Microsoft Defender for Endpoint vs Open EDR comparison

Microsoft Defender for Endp...

Read 184 Microsoft Defender for Endpoint reviews

36,475 Views
28,365 Comparison Views

94% willing to recommend

Open EDR

Read 1 Open EDR review

1,993 Views
830 Comparison Views

100% willing to recommend

Microsoft Defender for Endp...

Open EDR

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Microsoft Defender for Endpoint and Open EDR based on real PeerSpot user reviews.

Find out what your peers are saying about Microsoft, SentinelOne, CrowdStrike and others in Endpoint Detection and Response (EDR).

To learn more, read our detailed Endpoint Detection and Response (EDR) Report (Updated: July 2024).

Buyer's Guide

Endpoint Detection and Response (EDR)

July 2024

Download the complete report

Helped 793,295 peers since 2012

Categories and Ranking

Microsoft Defender for Endp...

Ranking in Endpoint Detection and Response (EDR)

1st

Average Rating

8.0

Number of Reviews

184

Ranking in other categories

Endpoint Protection Platform (EPP) (1st), Advanced Threat Protection (ATP) (2nd), Anti-Malware Tools (1st), Microsoft Security Suite (6th)

Open EDR

Ranking in Endpoint Detection and Response (EDR)

46th

Average Rating

8.0

Number of Reviews

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of July 2024, in the Endpoint Detection and Response (EDR) category, the mindshare of Microsoft Defender for Endpoint is 13.3%, down from 18.7% compared to the previous year. The mindshare of Open EDR is 1.1%, up from 0.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Endpoint Detection and Response (EDR)

Unique Categories:

Endpoint Protection Platform (EPP)

12.2%

Advanced Threat Protection (ATP)

4.1%

No other categories found

Featured Reviews

Vili Nurminen

IT Development Manager at S-ryhmä / S Group

Nov 28, 2023

Provides visibility into SOC workstations and stops threats from spreading to machines

Microsoft Defender for Endpoint provides visibility into our workstations at SOC. We can react to threats faster and stop them from spreading from one machine to another. It protects from suspicious email attachment downloads. It will lock down the SOC and the workstations. It is an EDR product…

Read full review

Timothy Muriithi

Chief Information Officer at a tech consulting company with 51-200 employees

Feb 8, 2023

I also like the ability to remotely manage update packages on your systems, and the fact that there is an open source version

I'm personally reviewing Xcitium Open EDR. We haven't started selling it as a solution to other people. The client is on-prem, but they also have a cloud-based EDR OpenEDR includes a firewall and antivirus in one solution. I also like the ability to remotely manage update packages on your…

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"It's absolutely free to use."

"Auto-remediation: When the product sees malware, it resolves the issue immediately. This protects the machine."

"Microsoft Defender for Endpoint is scalable. Currently, we have 600,000 users in our organization."

"The endpoint detection of threats is valuable. The initial detection of things like ransomware and viruses and being able to shut down machines immediately and stop a threat is valuable. We can stop a threat at a source versus allow it to propagate it across the network."

"The primary advantage is that you don't need to install it. It's included in the Windows 10 delivery."

"What I like most is the protection against phishing emails and anti-spam."

"I like that Defender is integrated and doesn't have a third-party payload trying to advertise subscription renewal."

"A few years ago, when I was using a different product, I was affected by a virus that destroyed everything. Since using Microsoft Defender, I have not had this kind of problem."

More Microsoft Defender for Endpoint pros

"Comodo includes a firewall and antivirus in one solution. I also like the ability to remotely manage update packages on your systems. Comodo can even find a lost device and secure it remotely."

Cons

"It's not quite a mature solution just yet. It needs more time to grow and develop."

"From an audit point of view, our auditors would like to have more reports on how things are used, if things go wrong, and how they went wrong. For example, if something got a warning, "Why?" So, we would like more versatility for tracing and reporting. That would improve the product, as long as the user interface doesn't get bogged down."

"The system can always be simplified and have a better integration check. More detailed reports would be good. When it does the integrated check, it just shows if the system is okay but I want to know what happened."

"In India at least, it seems to be a bit more expensive than other options."

"I had some cases a while back and told an agent my issue. When I called the next day, I had to explain everything again to a different person, so I found it annoying to repeat myself all over."

"Microsoft Defender for Endpoint can use more advertising to promote their features."

"Additional security would be beneficial."

"Microsoft Defender for Endpoint should include better automation that will make it faster to detect the latest threats happening across the world."

More Microsoft Defender for Endpoint cons

"Comodo includes a firewall and antivirus in one solution. I also like the ability to remotely manage update packages on your systems. Comodo can even find a lost device and secure it remotely."

Pricing and Cost Advice

"We have been using the free version."

"Microsoft Defender for Endpoint is an expensive solution."

"The license cost is around $35 per machine, which is not expensive compared to other products."

"Microsoft Defender for Endpoint is more affordable compared to some other endpoint solutions."

"I got it with the Microsoft Windows license."

"You just pay Windows 10 prices, then you have antivirus software. As a price comparison, Defender's costs are very low."

"When compared with other vendors, the pricing is very high."

"The solution comes free with Microsoft Windows 10."

More Microsoft Defender for Endpoint pricing and cost advice

Information not available

See which vendors are best for you

Use our free recommendation engine to learn which Endpoint Detection and Response (EDR) solutions are best for your needs.

See recommendations

793,295 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Educational Organization

24%

Computer Software Company

13%

Government

Financial Services Firm

Computer Software Company

17%

Government

11%

Retailer

Educational Organization

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

How is Cortex XDR compared with Microsoft Defender?

Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface, applies behavioral-based endpoint protection and response, and includes risk-ba...

See all answers

Which offers better endpoint security - Symantec or Microsoft Defender?

We use Symantec because we do not use MS Enterprise products, but in my opinion, Microsoft Defender is a superior solution. Microsoft Defender for Endpoint is a cloud-delivered endpoint security s...

See all answers

How does Microsoft Defender for Endpoint compare with Crowdstrike Falcon?

The CrowdStrike solution delivers a lot of information about incidents. It has a very light sensor that will never push your machine hardware to "test", you don't have the usual "scan now" feature ...

See all answers

What do you like most about Open EDR?

Comodo includes a firewall and antivirus in one solution. I also like the ability to remotely manage update packages on your systems. Comodo can even find a lost device and secure it remotely.

See all answers

What is your experience regarding pricing and costs for Open EDR?

I'm currently trying the free version.

See all answers

What needs improvement with Open EDR?

OpenEDR could be easier to deploy on mobile devices.

See all answers

Comparisons

Symantec Endpoint Security vs Microsoft Defender for Endpoint

Compared 7% of the time

Intercept X Endpoint vs Microsoft Defender for Endpoint

Compared 5% of the time

CrowdStrike Falcon vs Microsoft Defender for Endpoint

Compared 5% of the time

Cortex XDR by Palo Alto Networks vs Microsoft Defender for Endpoint

Compared 5% of the time

Trellix Endpoint Security vs Microsoft Defender for Endpoint

Compared 5% of the time

More Microsoft Defender for Endpoint Competitors

Trellix Endpoint Security (ENS) vs Open EDR

Compared 18% of the time

SentinelOne Singularity Complete vs Open EDR

Compared 11% of the time

CrowdStrike Falcon vs Open EDR

Compared 11% of the time

Elastic Security vs Open EDR

Compared 9% of the time

Trend Vision One Endpoint Security vs Open EDR

Compared 8% of the time

More Open EDR Competitors

Product Reports

Buyer's Guide

Microsoft Defender for Endpoint

July 2024

Download Microsoft Defender for Endpoint product report

Buyer's Guide

Endpoint Detection and Response (EDR)

July 2024

Download Open EDR product report

Also Known As

Microsoft Defender ATP, Microsoft Defender Advanced Threat Protection, MS Defender for Endpoint, Microsoft Defender Antivirus

No data available

Learn More

Microsoft

Video not available

Xcitium

Interactive Demo

Microsoft

Demo not available

Xcitium

Overview

Microsoft Defender for Endpoint is a comprehensive security solution that provides advanced threat protection for organizations. It offers real-time protection against various types of cyber threats, including malware, viruses, ransomware, and phishing attacks.

With its powerful machine-learning capabilities, it can detect and block sophisticated attacks before they can cause any harm. The solution also includes endpoint detection and response (EDR) capabilities, allowing organizations to quickly investigate and respond to security incidents. It provides detailed insights into the attack timeline, enabling security teams to understand the scope and impact of an incident.

Microsoft Defender for Endpoint also offers proactive threat hunting, allowing organizations to proactively search for and identify potential threats within their network. It integrates seamlessly with other Microsoft security solutions, such as Microsoft Defender XDR, to provide a unified and holistic security approach. With its centralized management console, organizations can easily deploy, configure, and monitor the security solution across their entire network.

Microsoft Defender for Endpoint is a robust and scalable security solution that helps organizations protect their endpoints and data from evolving cyber threats.

Open EDR® is a sophisticated, free, open source endpoint detection and response solution. It provides analytic detection with Mitre ATT&CK visibility for event correlation and root cause analysis of adversarial threat activity and behaviors in real time. This world-class endpoint telemetry platform is available to all cyber-security professionals, and every sized organization, to defend against threat actors and cyber criminals.

Sample Customers

Petrofrac, Metro CSG, Christus Health

Information Not Available

Buyer's Guide

Endpoint Detection and Response (EDR)

July 2024

Download Free Report

Find out what your peers are saying about Microsoft, SentinelOne, CrowdStrike and others in Endpoint Detection and Response (EDR). Updated: July 2024.

DOWNLOAD NOW

793,295 professionals have used our research since 2012.

See our list of best Endpoint Detection and Response (EDR) vendors.

We monitor all Endpoint Detection and Response (EDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.