
  • "Microsoft Defender ATP is expensive."
  • "I pay for it through the Windows Professional or Standard license. It is a one-time cost for me, and I use the same license."
  • "When compared with other vendors, the pricing is very high."

    • More Microsoft Defender for Endpoint Pricing and Cost Advice →

  • "Considering Microsoft is constantly changing licensing, I would give it a seven out of ten. It can be difficult to get your head around it, especially for small to medium-sized enterprises (SMEs)."
  • "They offer two license plans: Microsoft Defender for endpoints and Microsoft Defender for businesses."
  • "The product’s pricing is worth it."
  • "The solution can be licensed, but most users would already have it in their Office 365 license."
  • "It is an expensive product."
  • "The tool is expensive as a stand-alone solution. However, it is not cheap when you purchase it as a bundle."
  • "I rate the product's price a six or seven on a scale of one to ten, where one is expensive, and ten is cheap."
  • "I use the product's default version, which is a free one and not the licensed version."

    • More Microsoft Defender Threat Intelligence Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which Advanced Threat Protection (ATP) solutions are best for your needs.
    See Recommendations
    768,886 professionals have used our research since 2012.
    Questions from the Community
    How is Cortex XDR compared with Microsoft Defender?
    Top Answer:Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface, applies behavioral-based endpoint protection and response, and includes risk-based… more »
    Which offers better endpoint security - Symantec or Microsoft Defender?
    Top Answer:We use Symantec because we do not use MS Enterprise products, but in my opinion, Microsoft Defender is a superior solution Microsoft Defender for Endpoint is a cloud-delivered endpoint security… more »
    How does Microsoft Defender for Endpoint compare with Crowdstrike Falcon?
    Top Answer:The CrowdStrike solution delivers a lot of information about incidents. It has a very light sensor that will never push your machine hardware to "test", you don't have the usual "scan now" feature but… more »
    Read all 2 answers   →
    What do you like most about Microsoft Defender Threat Intelligence?
    Top Answer:It just runs in the background. I don't have to worry about, making sure it's Intelligence. So, you know, this kind of makes it very easy, have to worry about installing. It is easy to use.
    Read all 13 answers   →
    What needs improvement with Microsoft Defender Threat Intelligence?
    Top Answer:I would like for there to be extra confirmation that there aren't viruses. Even if the virus detection software is always running there could be hidden applications that are using the computer.
    Read all 14 answers   →
    What is your primary use case for Microsoft Defender Threat Intelligence?
    Top Answer:We use the product for endpoint security of machines. It includes threat detection, defining compliance rules, and governance policies. It helps us with extracting reports as well.
    Read all 14 answers   →
    Ranking
    2nd
    out of 37 in Advanced Threat Protection (ATP)
    Views
    3,197
    Comparisons
    2,555
    Reviews
    74
    Average Words per Review
    1,004
    Rating
    8.3
    15th
    out of 37 in Advanced Threat Protection (ATP)
    Views
    429
    Comparisons
    228
    Reviews
    22
    Average Words per Review
    383
    Rating
    8.4
    Comparisons
    Also Known As
    Microsoft Defender ATP, Microsoft Defender Advanced Threat Protection, MS Defender for Endpoint, Microsoft Defender Antivirus
    Learn More
    Microsoft
    Microsoft
    Video Not Available
    Interactive Demo
    Microsoft
    Watch a demo
    Microsoft
    Demo Not Available
    Overview

    Microsoft Defender for Endpoint is a comprehensive security solution that provides advanced threat protection for organizations. It offers real-time protection against various types of cyber threats, including malware, viruses, ransomware, and phishing attacks.

    With its powerful machine-learning capabilities, it can detect and block sophisticated attacks before they can cause any harm. The solution also includes endpoint detection and response (EDR) capabilities, allowing organizations to quickly investigate and respond to security incidents. It provides detailed insights into the attack timeline, enabling security teams to understand the scope and impact of an incident.

    Microsoft Defender for Endpoint also offers proactive threat hunting, allowing organizations to proactively search for and identify potential threats within their network. It integrates seamlessly with other Microsoft security solutions, such as Microsoft Defender XDR, to provide a unified and holistic security approach. With its centralized management console, organizations can easily deploy, configure, and monitor the security solution across their entire network.

    Microsoft Defender for Endpoint is a robust and scalable security solution that helps organizations protect their endpoints and data from evolving cyber threats.

    Microsoft Defender Threat Intelligence is a comprehensive security solution that provides organizations with real-time insights into the latest cyber threats. Leveraging advanced machine learning and artificial intelligence capabilities, it offers proactive threat detection and response, enabling businesses to stay one step ahead of attackers. With Microsoft Defender Threat Intelligence, organizations gain access to a vast array of threat intelligence data, including indicators of compromise (IOCs), security incidents, and emerging threats. This data is collected from a wide range of sources, such as Microsoft's global sensor network, industry partners, and security researchers, ensuring comprehensive coverage and accuracy. The solution's advanced analytics and machine learning algorithms analyze this threat intelligence data in real-time, identifying patterns, trends, and anomalies that may indicate a potential security breach. By continuously monitoring the network and endpoints, Microsoft Defender Threat Intelligence can quickly detect and respond to threats, minimizing the impact of attacks and reducing the time to remediation. 

    Sample Customers
    Petrofrac, Metro CSG, Christus Health
    Information Not Available
    Top Industries
    REVIEWERS
    Financial Services Firm19%
    Computer Software Company16%
    Comms Service Provider7%
    Energy/Utilities Company7%
    VISITORS READING REVIEWS
    Educational Organization22%
    Computer Software Company13%
    Government8%
    Financial Services Firm7%
    REVIEWERS
    Computer Software Company29%
    Financial Services Firm21%
    Non Profit14%
    Manufacturing Company7%
    VISITORS READING REVIEWS
    Computer Software Company22%
    Government10%
    Financial Services Firm9%
    Educational Organization9%
    Company Size
    REVIEWERS
    Small Business40%
    Midsize Enterprise17%
    Large Enterprise43%
    VISITORS READING REVIEWS
    Small Business22%
    Midsize Enterprise32%
    Large Enterprise45%
    REVIEWERS
    Small Business50%
    Midsize Enterprise5%
    Large Enterprise45%
    VISITORS READING REVIEWS
    Small Business25%
    Midsize Enterprise13%
    Large Enterprise63%
    Buyer's Guide
    Microsoft Defender Threat Intelligence vs. Microsoft Defender for Endpoint
    March 2024
    Free Report: Microsoft Defender Threat Intelligence vs. Microsoft Defender for Endpoint
    Find out what your peers are saying about Microsoft Defender Threat Intelligence vs. Microsoft Defender for Endpoint and other solutions. Updated: March 2024.
    DOWNLOAD NOW
    768,886 professionals have used our research since 2012.

    Microsoft Defender for Endpoint is ranked 2nd in Advanced Threat Protection (ATP) with 182 reviews while Microsoft Defender Threat Intelligence is ranked 15th in Advanced Threat Protection (ATP) with 23 reviews. Microsoft Defender for Endpoint is rated 8.0, while Microsoft Defender Threat Intelligence is rated 8.4. The top reviewer of Microsoft Defender for Endpoint writes "Eliminates the need to look at multiple dashboards by automatically providing one XDR dashboard to show the security score of each subscription". On the other hand, the top reviewer of Microsoft Defender Threat Intelligence writes "A tool that offers endpoint protection with low maintenance costs". Microsoft Defender for Endpoint is most compared with Symantec Endpoint Security, Intercept X Endpoint, CrowdStrike Falcon, SentinelOne Singularity Complete and Cortex XDR by Palo Alto Networks, whereas Microsoft Defender Threat Intelligence is most compared with Microsoft Sentinel, STAXX, Cisco Threat Grid, ThreatConnect Threat Intelligence Platform (TIP) and VirusTotal. See our Microsoft Defender Threat Intelligence vs. Microsoft Defender for Endpoint report.

    See our list of best Advanced Threat Protection (ATP) vendors and best Microsoft Security Suite vendors.

    We monitor all Advanced Threat Protection (ATP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.