No more typing reviews! Try our Samantha, our new voice AI agent.
Cortex XDR by Palo Alto Networks Logo

Cortex XDR by Palo Alto Networks pros and cons

Vendor: Palo Alto Networks
4.2 out of 5
Badge Ranked 1
Leave a review

Pros & Cons summary

Cortex XDR by Palo Alto Networks offers robust security, reducing endpoint attack surfaces with ransomware protection and AI-driven threat detection. It scales well, integrates with other Palo Alto Networks tools, and automates response times. However, it has high pricing, disparities across platforms, and implementation complexity. Licensing changes and additional protection needs are concerns, and some users report unresponsive support. It may not suit smaller businesses despite its comprehensive capabilities.

Buyer's Guide

Get pricing advice, tips, use cases and valuable features from real users of this product.
Get the report

Prominent pros & cons

PROS

Cortex XDR by Palo Alto Networks provides robust security, significantly reducing endpoint attack surfaces and offering protection against modern threats like ransomware and viruses.
It is highly scalable, integrates seamlessly with other Palo Alto Networks tools, and supports a wide range of platforms, providing comprehensive network and endpoint security.
The solution employs advanced AI and machine learning capabilities for effective behavior-based threat detection, improving visibility and offering strong protection against sophisticated threats.
Cortex XDR offers excellent support and stability, with no downtime or crashes, providing organizations with confidence in its ability to secure endpoints and servers effectively.
Its automated features, including easy endpoint isolation and policy enforcement, significantly reduce the workload for security analysts and improve threat detection and response times.

CONS

There is a severe gap in functionality between Windows, Linux, and Mac versions, with certain features like folder restriction settings available only for Windows.
There are issues with licensing changes and a lack of integration as users might expect to have all necessary tools included initially without extra charges.
Pricing is considered very high, making Cortex XDR by Palo Alto Networks not suitable for smaller businesses or more cost-sensitive markets.
Cortex XDR sometimes fails to detect certain viruses, requiring additional protection solutions for comprehensive security.
The tool is complex to implement and manage, with some support services described as unresponsive or lacking in helpful knowledge.
 

Cortex XDR by Palo Alto Networks Pros review quotes

ABHISHEK_SINGH - PeerSpot reviewer
ABHISHEK_SINGH
Senior Process Expert at A.P. Moller - Maersk
Nov 14, 2025
The most valuable aspect of Cortex XDR by Palo Alto Networks for me is its integration with AI detection, where we get to know the behavioral detection based on users, traffic patterns, and different services that we consume.
Read full review
Surya Kumar Gedala - PeerSpot reviewer
Surya Kumar Gedala
Final Year Student at Gitam University
Nov 9, 2025
Cortex is the best tool for endpoint detection, and I have used it to verify hashes or domains to identify malicious activity, trigger playbooks that automate and gather endpoint logs, block malicious processes, and update incident tickets, showcasing end-to-end processes with automation in investigation and reducing the analysis workflow.
Read full review
Jagannath S - PeerSpot reviewer
Jagannath S
Cyber Security Engineer at Olacabs
Feb 19, 2026
Implementing Cortex XDR by Palo Alto Networks has had a significant impact on my security analyst workload because it becomes much easier.
Read full review
Buyer's Guide
Cortex XDR by Palo Alto Networks
June 2026
Free Report: Cortex XDR by Palo Alto Networks Reviews and More
Learn what your peers think about Cortex XDR by Palo Alto Networks. Get advice and tips from experienced pros sharing their opinions. Updated: June 2026.
DOWNLOAD NOW
899,917 professionals have used our research since 2012.
Pasan Jayarathna - PeerSpot reviewer
Pasan Jayarathna
Network Security Engineer at Cyberwell Solution
Mar 18, 2026
I can highlight that we have not faced any security incidents with Cortex XDR by Palo Alto Networks, and even though our environment is quite dynamic, we have not faced any security incident with Cortex XDR by Palo Alto Networks until now.
Read full review
NikhilSharma1 - PeerSpot reviewer
NikhilSharma1
Cyber Engineering Manager at a tech vendor with 10,001+ employees
May 18, 2026
In one single alert, we are getting the network telemetry, endpoint telemetry, email security telemetry, and proxy telemetry all in one single ticket, making it very easy.
Read full review
AmjadKhan1 - PeerSpot reviewer
AmjadKhan1
Head of data centers at a non-profit with 10,001+ employees
Nov 10, 2025
After installing this solution, it identified, blocked, and provided the complete attack chain, which was very helpful.
Read full review
reviewer1980216 - PeerSpot reviewer
reviewer1980216
Business Development Manager For Palo Alto Networks at a tech services company with 1,001-5,000 employees
May 21, 2026
Cortex XDR by Palo Alto Networks is specifically designed to prevent zero-day attacks and is part of an ecosystem of Palo Alto, providing customers with a long-term vision to modify and redesign how security is applied in their company.
Read full review
TJ
Tejas Jain
Principle Cloud Architect at a tech services company with 11-50 employees
May 21, 2026
The biggest positive impact I see from Cortex XDR by Palo Alto Networks is a significant reduction in the number of people required to manage it.
Read full review
Raj-Yadav - PeerSpot reviewer
Raj-Yadav
Network Security Administrator at Alethe Consulting Pvt. Ltd
Jan 13, 2026
The main benefit of using Cortex XDR by Palo Alto Networks while employing Palo Alto Firewall at the internet edge is that it improves security on our endpoint devices, integrating seamlessly with Palo Alto Firewalls to deliver comprehensive network, analyst, and security details all in a single dashboard, which allows us to manage everything from our network devices.
Read full review
reviewer1412415 - PeerSpot reviewer
reviewer1412415
Chief of IT Architecture at a financial services firm with 10,001+ employees
Nov 27, 2025
Palo Alto is the core of the security infrastructure in the environment.
Read full review
Show 10 more reviews (out of 109)
 

Cortex XDR by Palo Alto Networks Cons review quotes

ABHISHEK_SINGH - PeerSpot reviewer
ABHISHEK_SINGH
Senior Process Expert at A.P. Moller - Maersk
Nov 14, 2025
Initially, we got to have a lot of false positives when we onboarded, but nowadays it's quite smooth.
Read full review
Surya Kumar Gedala - PeerSpot reviewer
Surya Kumar Gedala
Final Year Student at Gitam University
Nov 9, 2025
Enhancing UI simplicity and playbook flexibility are areas that could benefit from more low-code automation options for smoother integrations.
Read full review
Jagannath S - PeerSpot reviewer
Jagannath S
Cyber Security Engineer at Olacabs
Feb 19, 2026
If he is using a smaller company, he can depend on some other tools because Cortex XDR by Palo Alto Networks is a bit expensive.
Read full review
Buyer's Guide
Cortex XDR by Palo Alto Networks
June 2026
Free Report: Cortex XDR by Palo Alto Networks Reviews and More
Learn what your peers think about Cortex XDR by Palo Alto Networks. Get advice and tips from experienced pros sharing their opinions. Updated: June 2026.
DOWNLOAD NOW
899,917 professionals have used our research since 2012.
Pasan Jayarathna - PeerSpot reviewer
Pasan Jayarathna
Network Security Engineer at Cyberwell Solution
Mar 18, 2026
I feel that it should not be a licensed activity because a feature should allow us to see applications running on end devices.
Read full review
NikhilSharma1 - PeerSpot reviewer
NikhilSharma1
Cyber Engineering Manager at a tech vendor with 10,001+ employees
May 18, 2026
A potential area of improvement for Cortex XDR by Palo Alto Networks is the cost.
Read full review
AmjadKhan1 - PeerSpot reviewer
AmjadKhan1
Head of data centers at a non-profit with 10,001+ employees
Nov 10, 2025
Cortex XDR by Palo Alto Networks is a very good product, but financially, it is very expensive, so the company should look into that area.
Read full review
reviewer1980216 - PeerSpot reviewer
reviewer1980216
Business Development Manager For Palo Alto Networks at a tech services company with 1,001-5,000 employees
May 21, 2026
The negative aspect I see is the economic model used by Palo Alto.
Read full review
TJ
Tejas Jain
Principle Cloud Architect at a tech services company with 11-50 employees
May 21, 2026
Cortex XDR by Palo Alto Networks is not only pricey; it is extremely expensive.
Read full review
Raj-Yadav - PeerSpot reviewer
Raj-Yadav
Network Security Administrator at Alethe Consulting Pvt. Ltd
Jan 13, 2026
If Palo Alto reduces the pricing slightly for their products, it would make them more scalable in markets such as India and globally for cybersecurity.
Read full review
reviewer1412415 - PeerSpot reviewer
reviewer1412415
Chief of IT Architecture at a financial services firm with 10,001+ employees
Nov 27, 2025
However, if you do not have Palo Alto in your environment, you are paying these additional services just for Cortex XDR by Palo Alto Networks, so it is not a cost-effective solution.
Read full review
Show 10 more reviews (out of 109)

Product Categories

Product Categories
Extended Detection and Response (XDR)
Endpoint Protection Platform (EPP)
Endpoint Detection and Response (EDR)
Ransomware Protection
AI-Powered Cybersecurity Platforms

Popular Comparisons

Popular Comparisons
CrowdStrike Falcon vs Cortex XDR by Palo Alto Networks Logo
CrowdStrike Falcon vs Cortex XDR by Palo Alto Networks
Microsoft Defender for Endpoint vs Cortex XDR by Palo Alto Networks Logo
Microsoft Defender for Endpoint vs Cortex XDR by Palo Alto Networks
Wazuh vs Cortex XDR by Palo Alto Networks Logo
Wazuh vs Cortex XDR by Palo Alto Networks
SentinelOne Singularity Endpoint vs Cortex XDR by Palo Alto Networks Logo
SentinelOne Singularity Endpoint vs Cortex XDR by Palo Alto Networks
Darktrace vs Cortex XDR by Palo Alto Networks Logo
Darktrace vs Cortex XDR by Palo Alto Networks
IBM Security QRadar vs Cortex XDR by Palo Alto Networks Logo
IBM Security QRadar vs Cortex XDR by Palo Alto Networks
Microsoft Sentinel vs Cortex XDR by Palo Alto Networks Logo
Microsoft Sentinel vs Cortex XDR by Palo Alto Networks
Varonis Platform vs Cortex XDR by Palo Alto Networks Logo
Varonis Platform vs Cortex XDR by Palo Alto Networks
Elastic Security vs Cortex XDR by Palo Alto Networks Logo
Elastic Security vs Cortex XDR by Palo Alto Networks
Huntress Managed EDR vs Cortex XDR by Palo Alto Networks Logo
Huntress Managed EDR vs Cortex XDR by Palo Alto Networks
Tanium vs Cortex XDR by Palo Alto Networks Logo
Tanium vs Cortex XDR by Palo Alto Networks
HP Wolf Security vs Cortex XDR by Palo Alto Networks Logo
HP Wolf Security vs Cortex XDR by Palo Alto Networks
TrendAI Vision One vs Cortex XDR by Palo Alto Networks Logo
TrendAI Vision One vs Cortex XDR by Palo Alto Networks
Trellix Endpoint Security Platform vs Cortex XDR by Palo Alto Networks Logo
Trellix Endpoint Security Platform vs Cortex XDR by Palo Alto Networks
WatchGuard Firebox vs Cortex XDR by Palo Alto Networks Logo
WatchGuard Firebox vs Cortex XDR by Palo Alto Networks
See all alternatives

Product Categories

Product Categories
Extended Detection and Response (XDR)
Endpoint Protection Platform (EPP)
Endpoint Detection and Response (EDR)
Ransomware Protection
AI-Powered Cybersecurity Platforms

Popular Comparisons

Popular Comparisons
CrowdStrike Falcon vs Cortex XDR by Palo Alto Networks Logo
CrowdStrike Falcon vs Cortex XDR by Palo Alto Networks
Microsoft Defender for Endpoint vs Cortex XDR by Palo Alto Networks Logo
Microsoft Defender for Endpoint vs Cortex XDR by Palo Alto Networks
Wazuh vs Cortex XDR by Palo Alto Networks Logo
Wazuh vs Cortex XDR by Palo Alto Networks
SentinelOne Singularity Endpoint vs Cortex XDR by Palo Alto Networks Logo
SentinelOne Singularity Endpoint vs Cortex XDR by Palo Alto Networks
Darktrace vs Cortex XDR by Palo Alto Networks Logo
Darktrace vs Cortex XDR by Palo Alto Networks
IBM Security QRadar vs Cortex XDR by Palo Alto Networks Logo
IBM Security QRadar vs Cortex XDR by Palo Alto Networks
Microsoft Sentinel vs Cortex XDR by Palo Alto Networks Logo
Microsoft Sentinel vs Cortex XDR by Palo Alto Networks
Varonis Platform vs Cortex XDR by Palo Alto Networks Logo
Varonis Platform vs Cortex XDR by Palo Alto Networks
Elastic Security vs Cortex XDR by Palo Alto Networks Logo
Elastic Security vs Cortex XDR by Palo Alto Networks
Huntress Managed EDR vs Cortex XDR by Palo Alto Networks Logo
Huntress Managed EDR vs Cortex XDR by Palo Alto Networks
Tanium vs Cortex XDR by Palo Alto Networks Logo
Tanium vs Cortex XDR by Palo Alto Networks
HP Wolf Security vs Cortex XDR by Palo Alto Networks Logo
HP Wolf Security vs Cortex XDR by Palo Alto Networks
TrendAI Vision One vs Cortex XDR by Palo Alto Networks Logo
TrendAI Vision One vs Cortex XDR by Palo Alto Networks
Trellix Endpoint Security Platform vs Cortex XDR by Palo Alto Networks Logo
Trellix Endpoint Security Platform vs Cortex XDR by Palo Alto Networks
WatchGuard Firebox vs Cortex XDR by Palo Alto Networks Logo
WatchGuard Firebox vs Cortex XDR by Palo Alto Networks
See all alternatives
Related questions
  • 117
Which SIEM is best fit with Palo Alto Cortex XDR?
  • 144
Which product would you choose: Microsoft Defender for Endpoint vs Cortex XDR by Palo Alto Networks?
  • 200
Cortex XDR by Palo Alto vs. Sentinel One
  • 188
FortiXDR vs Cortex Pro - which is the best?
  • 187
Comparing CrowdStrike Falcon to Cortex XDR (Palo Alto)
  • 176
How is Cortex XDR compared with Microsoft Defender?
  • 70
Which is better - Cortex XDR or Symantec End-User Endpoint Security?
  • 47
How would you compare BlackBerry Protect vs Cortex XDR by Palo Alto Networks?
  • 205
What is the best EDR or XDR product for a company with 9000 employees?
  • 202
When evaluating Extended Detection and Response (XDR), what aspect do you think is the most important to look for?