Try our new research platform with insights from 80,000+ expert users

Microsoft Defender for Endpoint vs SentinelOne Singularity Complete comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Apr 10, 2024
 

Categories and Ranking

Microsoft Defender for Endp...
Ranking in Endpoint Protection Platform (EPP)
1st
Ranking in Anti-Malware Tools
1st
Ranking in Endpoint Detection and Response (EDR)
2nd
Average Rating
8.0
Number of Reviews
184
Ranking in other categories
Advanced Threat Protection (ATP) (2nd), Microsoft Security Suite (6th)
SentinelOne Singularity Com...
Ranking in Endpoint Protection Platform (EPP)
2nd
Ranking in Anti-Malware Tools
2nd
Ranking in Endpoint Detection and Response (EDR)
3rd
Average Rating
8.8
Number of Reviews
184
Ranking in other categories
Extended Detection and Response (XDR) (2nd)
 

Mindshare comparison

As of September 2024, in the Endpoint Detection and Response (EDR) category, the mindshare of Microsoft Defender for Endpoint is 14.4%, down from 18.6% compared to the previous year. The mindshare of SentinelOne Singularity Complete is 7.7%, down from 10.9% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Endpoint Detection and Response (EDR)
 

Featured Reviews

KE
Apr 2, 2021
A standard malware and antivirus solution — nothing more, nothing less
Just as the name states, we use this solution to defend endpoints.  We're actually in the process of moving away from this solution. We are beginning to use SentinelOne For me, It's just a standard malware and antivirus solution — nothing more, nothing less.  I personally haven't experienced any…
HH
Sep 22, 2023
Helps reduce our organizational risk, provides great visibility, and can correlate data across our environment
We have found that Singularity Complete integrates well with our existing SIEM solution, Splunk, and some of our other system management tools, such as Okta and Armis. We are also looking forward to the additional future integrations that are planned. I appreciate Singularity Complete's ability to ingest and correlate data across our security solutions. I use this feature quite often, either to perform deep visibility searches to correlate data across different sources if I have specific concerns about security events, or even to track running or operational issues as well. Singularity is not only a security product but it can also be used for troubleshooting non-security and related issues on devices. Compared to the previous EDR solution, Cylance Protect, we had substantially fewer false positives when we implemented Singularity Complete. Singularity Complete has reduced our MTTD. Singularity Complete has reduced our MTTR somewhat compared to our previous EDR solution. Singularity Complete has reduced our organizational risk by 20 percent, specifically the risk profile associated with malicious activities on protected devices.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"One feature I like the most is vulnerability management, which shows any vulnerable software or OS present in my environment. Microsoft Defender for Endpoint provides a complete overview and also recommends the steps to mitigate the vulnerabilities or threats. Most of the other antivirus or EDR solutions generally don't provide vulnerability management. It is an add-on that Microsoft Defender for Endpoint provides."
"We apply the DLP policies across a range of endpoints and it is very accurate when reporting vulnerabilities, including those in email attachments."
"I like that it's easy to deploy because it already comes with Windows 10. Overall, it has all the features that we need. Easy to deploy, comes with updates, and comes with Windows updates. You don't have to really manage or update the signature."
"It is easy to install and use requiring little maintenance but applying updates."
"Technical support has been great."
"Defender is stable. The performance is good."
"It's stable."
"It captures data through machine learning, which is built-in on the back-end. It also provides built-in analytics and a threat intelligence feature. It is a one-stop solution that doesn't require an antivirus because it comes prebuilt into Windows 10."
"Its capacity to prevent new threats."
"The single pane of glass is probably the most valuable. That is a big one. We could see everything from one view."
"The most valuable feature is that it does what it says it will do. It fulfills its claims. It’s not really common for products to do that today."
"The EDR functionality of the platform is what we use the most. That was the primary reason why we got SentinelOne. That is what we use the most in terms of functionality."
"Our organizational risk has been reduced."
"The tool's most valuable feature is Vigilance Respond Pro monitoring. You don't have to have a dedicated SOC and worry about staffing."
"SentinelOne also provides equal protection across Windows, Linux, and macOS. I have all of them and every flavor of them you could possibly imagine. They've done a great job because I still have a lot of legacy infrastructure to support. It can support legacy environments as well as newer environments, including all the latest OS's... There are cost savings not only on licensing but because I don't have to have different people managing different consoles."
"Device control and network control are valuable."
 

Cons

"The user interface could use some improvement."
"The pricing could be a bit better."
"Right now, there's a portal for Azure, portals for Microsoft Office, and portals for endpoints. It would be good to have only one portal and integrate everything."
"This solution is not secure, which is why I have moved to Linux."
"The time it takes to restore the application could be improved. It has a lot of dependencies. It's not like the Microsoft security that comes with the OS. Updating through the command prompt, most of the time, it takes some time to download some of these dependencies."
"The second major area for improvement involves enhanced capabilities for different operating systems or platforms. That is, even though we have coverage for different operating systems or platforms such as Linux, we don't get all of the controls and enhanced capabilities that are available with Windows devices."
"Windows Firewall is integrated with Windows Defender. Over the last few days, I have had a problem with defining a wildcard on Windows Firewall. For example, I wanted to pull out the connection of my program and install a software package with a lot of executable files. I wanted to prevent it from accessing the internet. I could not select executables by using a wildcard. I had to select a single executable with its full name."
"The solution could be more friendly for end-users, with different type of scans or scheduled scans for it."
"Some reports could be better."
"Their documentation could afford to be a little bit better communicated. A lot of times we have to look at things in the knowledge base, and much of that could be communicated better, but that would probably be the only thing that needs to be improved."
"The SentinelOne portal is not user-friendly, which is one of its drawbacks."
"SentinelOne needs to provide more documentation for administrators and analytics."
"Deployment strategy for large organizations that do not use active directory (AD)."
"It is an expensive product."
"The anti-ransomware technology takes up a lot of disc space."
"One of the things they could do is extend the product range to include Android and iPhone so that you could have the app on your phone as well. There is probably something going on there with that, but that's something that they're lacking at the moment. For instance, if I was to have to recommend a client to protect their phone, I'd have to recommend Norton or something else. I don't have an answer within the SentinelOne solution."
 

Pricing and Cost Advice

"It is an expensive solution. It would be nice if it could be included with the Microsoft Office package."
"You don't need to worry about the renewal and purchase of antivirus products. It is bundled with Windows 10, so you don't need to worry about separately purchasing any antiviruses."
"This is an expensive product and licensing for all Microsoft products is a big issue."
"The subscription is part of Windows, so we don't have to pay anything extra for this product."
"It is free."
"Microsoft Defender for Endpoint is included with a Microsoft E5 license."
"Microsoft Defender for Endpoint can be costly as a standalone solution."
"It came with Windows."
"The per-seat cost is low, but you have to commit to a certain number of licenses for a year."
"I believe that the current pricing and licensing structure is fair."
"The price for it is very competitive compared to other Next Gen EPP."
"The pricing is very fair for the solution they provide."
"The solution is a bit cheaper than CrowdStrike Falcon Pro and more expensive than smaller solutions. Still, it has a pretty reasonable price point, as I appreciate the flexibility SentinelOne Singularity Complete offers."
"SentinelOne Singularity Complete is cheaper than CrowdStrike but more expensive than any traditional anti-virus solution."
"SentinelOne's pricing could be lower."
"I believe the retail pricing, or MSRP, is a bit high."
report
Use our free recommendation engine to learn which Endpoint Detection and Response (EDR) solutions are best for your needs.
801,314 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Educational Organization
25%
Computer Software Company
12%
Government
8%
Financial Services Firm
7%
Computer Software Company
19%
Manufacturing Company
7%
Financial Services Firm
6%
Government
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

How is Cortex XDR compared with Microsoft Defender?
Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface, applies behavioral-based endpoint protection and response, and includes risk-ba...
Which offers better endpoint security - Symantec or Microsoft Defender?
We use Symantec because we do not use MS Enterprise products, but in my opinion, Microsoft Defender is a superior solution. Microsoft Defender for Endpoint is a cloud-delivered endpoint security s...
How does Microsoft Defender for Endpoint compare with Crowdstrike Falcon?
The CrowdStrike solution delivers a lot of information about incidents. It has a very light sensor that will never push your machine hardware to "test", you don't have the usual "scan now" feature ...
Cortex XDR by Palo Alto vs. Sentinel One
Cortex XDR by Palo Alto vs. SentinelOne SentinelOne offers very detailed specifics with regard to risks or attacks. The ability to reverse damage caused by ransomware with minimal interruptions to...
Which is better - SentinelOne or Darktrace?
Which solution is better depends on which is more suitable specifically for your company. Darktrace, for example, is meant for smaller to medium-sized businesses. It is also a good option for organ...
What do you like most about SentinelOne?
The AI solution makes it easy for customers to detect and manage policies, as well as documents that help customers manage their platform.
 

Also Known As

Microsoft Defender ATP, Microsoft Defender Advanced Threat Protection, MS Defender for Endpoint, Microsoft Defender Antivirus
Sentinel Labs, SentinelOne Singularity
 

Interactive Demo

Demo not available
 

Overview

 

Sample Customers

Petrofrac, Metro CSG, Christus Health
Havas, Flex, Estee Lauder, McKesson, Norfolk Southern, JetBlue, Norwegian airlines, TGI Friday, AVX, Fim Bank
Find out what your peers are saying about Microsoft Defender for Endpoint vs. SentinelOne Singularity Complete and other solutions. Updated: August 2024.
801,314 professionals have used our research since 2012.