Try our new research platform with insights from 80,000+ expert users
Vyshnavi Jyothermai - PeerSpot reviewer
Sr. Endpoint Security Engineer at iOPEX Technologies
Real User
Top 10
Easy-to-use and easy-to-install
Pros and Cons
  • "The tool is easy to use."
  • "When it comes to malware files, it should be a little quick because, at times, it would give a wrong result in the sense of what it might be on malware, even if it still might be a normal one."

What is our primary use case?

I am a tech support engineer or an endpoint security engineer who works with Cortex XDR's team itself, looking after all the support cases related to our technical stuff, specifically malware cases.

What is most valuable?

The most valuable feature of the solution is Broker VM, which is the best functionality, as I haven't found such a feature in any other product I have worked on till now.

What needs improvement?

Some feature requests are coming up from the customers. I feel like there should be a quick improvement. There is a little gap in implementing the tool's features as the team needs to do an investigation, which would take more time than expected, leaving the customers frustrated. The product team's investigation to decide on the features to be introduced in the solution should be a little quick. When it comes to malware files, it should be a little quick because, at times, it would give a wrong result in the sense of what it might be on malware, even if it still might be a normal one. At that point in time, we need to change the tool's version, and it generally needs to be changed from our end with Java and Jira. Maybe it should be a little improved in that case.

For how long have I used the solution?

I have been using Cortex XDR by Palo Alto Networks for two years. I am an endpoint security engineer for Cortex XDR's team. I worked with a client company as a foreign technical support engineer.

Buyer's Guide
Cortex XDR by Palo Alto Networks
August 2025
Learn what your peers think about Cortex XDR by Palo Alto Networks. Get advice and tips from experienced pros sharing their opinions. Updated: August 2025.
866,561 professionals have used our research since 2012.

What do I think about the stability of the solution?

So far, I haven't found any stability issues in the tool. Right now, I am on post-maternity leave, so I left the company six or seven months ago. To date, I haven't found any stability issues with the tool. Stability-wise, I rate the solution an eight and a half out of ten.

The tool is not used in my organization because I work within the tool's XDR team related to Palo Alto. I don't have an exact count of the users because we have different customers on a larger scale.

What do I think about the scalability of the solution?

It is a scalable solution. Scalability-wise, I rate the solution a nine out of ten.

How are customer service and support?

I am not required to contact the solution's technical support since I handle the customers' tickets.

How was the initial setup?

My company was involved in mass deployment. I am not involved in the deployment stuff because we work as a break-and-fix team. We generally don't go ahead with a mass deployment. For individual deployment, it is a quick and easy-to-install tool. Cortex XDR by Palo Alto Networks is not like every other antivirus product, and I think it is an easy-to-install tool. There is a team for the tool to help you out, but certain pre-requirements need to be filled. If all the pre-requirements are met, there will be no issue with the installation.

What's my experience with pricing, setup cost, and licensing?

I am not sure about the tool's pricing because we are not from the accounts team. The tool's pricing is managed by the accounts department.

What other advice do I have?

I recommend the tool as it is an emerging or upcoming product with a set of features. My recommendation of the tool surely depends upon the scale of the business.

The tool is easy to use. We even have an accounts team where they can help you from scratch. We have a tech support team who would definitely suggest it to you over the session, so nothing as such is required as they will definitely help the users with the tool.

I rate the tool an eight and a half or nine out of ten.

Disclosure: My company does not have a business relationship with this vendor other than being a customer.
PeerSpot user
EhabAli - PeerSpot reviewer
Sr. Cybersecurity Solutions Architect at BMB
Real User
It provides a whole new level of visibility and integrates with most other vendors
Pros and Cons
  • "Cortex covers everything I need. It's a perfect solution. Cortex provides a different level of visibility because it's an extended EDR, allowing you to grab logs from the network and firewalls. Palo Alto invented the concept of the extended EDR or XDR."
  • "The price could be a little lower."

What is most valuable?

Cortex covers everything I need. It's a perfect solution. Cortex provides a different level of visibility because it's an extended EDR, allowing you to grab logs from the network and firewalls. Palo Alto invented the concept of the extended EDR or XDR.

What needs improvement?

The price could be a little lower. 

For how long have I used the solution?

I have been using Cortex for four years.

How are customer service and support?

Palo Alto provides on-the-ground and remote support. They have a local team on the ground and teams in India or other countries. Their support is excellent, and they know what they're doing. 

How would you rate customer service and support?

Positive

Which solution did I use previously and why did I switch?

Some of my customers have McAfee, Symantec, or Kaspersky. Palo Alto can integrate with other vendors, so it's not locked to one single vendor. Other vendors like Trend Micro, Bitdefender, CrowdStrike, etc. have limitations on log collection from other places. On Palo Alto's datasheet, it tells you that it can talk to Check Point, Fortinet, etc. It's pretty awesome. I believe this is a huge advantage that allows us to implement Cortex anywhere. 

How was the initial setup?

I rate Cortex XDR 10 out of 10 for ease of setup. It can be deployed on-prem or on the cloud. It's an easy process that doesn't take long. 

What other advice do I have?

I rate Cortex XDR 10 out of 10. 

Disclosure: My company has a business relationship with this vendor other than being a customer. Partner/Implementer
PeerSpot user
Buyer's Guide
Cortex XDR by Palo Alto Networks
August 2025
Learn what your peers think about Cortex XDR by Palo Alto Networks. Get advice and tips from experienced pros sharing their opinions. Updated: August 2025.
866,561 professionals have used our research since 2012.
Kush Kumar - PeerSpot reviewer
IT Specialist at RateGain
Real User
Top 10
Scans for unwanted and malicious activity on endpoints and servers, creating alerts and incidents
Pros and Cons
  • "The most valuable features are incident creation, policy-based protection, IP whitelisting, and device encryption. These are beneficial for endpoint and server security."
  • "There's room for improvement with Mac device installations, which can be challenging."

What is our primary use case?

We use Cortex XDR by Palo Alto Networks for endpoint security. It scans for unwanted and malicious activity on endpoints and servers, creating alerts and incidents.

What is most valuable?

The most valuable features are incident creation, policy-based protection, IP whitelisting, and device encryption. These are beneficial for endpoint and server security.

What needs improvement?

There's room for improvement with Mac device installations, which can be challenging.

For how long have I used the solution?

I have been using the tool for two years. 

What do I think about the scalability of the solution?

About 20 people in our company use Cortex XDR by Palo Alto Networks across the country.

How was the initial setup?

We've had some issues isolating endpoints and have sought support from Palo Alto for that.

What's my experience with pricing, setup cost, and licensing?

The cost depends on your chosen license type, like Pro or other licenses.

What other advice do I have?

I'd recommend using Cortex XDR by Palo Alto Networks for security purposes. It's good at detecting malware and is a better strategy than other antivirus solutions. I rate the overall solution a seven out of ten. 

Which deployment model are you using for this solution?

On-premises
Disclosure: My company does not have a business relationship with this vendor other than being a customer.
PeerSpot user
Information Security Manager at a financial services firm with 1,001-5,000 employees
Real User
Numerous available AI modules and very effective communication methods
Pros and Cons
  • "The solution is a new generation XDR that has a lot of artificial intelligence modules."
  • "The server sometimes stops continuously to check things so it would be helpful to receive access updates or technical reasons."

What is our primary use case?

Our company uses the solution to detect behaviors and provide difficulty remediation for malware. The solution acts like a terminal that allows for the renewal of malware directly from the terminal in any meeting room. 

We also have an IOP configuration that allows us to compare our own indicators and compromise rules. This is very efficient because anytime there is an IAP release on the web page, we can update or create a repository of different notification alerts. 

What is most valuable?

The solution is a new generation XDR that has a lot of artificial intelligence modules. 

The solution's communication methods are very effective. 

Configuring or eradicating terminals is easy. 

What needs improvement?

The server sometimes stops continuously to check things so it would be helpful to receive access updates or technical reasons. 

For how long have I used the solution?

I have been using the solution for 18 months. 

How are customer service and support?

Technical support was very responsive. You can present a critical configuration issue and they provide a solution as quickly as possible. 

The Linux agent was a little bit sketchy on our side but we got good support. 

How was the initial setup?

The setup is very straightforward. 

What about the implementation team?

We implemented the solution in-house and worked with one telecom rep for network permissions. 

Two of our cybersecurity engineers deployed to 4,000 endpoints in two months. We had a little bit of an issue with Linux but resolved it so all endpoints were fully operational within three months. 

What's my experience with pricing, setup cost, and licensing?

The pricing is a little bit on the expensive side so is rated a seven out of ten. 

What other advice do I have?

The solution is solid and measures up against other products. I rate the solution an eight out of ten. 

Disclosure: My company does not have a business relationship with this vendor other than being a customer.
PeerSpot user
reviewer2511138 - PeerSpot reviewer
Senior Consultant Cybersecurity at a consultancy with 10,001+ employees
MSP
Top 20
An antivirus that provides EDR and XDR, but it is expensive
Pros and Cons
  • "The solution's most valuable feature is the user interface."
  • "The solution lags to the real-time scenarios here and there."

What is our primary use case?

Cortex XDR by Palo Alto Networks is an antivirus tool that provides EDR and XDR.

What is most valuable?

The solution's most valuable feature is the user interface. I've used other solutions like Cylance and CrowdStrike, but Cortex XDR stands out from all the products. It has also moved to XSIAM. Cortex XDR introduced it long ago, while other tools are implementing it now.

What needs improvement?

The solution lags to the real-time scenarios here and there.

For how long have I used the solution?

I have been using Cortex XDR by Palo Alto Networks for five years.

What do I think about the stability of the solution?

The solution would have bugs, but we get support 24/7 to deal with them.

What do I think about the scalability of the solution?

Cortex XDR by Palo Alto Networks is a scalable solution.

How was the initial setup?

The solution’s initial setup is easy.

What's my experience with pricing, setup cost, and licensing?

Cortex XDR by Palo Alto Networks is an expensive solution.

What other advice do I have?

Cortex XDR by Palo Alto Networks is a cloud-based solution. I would recommend the solution to other users if they can afford it. Cortex XDR by Palo Alto Networks is worth the money. It is easy for a beginner to learn to use the solution for the first time.

Overall, I rate the solution a seven out of ten.

Disclosure: My company does not have a business relationship with this vendor other than being a customer.
PeerSpot user
Mirko Minuzzo - PeerSpot reviewer
Business development manager for Palo Alto Networks at Westcon-Comstor
Real User
Top 5
Has a simple setup process and efficient stability
Pros and Cons
  • "The product's most valuable features are massive user and feature intelligence exploit detection."
  • "It is an enterprise-level solution. Its price could be less expensive."

What is our primary use case?

We use the product as a detection and response application.

What is most valuable?

The product's most valuable features are massive user and feature intelligence exploit detection. It is very useful in detecting threats to databases. The last meter statistics prove the efficient capabilities of the solution.

What needs improvement?

It is an enterprise-level solution. Its price could be less expensive.

For how long have I used the solution?

We have been using Cortex XDR by Palo Alto Networks for three years.

What do I think about the stability of the solution?

The product is 100% stable. I have never received any complaints from the customers.

What do I think about the scalability of the solution?

Cortex XDR by Palo Alto Networks is easily scalable as it is a cloud-based product.

How are customer service and support?

We provide support services for our customers. Palo Alto's support services are expensive, and customers also encounter language barriers.

How was the initial setup?

The initial process is simple. It requires training of about three to four days to understand the installation process. It is deployed on the cloud. The number of software engineers required depends on the number of the endpoints.

What's my experience with pricing, setup cost, and licensing?

We pay in advance for the product's license. It has reasonable pricing for the use cases it provides to the company. We can split this payment monthly, quarterly, or yearly, according to the customer's requirements. For a cost-benefit analysis when choosing a security solution, consider factors such as the number of attacks prevented, the impact of those attacks, potential losses, and other hidden costs.

What other advice do I have?

I rate Cortex XDR by Palo Alto Networks for ten out of ten. It could be improved from a commercial perspective. It could approach the SMB market as well.

Disclosure: My company has a business relationship with this vendor other than being a customer. Reseller
PeerSpot user
BibinMathew - PeerSpot reviewer
Cash Management Officer at a retailer with 1,001-5,000 employees
Real User
Lightweight, helpful technical support, and user-friendly
Pros and Cons
  • "The solution's most valuable feature is its ability to rapidly detect certain hardware files."
  • "Currently, we are monitoring all USB drives and ports but we would like to improve our device control capabilities."

What is our primary use case?

Cortex XDR by Palo Alto Networks is the antivirus solution we use for Androids.

What is most valuable?

The solution's most valuable feature is its ability to rapidly detect certain hardware files.

All other features of Cortex XDR by Palo Alto Networks are fine.

What needs improvement?

We have implemented a product that blocks USB usage and also provides device control for our company. 

Currently, we are monitoring all USB drives and ports but we would like to improve our device control capabilities. 

Although we are using this feature, we allow specific systems and USB devices. For example, we enable certain users to use external hard drives but we may disable them if necessary. However, due to the nature of our organization, we do not have a dedicated department for this task.

For how long have I used the solution?

I have been working with Cortex XDR by Palo Alto Networks for approximately seven years.

We are working with the most recent version.

What do I think about the stability of the solution?

The stability of Cortex XDR by Palo Alto Networks is a nine out of ten.

What do I think about the scalability of the solution?

I would rate the scalability of Cortex XDR by Palo Alto Networks a ten out of ten.

In our organization, we have 2,700 licenses. Our users are mostly IT specialists.

Our organization is using the Cortex system across all platforms, including servers running Linux, Mac, and Windows operating systems.

Maintenance is done by the vendor.

How are customer service and support?

Technical support is good.

We have also used them for Palo Alto Firewalls.

We do not have any issues with support, I would rate them a nine out of ten.

Which solution did I use previously and why did I switch?

Previously, approximately one year ago, we used Kaspersky.

We are currently using both Kaspersky and Cortex XDR by Palo Alto Networks.

How was the initial setup?

The installation process is straightforward, and the software itself is lightweight.

What about the implementation team?

The installation process takes less than a minute.

What's my experience with pricing, setup cost, and licensing?

Our license will require renewal in August, after which the maintenance will continue as usual.

I am not aware of the fees, it is handled by our financial department.

What other advice do I have?

I would recommend this solution to others who are interested in using it.

I would rate Cortex XDR by Palo Alto Networks nine out of ten.

Which deployment model are you using for this solution?

Public Cloud
Disclosure: My company does not have a business relationship with this vendor other than being a customer.
PeerSpot user
Network Security Engineer at I Dream networks pvt ltd
Real User
A useful solution to combat the growing cyberattacks
Pros and Cons
  • "The solution allows control over the user and his machine through Cortex XDR security policies."
  • "Palo Alto Networks Cortex XDR does not detect malicious activity like in other anti-virus solutions like Trend Micro and Windows with Cisco."

What is our primary use case?

Cortex XDR is an artificial intelligence-based solution that automatically detects malicious activity performed by users or user machines, blocking it with the help of AI. We also create security policies on Cortex XDR that can be managed by Cortex XDR. Let's say that a company wants a security policy to work for a home user or VPN client user. It also includes an enterprise network at home.

What is most valuable?

User control in Cortex XDR allows users to restrict access to certain websites from a company laptop used over a home network. The solution allows control over the user and his machine through Cortex XDR security policies.

What needs improvement?

Cortex XDR is not that smart compared to Check Point. We also deal with Check Point. Check Point solutions, Check Point Firewall, Check Point solution WAF technology, or anti-virus technology can be considered smart because of Palo Alto. The detection of malicious activities performed by Check Point is good. Artificial intelligence is not a good match for Check Point because sometimes Palo Alto Networks Cortex XDR does not detect malicious activity like in other anti-virus solutions like Trend Micro and Windows with Cisco.

I also want a better detection feature like the one in Check Point and any other anti-virus, for a matter of fact.

For how long have I used the solution?

I am a consultant for the solution. I work with Palo Alto, our solution provider, and offer Cortex solutions and Palo Alto firewalls. We also sell Cortex XDR at Mac Global. It has been approximately six months to a year since I started working with this solution. Speaking about the version, it is the Cortex XDR client. Our responsibilities are centered around the client-based solution, including managing clients and installing software and rules. Palo Alto’s team manages the other aspects of the solution.

What do I think about the stability of the solution?

It is a stable solution since it is on the cloud. CPU utilization and hardware requirements are not necessary. According to some user licenses, when we purchase them, we get much utilization of hardware requirements through the cloud.

What do I think about the scalability of the solution?

Cortex XDR is a scalable solution with around 500 to 600 users. User visibility, user policy, and security policy can be implemented in one view on Cortex XDR. The approximate number of clients constantly using Cortex XDR is between 200 to 250.

How are customer service and support?

I am working with iDream Networks, and we are partners of Palo Alto Networks.

How was the initial setup?

I will give 50 out of 100 points since the setup of Cortex XDR is neither too easy nor too difficult to implement. Its dashboard is very easy to manage since no other sites need to be opened to manage it. Also, it can be managed from anywhere. I am not involved in the deployment process as I only manage the solution.

What about the implementation team?

The configuration and implementation are done by Palo Alto’s team.

What's my experience with pricing, setup cost, and licensing?

Licensing for Palo Alto Networks Cortex XDR can be costly, especially when it comes to a hundred users. A license is required for each user, and the subscription must be renewed on a yearly basis.

What other advice do I have?

I recommend Palo Alto Networks Cortex XDR as a dependable option for future requirements. Cyberattacks are on the rise, and so that's why I have Palo Alto’s XDR. I also suggest Palo Alto Networks Cortex XDR to all customers. On a scale of 100, I rate this solution at 85, and on a scale of one to ten, I give it an eight.

Disclosure: My company has a business relationship with this vendor other than being a customer. Partner
PeerSpot user
Buyer's Guide
Download our free Cortex XDR by Palo Alto Networks Report and get advice and tips from experienced pros sharing their opinions.
Updated: August 2025
Buyer's Guide
Download our free Cortex XDR by Palo Alto Networks Report and get advice and tips from experienced pros sharing their opinions.