Microsoft Defender for Endpoint vs OpenText EnCase eDiscovery comparison

The compared Microsoft and OpenText solutions aren't in the same category. Microsoft is ranked #1 in EPP , with an average rating of 8.3, and holds a 10.8% mindshare in the category. OpenText is ranked #5 in eD , with an average rating of 9.0, and holds a 3.3% mindshare. Additionally, 94% of Microsoft users are willing to recommend the solution, compared to 75% of OpenText users who would recommend it.

Microsoft Defender for Endp...

Read 194 Microsoft Defender for Endpoint reviews

33,457 Views
25,934 Comparison Views

94% willing to recommend

OpenText EnCase eDiscovery

Read 8 OpenText EnCase eDiscovery reviews

333 Views
259 Comparison Views

75% willing to recommend

Microsoft Defender for Endp...

OpenText EnCase eDiscovery

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Microsoft Defender for Endpoint and OpenText EnCase eDiscovery based on real PeerSpot user reviews.

Find out what your peers are saying about Microsoft, CrowdStrike, SentinelOne and others in Endpoint Protection Platform (EPP).

To learn more, read our detailed Endpoint Protection Platform (EPP) Report (Updated: April 2025).

Buyer's Guide

Endpoint Protection Platform (EPP)

April 2025

Download the complete report

Helped 849,686 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Microsoft Defender for Endp...

Average Rating

8.2

Reviews Sentiment

7.1

Number of Reviews

194

Ranking in other categories

Endpoint Protection Platform (EPP) (1st), Advanced Threat Protection (ATP) (2nd), Anti-Malware Tools (1st), Endpoint Detection and Response (EDR) (3rd), Microsoft Security Suite (5th)

OpenText EnCase eDiscovery

Average Rating

7.8

Reviews Sentiment

7.7

Number of Reviews

Ranking in other categories

eDiscovery (5th)

Mindshare comparison

Microsoft Defender for Endpoint and OpenText EnCase eDiscovery aren’t in the same category and serve different purposes. Microsoft Defender for Endpoint is designed for Endpoint Protection Platform (EPP) and holds a mindshare of 10.8%, down 14.4% compared to last year.
OpenText EnCase eDiscovery, on the other hand, focuses on eDiscovery, holds 3.3% mindshare, down 5.6% since last year.

Endpoint Protection Platform (EPP)

eDiscovery

Featured Reviews

AnuragSrivastava

Information Security Engineering Lead at a energy/utilities company with 10,001+ employees

Provides detailed visibility into threats but the ability to add exceptions needs improvement

One major item for improvement is the ability to add exceptions. We can add some exceptions, but not at the level we need to. The second major area for improvement involves enhanced capabilities for different operating systems or platforms. That is, even though we have coverage for different operating systems or platforms such as Linux, we don't get all of the controls and enhanced capabilities that are available with Windows devices. Reporting could also be improved because, at present, we get limited results at times. For example, in an environment with more than 100,000 devices, you may just get 10,000 results when you run a report.

Read full review

Alejandro Stromer

Enterprise Business Solutions Manager at DCL Consultores EIM SL

A stable and scalable hybrid solution with easy setup

The solution is scalable. It has three levels. You have the presentation area that can be escalated to the balance sheet. You have the back-end area that can be escalated using higher viability to configure more application servers. Also, the area of storage can be increased. We usually cater to enterprise solutions but have small- and medium-sized customers. It starts with 25 users and goes up to 100s and 1000s.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"It is already integrated with Windows 10, so you don't need to worry about that."

"Attack surface reduction and limiting attack surface vectors are valuable features. It's helpful to isolate specific devices and get super granular with the features they offer."

"Microsoft Defender for Endpoint is easy to load and it runs quietly in the background, unlike other solutions."

"Defender is integrated into the operating system. It's integrated with everything. You don't have to spend time analyzing what you have to do to be sure that the integration is okay between the security tool and all the other apps. This, from my point of view, is the main advantage."

"We can run the virus scan across our entire environment."

"The biggest benefit to Windows Defender is that it is built-in to the operating system by Microsoft."

"It is quite stable. We have not had any cases, i.e., viruses, that would require a reboot, etc. We have never had a situation where we needed to reinstall the tools as a result of the Defender application or a feature being corrupt."

"It's a Microsoft product; it's easier to deploy this product than other options."

More Microsoft Defender for Endpoint pros

"Data Recovery: Its ability to repair damaged partitions and uncover hidden partitions from within the tool, and allow further analysis."

"It speeds up the process, so I can meet my deadlines."

"The most important feature we've found is the Enscripts. That is one powerful feature that I, personally, love to use."

"The technical support is excellent."

"I like the processing feature on the product because it does everything at once, i.e, indexing, recovery, keyword searches, etc."

"The solution is very stable."

"It indexes much faster, and is more reflexive because of the Enscripts."

Cons

"The solution has minimal customization options, especially compared to Mandiant, so we want to see more scope for customization. A single portal for customization would also be a welcome addition."

"Reporting could be improved. I would like to see how many security incidents occurred in the last six months, how many devices were highly exposed to security risks, and how many devices were actually compromised."

"Cortex... has good investigation capabilities, out-of-the-box, in case there is an event that you'd like to investigate. It's quite convenient. Microsoft has those capabilities as well, but you need a bit more training on the product to get the basic information that you can get out-of-the-box with Cortex."

"The frequency of the patching, and the frequency of the updates, are not included with the free version."

"Microsoft Defender for Endpoint does not offer default templates for alerts, requiring us to configure everything ourselves to avoid numerous false positives."

"I wish they would extend the use of the Security Central portal, even for the free option of Defender. Because, as companies grow, it is labor intensive to manage the AV and detection part of it. For companies already subscribed to Office 365, I think this would be a good enhancement."

"If a threat actor comes in, and creates a global administrative account, they can gain access to everything and whitelist then block everything else. Having everything, including Defender, under one brand is like having all of your eggs in one basket."

"From an audit point of view, our auditors would like to have more reports on how things are used, if things go wrong, and how they went wrong. For example, if something got a warning, "Why?" So, we would like more versatility for tracing and reporting. That would improve the product, as long as the user interface doesn't get bogged down."

More Microsoft Defender for Endpoint cons

"Ease of use and learning curve need improvement."

"In the past, incident response time for tech support was slow."

"We have come across problems with the end-case. We could not find an email discovery type of module and there was not flexibility with the email."

"I would like to see a capability to ingest and absorb more data. That would be really good. It currently is lacking this function."

"Sometimes the application can take more time to complete the image processing or fail at the end of the process."

"The reporting is a bit unreliable. It needs to be better."

"There were minor UI bugs."

Pricing and Cost Advice

"The solutions price could be cheaper."

"The base price for an E5 license, which includes Enterprise Mobility + Security E5, is $57 per user per month."

"You just pay Windows 10 prices, then you have antivirus software. As a price comparison, Defender's costs are very low."

"It is affordable and comes in the Office 365 bundle."

"Licenses depend upon what you are looking for and what kind of security do you want to implement. There are costs in addition to the standard licensing fees. When we used to buy Symantec, we used to spend on 100 licenses. We used to spend approximately $2,700 for those many licenses, and they came in packs. To add one more license, I had to buy a pack with a minimum of 10 licenses. I had to spend on nine extra licenses because I can't get a single license, whereas when we go for Microsoft, we can get as many licenses as we want. If I have 100 users today, and tomorrow, I have 90 users, I can release my 10 licenses next month. With any other software vendor, you buy licenses for one year, and you have to stick with that. If today you have 100 licenses, and tomorrow, you have 50, you have already paid for one year's license. You can't go back and tell them that I don't require these 50 licenses because I have lost my 50 users, but with Microsoft Defender, licensing is on a monthly basis. It gives you both options. You can go yearly and save on it, or you can go monthly. You will, again, save on it. It is very fair everywhere."

"The solution is an open source version and was free with a paid version of Windows 10."

"We have a bundle where the price includes all Microsoft products."

"It is free."

More Microsoft Defender for Endpoint pricing and cost advice

"EnCase is an affordable solution."

"The product is affordable and user-friendly."

"We have a license. And, we found the cost high. We contacted them and talked to them about the ratio of the US dollar versus the Indian rupee and then we came to a solution."

See which vendors are best for you

Use our free recommendation engine to learn which Endpoint Protection Platform (EPP) solutions are best for your needs.

See recommendations

849,686 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Educational Organization

25%

Computer Software Company

11%

Government

Financial Services Firm

14%

Computer Software Company

14%

Government

Energy/Utilities Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

How is Cortex XDR compared with Microsoft Defender?

Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface, applies behavioral-based endpoint protection and response, and includes risk-ba...

See all answers

Which offers better endpoint security - Symantec or Microsoft Defender?

We use Symantec because we do not use MS Enterprise products, but in my opinion, Microsoft Defender is a superior solution. Microsoft Defender for Endpoint is a cloud-delivered endpoint security s...

See all answers

How does Microsoft Defender for Endpoint compare with Crowdstrike Falcon?

The CrowdStrike solution delivers a lot of information about incidents. It has a very light sensor that will never push your machine hardware to "test", you don't have the usual "scan now" feature ...

See all answers

What is your experience regarding pricing and costs for OpenText EnCase eDiscovery?

I rate the product’s pricing a five out of ten, where one is cheap and ten is expensive.

See all answers

What needs improvement with OpenText EnCase eDiscovery?

The solution could improve productivity.

See all answers

What is your primary use case for OpenText EnCase eDiscovery?

We have experience in engineering and capital projects. It is an add-on to extend project and asset management documentation.

See all answers

Comparisons

CrowdStrike Falcon vs Microsoft Defender for Endpoint

Compared 9% of the time

Microsoft Intune vs Microsoft Defender for Endpoint

Compared 5% of the time

Symantec Endpoint Security vs Microsoft Defender for Endpoint

Compared 4% of the time

F-Secure Total vs Microsoft Defender for Endpoint

Compared 4% of the time

HP Wolf Security vs Microsoft Defender for Endpoint

Compared 4% of the time

More Microsoft Defender for Endpoint Competitors

Nuix eDiscovery vs OpenText EnCase eDiscovery

Compared 30% of the time

Trellix Endpoint Security vs OpenText EnCase eDiscovery

Compared 19% of the time

CrowdStrike Falcon vs OpenText EnCase eDiscovery

Compared 19% of the time

BigFix vs OpenText EnCase eDiscovery

Compared 15% of the time

More OpenText EnCase eDiscovery Competitors

Product Reports

Buyer's Guide

Microsoft Defender for Endpoint

April 2025

Download Microsoft Defender for Endpoint product report

Buyer's Guide

eDiscovery

March 2025

Download OpenText EnCase eDiscovery product report

Also Known As

Microsoft Defender ATP, Microsoft Defender Advanced Threat Protection, MS Defender for Endpoint, Microsoft Defender Antivirus

EnCase eDiscovery

Interactive Demo

Microsoft

Demo not available

OpenText

Overview

Microsoft Defender for Endpoint is a comprehensive security solution that provides advanced threat protection for organizations. It offers real-time protection against various types of cyber threats, including malware, viruses, ransomware, and phishing attacks.

With its powerful machine-learning capabilities, it can detect and block sophisticated attacks before they can cause any harm. The solution also includes endpoint detection and response (EDR) capabilities, allowing organizations to quickly investigate and respond to security incidents. It provides detailed insights into the attack timeline, enabling security teams to understand the scope and impact of an incident.

Microsoft Defender for Endpoint also offers proactive threat hunting, allowing organizations to proactively search for and identify potential threats within their network. It integrates seamlessly with other Microsoft security solutions, such as Microsoft Defender XDR, to provide a unified and holistic security approach. With its centralized management console, organizations can easily deploy, configure, and monitor the security solution across their entire network.

Microsoft Defender for Endpoint is a robust and scalable security solution that helps organizations protect their endpoints and data from evolving cyber threats.

Microsoft

eDiscovery collection tools address the rise in dispersed and remote workforces, the proliferation of mobile devices and new sources of data. Comprehensively collecting data across all data sources, including endpoints, such as desktops and laptops, is critical to defensibility. Collection analytics and culling is key to efficient digital investigations, narrowing the document collection to drive down the cost of legal review.

With OpenText™ EnCase™ eDiscovery, organizations can streamline the collection, culling and preservation of data across diverse sources in a single efficient process.

OpenText

Sample Customers

Petrofrac, Metro CSG, Christus Health

Ontario Ministry of Government, Aerospace Company, Chesterfield Police Department

Buyer's Guide

Endpoint Protection Platform (EPP)

April 2025

Download Free Report

Find out what your peers are saying about Microsoft, CrowdStrike, SentinelOne and others in Endpoint Protection Platform (EPP). Updated: April 2025.

DOWNLOAD NOW

849,686 professionals have used our research since 2012.

We monitor all Endpoint Protection Platform (EPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.