2021-08-18T09:37:00Z
NC
Content Manager at PeerSpot (formerly IT Central Station)
  • 1
  • 404

How is Cortex XDR compared with Microsoft Defender?

Which would you prefer?

1
PeerSpot user
1 Answer
Real User
Top 5
2021-09-22T13:30:29Z
Sep 22, 2021

Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface, applies behavioral-based endpoint protection and response, and includes risk-based vulnerability management.


We liked that Defender was configured on all computers that connected to the network. This helped us to protect all the computers without having to install them on each one of them. The centralized management was the best feature.


It was great at proactively monitoring threats. It was a bit inconvenient when the software did system scans on a client during business hours, at random. It was also difficult to run the SmartScreen feature and trying to install other software. We also found that it is impossible to delete a computer manually.


Palo Alto Cortex XDR is a solution for detection and response, integrating network, endpoint, and cloud data to prevent advanced threats. Cortex XDR uses behavioral analytics to detect threats and discover the root cause. It provides endpoint protection by blocking malware, exploits, and fileless attacks.


We were using Microsoft Defender but switched to Cortex because of the visibility it provides, with a complete picture of each attack that allows us to respond faster to alerts. We found it provides a wider range of scenarios, working on every device that can connect with the Internet.


However, Cortex could improve the context it gives to behavior-based alerts. We would also like to see an easier integration with Mac.



Conclusions


Microsoft Defender is best suited for Windows-based networks. It is currently difficult to implement and integrate with other environments, like Mac. While its centralized management is a good feature, it lacks flexibility. Cortex is easier to use, and the interface is more intuitive. It suited us most because of the flexibility of integration, and it excels in its prevention abilities.

Find out what your peers are saying about Cortex XDR by Palo Alto Networks vs. Microsoft Defender for Endpoint and other solutions. Updated: January 2023.
670,331 professionals have used our research since 2012.
Product comparison that may be of interest to you
Related Questions
NC
Content Manager at PeerSpot (formerly IT Central Station)
Dec 15, 2022
Some people say it 's free and comes with Windows 10 and some people say it's expensive. So which is it?
See 1 answer
Navcharan Singh - PeerSpot reviewer
Senior Seo Executive at Ace Cloud Hosting
Dec 15, 2022
Microsoft Windows Defender is a part of Windows 10 and is available at no additional cost. It offers basic protection against malware and viruses. For more comprehensive protection, you can upgrade to a paid subscription to Microsoft Defender Advanced Threat Protection. ADTP is a cloud-based platform that delivers real-time security insights and advanced threat protection for endpoints across your enterprise. It features behavioral detection analytics, anti-ransomware, and anti-phishing technologies. Microsoft Defender ATP starts at $15 per user per month. Volume discounts are available.
Ammar Jibarah - PeerSpot reviewer
IT Security at Aramex
Dec 7, 2022
Hi community, I work as an IT Security person at a large Logistics company. At the moment, I'm researching these 2 products for my organization: Microsoft Defender for Endpoint and Cortex XDR by Palo Alto Networks. Most comparisons and reviews I found were done in late 2021 and early 2022. As of now, considering all Microsoft Updates on their Defender, which product would you prefer to use?...
2 out of 4 answers
ZA
Chief Manager at Arcil
Sep 7, 2022
I have not used Microsoft Defender and only used Cortex XDR by Palo Alto Networks. My experience with Cortex is not good as you need to whitelist each and every exe file of each adn every computer. My recommendation for you is to go for Cynet360 MDR which is far better than Cortex in terms of auto detection and remediation. You will get genuine alert.
JH
Director, Customer Success at SecureWorks
Sep 7, 2022
I would go for the one with the best independent threat intelligence, a platform that allows you to change, add, move IT and Security infrastructure without impacting your security platform.  I would also place a close attention to storage costs, service levels and the number of resources providing human intelligence on top of machine intelligence for investigation and incident response, all in one platform.  But I am biased ;-)
Related Articles
NC
Content Manager at PeerSpot (formerly IT Central Station)
Aug 5, 2022
PeerSpot’s crowdsourced user review platform helps technology decision-makers around the world to better connect with peers and other independent experts who provide advice without vendor bias. Our users have ranked these solutions according to their valuable features, and discuss which features they like most and why. You can read user reviews for the Top Extended Detection and Response (XDR...
See 1 comment
Jairo Willian Pereira - PeerSpot reviewer
Information Security Manager at a retailer with 10,001+ employees
Aug 5, 2022
Well, some times ago, EDR agents was moved to XDR but now, XDR is on "peak of inflated expectations", the second of five phases in product development hype. I'd rather wait a little bit, may be ZDR :)
Product Comparisons
Related Articles
NC
Content Manager at PeerSpot (formerly IT Central Station)
Aug 5, 2022
Top 8 Extended Detection and Response (XDR) Tools 2022
PeerSpot’s crowdsourced user review platform helps technology decision-makers around the world to...
Download Free Report
Download our FREE report comparing Cortex XDR by Palo Alto Networks and Microsoft Defender for Endpoint based on reviews, features, and more! Updated: January 2023.
DOWNLOAD NOW
670,331 professionals have used our research since 2012.