Try our new research platform with insights from 80,000+ expert users

Microsoft Defender for Endpoint vs Symantec Endpoint Security vs ZoneAlarm comparison

The compared Microsoft and Broadcom solutions aren't in the same category. Microsoft is ranked #1 in EPP , with an average rating of 8.3, and holds a 10.8% mindshare in the category. Broadcom is ranked #11 in EPP , with an average rating of 7.3, and holds a 4.0% mindshare. Additionally, 94% of Microsoft users are willing to recommend the solution, compared to 80% of Broadcom users who would recommend it.
Microsoft Defender for Endp...
Read 197 Microsoft Defender for Endpoint reviews
  • 30,707 Views
  • 24,393 Comparison Views
94% willing to recommend
Symantec Endpoint Security
Read 144 Symantec Endpoint Security reviews
  • 9,976 Views
  • 8,481 Comparison Views
80% willing to recommend
ZoneAlarm
Read 13 ZoneAlarm reviews
  • 905 Views
  • 713 Comparison Views
88% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between Microsoft Defender for Endpoint, Symantec Endpoint Security, and ZoneAlarm based on real PeerSpot user reviews.

Find out what your peers are saying about Microsoft, CrowdStrike, SentinelOne and others in Endpoint Protection Platform (EPP).

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Endpoint Protection Platform (EPP) Report (Updated: May 2025).
Buyer's Guide
Endpoint Protection Platform (EPP)
May 2025
Download the complete report
Helped 851,491 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Mindshare comparison

Endpoint Protection Platform (EPP)
Endpoint Protection Platform (EPP)
Anti-Malware Tools
 

Featured Reviews

AnuragSrivastava - PeerSpot reviewer
Provides detailed visibility into threats but the ability to add exceptions needs improvement
One major item for improvement is the ability to add exceptions. We can add some exceptions, but not at the level we need to. The second major area for improvement involves enhanced capabilities for different operating systems or platforms. That is, even though we have coverage for different operating systems or platforms such as Linux, we don't get all of the controls and enhanced capabilities that are available with Windows devices. Reporting could also be improved because, at present, we get limited results at times. For example, in an environment with more than 100,000 devices, you may just get 10,000 results when you run a report.
Read full review
Hakeem_Abdulkareem - PeerSpot reviewer
The solution has given us visibility into compliance within our whole system and helped us ensure everything is updated
Symantec's application security module needs some improvement. You need to create a lot of fingerprints for application security. For instance, let's say I have different brands of ATMs in my environment, like Wincor and NCR. I use GRG to deploy an application control to whitelist some applications. I have to get the exact image of the different models of ATMs. When I tested in the past, some machines would not connect to the server without that. Only the approved software on the ATM should run. Anything outside that should not even come up at all. We did this so that an outside person doesn't introduce malicious software to the ATM. That's the essence of locking down with application control. Using Symantec for application control has been hectic, so I use Carbon Black to do the lockdown. Checking that data security will work fine with Carbon Black. Carbon Black worked fine. Setting up approval in Carbon Black works differently than Symantec. In Symantec, we first need the fingerprints of the applications running underneath. Before setting up Carbon Black, you first install the agent, allowing it to learn the environment. It will analyze all the software's behavior and provide recommendations for what should be allowed. It's more straightforward, whereas configuring application control in Symantec is a bit cumbersome.
Read full review
Nagendra Nekkala - PeerSpot reviewer
A highly stable solution that protects computers from viruses, spyware, and hackers
ZoneAlarm doesn't require much maintenance. You only need to update the application when there are any latest updates. ZoneAlarm is deployed on-cloud in our organization. With an increase in the bring your own device concept, ZoneAlarm should be part of every device to help us make the operational work very easy. Overall, I rate ZoneAlarm a nine out of ten.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Microsoft Defender for Endpoint has helped reduce our mean time to remediation significantly."
"Defender for Endpoint allows us automatic resolutions if a unit is compromised or if a user clicks a malicious link."
"Defender provides useful alerts and groups them. It sends an alert to your portal if it detects any malicious activity, and you can group multiple alerts to form an incident."
"A few years ago, when I was using a different product, I was affected by a virus that destroyed everything. Since using Microsoft Defender, I have not had this kind of problem."
"The fact that it's from Microsoft, you don't have many false positives, unlike products from other vendors might have."
"The integration of Defender, Security Center, and the Microsoft compliance score, is the feature we use most to share the results with our clients and to create a roadmap together."
"It's great for investigating what's happening on a machine. They show a whole bunch of machine timeline events that are related to a security incident. They have quite good details on the things related to threat and vulnerability management, such as any weakness that has been disclosed publicly, assets that are exposed, and if there is an exploit active in the wild for that vulnerability. It can provide you with all such information, which is cool."
"It's free. There is no additional cost. It's part of Windows."
More Microsoft Defender for Endpoint pros
"Symantec ATP provides quite a good overview of how threats have spread within the company."
"The single-pane management is the solution's most valuable feature. It makes administrative control very easy."
"The performance of Symantec End-User Endpoint Security is very good. It does not slow down the computer like other solutions."
"Symantec End-user Endpoint Security is a very powerful solution."
"The initial setup is straightforward."
"The application and device control are valuable features, and the live update is another one. We have a schedule to check every four hours for the live update."
"Symantec's detection capabilities are strong. It involves run protection and behavioral analysis."
"What I like most about Symantec is the intrusion detection module. If you are scanning the environment, it will flag a possible intruder and tell you the IP and where the attack is coming from. Traditional antivirus solutions will never flag that. If you have a traditional SIEM, you might be able to pick that up. Symantec is a holistic endpoint security solution, so when you scan an endpoint, Symantec will let you know that something is happening to it."
More Symantec Endpoint Security pros
"The solution maintains reasonable scalability."
"The phone access scan stands out as the most valuable feature for me."
"It is easy to use through interfaces and easy to configure each of the customizations we created based on the characteristics that we wanted."
"It is quick and easy to configure."
"This antivirus is regularly updated, and the updates can be scheduled."
"It gives us security for the users' mobiles and ends up protecting us in a significant way."
"The product's most valuable feature is the detection engine due to its ability to identify threats."
"The solution really focused on giving more security than an antivirus."
More ZoneAlarm pros
 

Cons

"The reporting in Microsoft Defender for Endpoint should improve. The solution has limited features."
"Microsoft Windows Defender doesn't have a game mode."
"In India at least, it seems to be a bit more expensive than other options."
"There are alternative solutions that offer a greater range of dashboard insights when compared to Microsoft Defender for Endpoint."
"There could be an increase in security for the solution."
"The log searches for Microsoft Defender for Endpoint are pretty difficult to navigate. It needs a better UI or more intuitive search and filter mechanisms to make it easy to get through and filter through all the data logs."
"Microsoft Defender for Endpoint can improve by providing more and different types of reports."
"I would like to see integrations with other products, such as Spunk and other CM solutions. That would create possibilities for me, and for a SOC, to consolidate all events in an older console, not one provided by Microsoft but provided by a third party, and use it to create more insights."
More Microsoft Defender for Endpoint cons
"Maybe Symantec Endpoint Security could amend their pricing structure, but they always offer a good product."
"I would like to see even more customization, the possibility to do whitelisting. It needs to be a little bit more liberal on whitelisting, even to use the name if needed, instead of hashes."
"I find the documentation on Symantec.com to be not very updated. It seems like Symantec focuses more on their product than on documentation."
"Is not a full anti-ransomware solution."
"There are limitations because everyone these days has hybrid working; however, the endpoint does not work for us unless we are connected to a VPN, which is a major limitation."
"The solution could improve by having a better graphical interface."
"The detection and response can always be improved."
"There is room for improvement in the zero-day threat detection system."
More Symantec Endpoint Security cons
"The support is not always so effective."
"ZoneAlarm should be a light application that does not take too much memory in mobile phones."
"They should release a single update with all the necessary characteristics to avoid being in a cycle of consecutive updates."
"They need to update and improve the features available for Mac."
"Perhaps the primary area for potential enhancement is to make it faster, ensuring a more seamless experience while maintaining robust security features."
"Some of our users say that the interface is a little bit outdated for 2020, and want it to be more modern and cozy."
"The solution's efficiency in threat containment and overall protection needs improvement."
"I would like it to be integrated with the Check Point centralization solution like Infinity Portal. It would be great to be able to manage it through the same website."
More ZoneAlarm cons
 

Pricing and Cost Advice

"Given our extensive Microsoft licensing, transitioning to Defender for Endpoint did not affect licensing costs."
"The normal, standalone model, is not expensive, but the enterprise model that includes the bundle with email and some web protection, is a bit more expensive."
"You just pay Windows 10 prices, then you have antivirus software. As a price comparison, Defender's costs are very low."
"The solutions price could be cheaper."
"Microsoft has different plans for buying this product. The price depends on the configuration of the full set of products that you buy and on the licensing program in your contract."
"The solution is free and comes with Windows."
"The nice thing about Defender and Sentinel is that the cost is based on the data logs that you ingest from the Defender endpoints and data connectors. I don't have to buy a 25- or 50- or 1,000-user or enterprise license. I can buy one license at a time."
"When customers haven't deployed the solution and don't have licenses, it can be expensive to start from scratch."
More Microsoft Defender for Endpoint pricing and cost advice
"The licensing terms can range from subscription-based to perpetual, to annual, to tri-annual."
"I am not sure of the initial cost, but the yearly renewals are quite affordable, which is a good thing. The price seems to have come down in recent years, and with the alternatives that are out there, such as Microsoft Defender, it needs to maintain that affordability to make it attractive."
"We have some customers on a one-year license and others on a three-year license."
"I’d say SEP deserves the money."
"The EDR options are costlier than other products."
"I rate the product's pricing a six out of ten."
"What we have paid for this product is good value for the work and the services that they are providing to us."
"It's pretty awesome price-wise. That's why we give it to most of our clients. It isn't very expensive. Compared to Cisco AMP, which is very expensive, its price is okay. It's also cheaper than Malwarebytes."
More Symantec Endpoint Security pricing and cost advice
"We use the free version of the software, but it can be upgraded to the paid Extreme Security edition."
"I rate the product pricing a seven out of ten."
"We have to pay a yearly licensing fee for ZoneAlarm, which is cheap."
"This is a freeware product and I recommend using it."
"The pricing is reasonable, with a yearly renewal license costing seventy dollars."
report
See which vendors are best for you
Use our free recommendation engine to learn which Endpoint Protection Platform (EPP) solutions are best for your needs.
See recommendations
851,491 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Educational Organization
24%
Computer Software Company
12%
Government
7%
Financial Services Firm
7%
Computer Software Company
15%
Financial Services Firm
12%
Manufacturing Company
10%
Government
8%
Computer Software Company
19%
Comms Service Provider
12%
Hospitality Company
9%
Government
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

How is Cortex XDR compared with Microsoft Defender?
Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface,...
See all answers
Which offers better endpoint security - Symantec or Microsoft Defender?
We use Symantec because we do not use MS Enterprise products, but in my opinion, Microsoft Defender is a superior sol...
See all answers
How does Microsoft Defender for Endpoint compare with Crowdstrike Falcon?
The CrowdStrike solution delivers a lot of information about incidents. It has a very light sensor that will never pu...
See all answers
Which is better - Cortex XDR or Symantec End-User Endpoint Security?
Aqua Security is easy to use and very manageable. Its main focus is on Kubernetes and Docker. Security is a very valu...
See all answers
What do you like most about Symantec End-User Endpoint Security?
Symantec have everything – documentation, videos, data sheets.
See all answers
What is your experience regarding pricing and costs for Symantec End-User Endpoint Security?
Symantec Endpoint Security's pricing is better than most offerings based on my research. It seems to be half the cost...
See all answers
What do you like most about ZoneAlarm?
ZoneAlarm protects all computers from viruses, spyware, and hackers.
See all answers
What is your experience regarding pricing and costs for ZoneAlarm?
I rate the product pricing a seven out of ten.
See all answers
What needs improvement with ZoneAlarm?
As for improvements, ZoneAlarm enhances Check Point’s solution by having a very efficient engine. The engine checks a...
See all answers
 

Comparisons

CrowdStrike Falcon vs Microsoft Defender for Endpoint Logo
CrowdStrike Falcon vs Microsoft Defender for Endpoint
Compared 8% of the time
Microsoft Intune vs Microsoft Defender for Endpoint Logo
Microsoft Intune vs Microsoft Defender for Endpoint
Compared 4% of the time
F-Secure Total vs Microsoft Defender for Endpoint Logo
F-Secure Total vs Microsoft Defender for Endpoint
Compared 4% of the time
HP Wolf Security vs Microsoft Defender for Endpoint Logo
HP Wolf Security vs Microsoft Defender for Endpoint
Compared 4% of the time
Cortex XDR by Palo Alto Networks vs Microsoft Defender for Endpoint Logo
Cortex XDR by Palo Alto Networks vs Microsoft Defender for Endpoint
Compared 3% of the time
More Microsoft Defender for Endpoint Competitors
CrowdStrike Falcon vs Symantec Endpoint Security Logo
CrowdStrike Falcon vs Symantec Endpoint Security
Compared 17% of the time
Trend Micro Deep Security vs Symantec Endpoint Security Logo
Trend Micro Deep Security vs Symantec Endpoint Security
Compared 8% of the time
Kaspersky Endpoint Security for Business vs Symantec Endpoint Security Logo
Kaspersky Endpoint Security for Business vs Symantec Endpoint Security
Compared 7% of the time
Cortex XDR by Palo Alto Networks vs Symantec Endpoint Security Logo
Cortex XDR by Palo Alto Networks vs Symantec Endpoint Security
Compared 4% of the time
Bitdefender GravityZone EDR vs Symantec Endpoint Security Logo
Bitdefender GravityZone EDR vs Symantec Endpoint Security
Compared 4% of the time
More Symantec Endpoint Security Competitors
F-Secure Total vs ZoneAlarm Logo
F-Secure Total vs ZoneAlarm
Compared 15% of the time
Malwarebytes vs ZoneAlarm Logo
Malwarebytes vs ZoneAlarm
Compared 13% of the time
Check Point Harmony Endpoint vs ZoneAlarm Logo
Check Point Harmony Endpoint vs ZoneAlarm
Compared 12% of the time
Avira Antivirus vs ZoneAlarm Logo
Avira Antivirus vs ZoneAlarm
Compared 6% of the time
CrowdStrike Falcon vs ZoneAlarm Logo
CrowdStrike Falcon vs ZoneAlarm
Compared 4% of the time
More ZoneAlarm Competitors
 

Product Reports

Buyer's Guide
Microsoft Defender for Endpoint
May 2025
Microsoft Defender for Endpoint reportDownload Microsoft Defender for Endpoint product report
Buyer's Guide
Symantec Endpoint Security
April 2025
Symantec Endpoint Security reportDownload Symantec Endpoint Security product report
Buyer's Guide
ZoneAlarm
April 2025
ZoneAlarm reportDownload ZoneAlarm product report
 

Also Known As

Microsoft Defender ATP, Microsoft Defender Advanced Threat Protection, MS Defender for Endpoint, Microsoft Defender Antivirus
Symantec EPP, Symantec Endpoint Protection (SEP)
No data available
 

Interactive Demo

Microsoft
Demo not available
Broadcom
Demo not available
Check Point Software Technologies
 

Overview

Microsoft Defender for Endpoint is a comprehensive security solution that provides advanced threat protection for organizations. It offers real-time protection against various types of cyber threats, including malware, viruses, ransomware, and phishing attacks.

With its powerful machine-learning capabilities, it can detect and block sophisticated attacks before they can cause any harm. The solution also includes endpoint detection and response (EDR) capabilities, allowing organizations to quickly investigate and respond to security incidents. It provides detailed insights into the attack timeline, enabling security teams to understand the scope and impact of an incident.

Microsoft Defender for Endpoint also offers proactive threat hunting, allowing organizations to proactively search for and identify potential threats within their network. It integrates seamlessly with other Microsoft security solutions, such as Microsoft Defender XDR, to provide a unified and holistic security approach. With its centralized management console, organizations can easily deploy, configure, and monitor the security solution across their entire network.

Microsoft Defender for Endpoint is a robust and scalable security solution that helps organizations protect their endpoints and data from evolving cyber threats.

Microsoft

Symantec Endpoint Security is a robust and reliable product that provides complete protection against viruses, malware, Trojans, and malicious files. It offers application and device control, ease of use in deploying and updating, a central control console, stability, scalability, auto-discovery capabilities, patch management, endpoint detection and response capabilities, intrusion detection module. 

The Symantec Global Intelligence Network (GIN) provides threat intelligence and detection across endpoints, email, and web traffic. It has helped organizations reduce downtime, increase productivity, and improve security posture. Symantec Endpoint Security is easy to use, has a flexible administration, and offers more value than expected.

Broadcom

ZoneAlarm protects you by preventing hackers from remotely accessing and controlling your device, and lets you know which apps have excessive permissions so you can decide whether they threaten your privacy.

Check Point Software Technologies
 

Sample Customers

Petrofrac, Metro CSG, Christus Health
Audio Visual Dynamics, Red Deer Advocate, Asia Pacific Telecom Co. Ltd., Kibbutz Ein Gedi, and AMETEK, Inc.
Terma, Optix, Samsung Research Amercia, SF Police Credit Union, Independence Care System, Mattias Thomsen, Carmel Partners, Desert Research Institute, CRIF, FXCM Inc, US State Agency
Buyer's Guide
Endpoint Protection Platform (EPP)
May 2025
Download Free Report
Find out what your peers are saying about Microsoft, CrowdStrike, SentinelOne and others in Endpoint Protection Platform (EPP). Updated: May 2025.
DOWNLOAD NOW
851,491 professionals have used our research since 2012.