Cortex XDR by Palo Alto vs. Sentinel One

Cortex XDR vs SentinelOne
Which is the better solution?

Content Manager at PeerSpot (formerly IT Central Station)
  • 3
  • 341
PeerSpot user
3 Answers
Top 5
Aug 22, 2021

Cortex XDR by Palo Alto vs. SentinelOne

SentinelOne offers very detailed specifics with regard to risks or attacks. The ability to reverse damage caused by ransomware with minimal interruptions to the environment is note-worthy. Sentinel One works inconspicuously in the background, continually providing protection. It has an automated active EDR that will not only find issues but can fix them. I don’t know that any other solution does that.

Cortex XDR by Palo Alto has a nice console and is easy to use. One of my favorite things about it is that it will automatically connect and log various kinds of suspicious behavior - you don’t need to do it manually. Cortex XDR is very secure but it is missing some basic features. It doesn’t offer an on-prem solution and it doesn’t integrate so well with some third-party solutions.

SentinelOne can be challenging to set up and there seem to be some applications that do not function properly when SentinelOne is installed. I would like to be able to make the reporting more specific to my needs. It would be a more attractive option if the cost was lower.


The find-and-fix option that SentinalOne provides was a huge win for us. We feel it provides a deeper and more thorough level of security.

Product comparison that may be of interest to you
Eric Rise - PeerSpot reviewer
Network & Security Engineer at a healthcare company with 51-200 employees
Real User
Top 5
Sep 27, 2021

I haven't used Cortex. My worry with it and every other solution is how well does it perform when disconnected from the cloud/ the internet?

S1 - I have been using it for a couple of years now without an issue. I had been using Cylance prior. I've been very happy with the S1 solution. Works with or without the Internet.

IT Security Coordinator at a healthcare company with 10,001+ employees
Real User
Top 5
Sep 27, 2021

Depends on the size, scope and needs of your environment. 

XDR is an ok monitoring/alerting tool, especially if you have a Palo Alto firewall already and everything can integrate well together. However, S1 is a superior tool IMHO and can catch and fix things automatically if you so choose (magic quadrant agrees). 

Cost-wise XDR is probably cheaper but I don't know specifics on-prem vs cloud. S1 is a cloud tool but is extremely fast and responsive compared to some other tools we POC'd and can support legacy devices w2k8 and below or Linux or VDI without having to special of workarounds. So again, it depends on your needs, environment and cost.

Find out what your peers are saying about Cortex XDR by Palo Alto Networks vs. SentinelOne Singularity Complete and other solutions. Updated: May 2023.
710,326 professionals have used our research since 2012.
Related Questions
Solutions Architect at IT Solution Factor Sp. z o.o.
May 24, 2023
Good morning, I am looking for information on SentinelOne products. Can anyone tell me if workstation and server protection products implement a Virtual Patching functionality in the context of protection against vulnerabilities or implement Virtual Patching in a different way? Please provide any information on this. This information is necessary for me to make a decision on the selection of t...
Senior Manager INFOSEC AND Risk ASSESSMENT Engineering at Atlas Systems
May 10, 2023
Hello community,  I am a Senior Manager at a medium-sized tech services company. I have a client who is trying to decide which solution would be the best for them. Can you please provide a technical comparison between CrowdStrike Falcon and SentinelOne Singularity Complete? Thank you for your help.
2 out of 3 answers
May 8, 2023
Hi ViJay - Are they open to other solutions as well?
Iñaki Martinez Urricelqui - PeerSpot reviewer
Threat Analysis Technology Risk & Cybersecurity Analyst II at a consultancy with 5,001-10,000 employees
May 9, 2023
I think both solutions are very good. https://blog.ithq.pro/sentinel... I leave you a comparison of this website made by users. https://www.peerspot.com/produ...
Related Articles
Content Manager at PeerSpot (formerly IT Central Station)
Aug 5, 2022
PeerSpot’s crowdsourced user review platform helps technology decision-makers around the world to better connect with peers and other independent experts who provide advice without vendor bias. Our users have ranked these solutions according to their valuable features, and discuss which features they like most and why. You can read user reviews for the Top Extended Detection and Response (XDR...
See 1 comment
Jairo Willian Pereira - PeerSpot reviewer
Information Security Manager at a retailer with 10,001+ employees
Aug 5, 2022
Well, some times ago, EDR agents was moved to XDR but now, XDR is on "peak of inflated expectations", the second of five phases in product development hype. I'd rather wait a little bit, may be ZDR :)
Product Comparisons
Related Articles
Content Manager at PeerSpot (formerly IT Central Station)
Aug 5, 2022
Top 8 Extended Detection and Response (XDR) Tools 2022
PeerSpot’s crowdsourced user review platform helps technology decision-makers around the world to...
Download Free Report
Download our FREE report comparing Cortex XDR by Palo Alto Networks and SentinelOne Singularity Complete based on reviews, features, and more! Updated: May 2023.
710,326 professionals have used our research since 2012.