Cortex XDR by Palo Alto Networks vs Cybereason XDR comparison

Palo Alto Networks and Cybereason are both solutions in the Extended Detection and Response (XDR) category. Palo Alto Networks is ranked #7 with an average rating of 8.6, while Cybereason is ranked #22 with an average rating of 8.7. Palo Alto Networks holds a 5.6% mindshare in XDR, compared to Cybereason’s 0.7% mindshare. Additionally, 95% of Palo Alto Networks users are willing to recommend the solution, compared to 100% of Cybereason users who would recommend it.

Cortex XDR by Palo Alto Net...

Read 90 Cortex XDR by Palo Alto Networks reviews

7,412 Views
4,610 Comparison Views

95% willing to recommend

Cybereason XDR

Read 3 Cybereason XDR reviews

1,479 Views
473 Comparison Views

100% willing to recommend

Cortex XDR by Palo Alto Net...

Cybereason XDR

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Oct 8, 2024

Cortex XDR and Cybereason XDR are competitors in the extended detection and response market. Cybereason appears to have the upper hand due to its extensive feature set and positive reviews on deployment and support.

Features: Cortex XDR is known for advanced analytics, strong threat detection capabilities, and support praised by users. Cybereason XDR includes AI-driven threat hunting, automated response features, and real-time attack prevention, providing a diverse range of options for users.

Room for Improvement: Cortex XDR users want better third-party tool integration, enhanced incident response features, and more seamless user experiences. Cybereason XDR could improve navigation, address system lags, and optimize technical performance to enhance overall usability.

Ease of Deployment and Customer Service: Cortex XDR offers straightforward deployment but mixed feedback on customer support. Cybereason XDR delivers seamless deployment and proactive support, providing a more favorable experience in both deployment and customer service.

Pricing and ROI: Cortex XDR is appreciated for competitive pricing and cost-effectiveness, making it accessible to a broad user base. Cybereason XDR, though having higher initial costs, is valued for significant long-term ROI, justifying the investment for advanced security needs.

To learn more, read our detailed Cortex XDR by Palo Alto Networks vs. Cybereason XDR Report (Updated: April 2025).

Buyer's Guide

Cortex XDR by Palo Alto Networks vs. Cybereason XDR

April 2025

Download the complete report

Helped 851,604 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Cortex XDR by Palo Alto Net...

Ranking in Extended Detection and Response (XDR)

7th

Average Rating

8.4

Reviews Sentiment

7.4

Number of Reviews

Ranking in other categories

Endpoint Protection Platform (EPP) (4th), Ransomware Protection (1st), AI-Powered Cybersecurity Platforms (4th)

Cybereason XDR

Ranking in Extended Detection and Response (XDR)

22nd

Average Rating

8.6

Reviews Sentiment

6.7

Number of Reviews

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of May 2025, in the Extended Detection and Response (XDR) category, the mindshare of Cortex XDR by Palo Alto Networks is 5.6%, down from 6.5% compared to the previous year. The mindshare of Cybereason XDR is 0.7%, up from 0.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Extended Detection and Response (XDR)

Featured Reviews

Mohammad Qaw

Senior Security Consultant at helpag

Perfect correlation and XDR capabilities for network traffic plus endpoint security

The solution should force customers to integrate with network traffic to see the full benefits of XDR. If you are not integrating it or feeding in your network traffic, then you are just buying a normal antivirus which doesn't make any sense. You are paying double the price to use the antivirus feature or to say you have XDR, but in reality you are not using it. The solution should include an on-premises option because some customers want only on-premises. It would be hard, but good to do if possible. Open XDR would be beneficial in the future. Right now, the solution is Closed XDR so cannot communicate with the few new vendors in the Open XDR market.

Read full review

Peter Nowak

Business Development Manager for Cybereason at Bechtle

Integration of multiple firewalls enables advanced threat detection

The integration of data from firewalls and Active Directory is most valuable. Cybereason XDR facilitates two-way communication, where the firewall sends data to the Cybereason system, and it can communicate with the firewall to stop unwanted communication. Customers can deal with multiple types of firewalls with ease. The behavioral analytics help detect advanced threats when attackers use existing software. The multilayered protection approach, including NGAV, integrates XDR detection with antivirus to assess and counter threats effectively.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The initial setup is easy."

"WildFire AI is the best option for this product."

"The solution allows us to make investigations. Other XDR solutions also provide similar capabilities but for investigation, Cortex XDR is better."

"The tool is easy to use."

"This software helps us understand any issues that may arise when someone is not at work."

"The solution allows control over the user and his machine through Cortex XDR security policies."

"The solution's most valuable feature is the user interface."

"Stability is one of the features we like the most."

More Cortex XDR by Palo Alto Networks pros

"The integration of data from firewalls and Active Directory is most valuable."

"The solution has an investigation feature, which is useful for building storylines."

"The integration of data from firewalls and Active Directory is most valuable."

"Cybereason XDR's most useful feature is the investigation."

Cons

"It takes time to scan the servers and devices."

"Limited remote connection."

"In the next release, I would like to see more UI improvements. Their UI is a bit basic. When we are speaking about Palo Alto Networks they are the big company, so they can improve the UI a little bit. The UI, the reports, the log system can all be improved."

"The GUI could be improved."

"Data privacy is a matter of concern. You have to be careful with data privacy, it can be sensitive and Cortex can have most of your access."

"A little bit more automation would be nice."

"The solution should force customers to integrate with network traffic to see the full benefits of XDR."

"They have the worst support, as a company, that I have ever worked with, as they are difficult to get a hold of and keep on the phone. They don't know what they are talking about when you get them on the phone. They don't like to respond to messages when you send them to them. They like to "research problems" for weeks on end, then pass you off to somebody else."

More Cortex XDR by Palo Alto Networks cons

"There could be more integrations with other data sources like NDR systems."

"Cybereason's customer support could be better."

"The one thing we sometimes have issues with is its integration with other security applications like antiviruses."

"Customer service is rated as a five out of ten. When they work and reach the right level, they are helpful, but getting to the right person can be time-consuming."

Pricing and Cost Advice

"The price is on the higher side, but it's okay."

"It is "expensive" and flexible."

"The cost of Cortex XDR by Palo Alto Networks is $55 to $90 USD per endpoint per month."

"I am using the Community edition."

"It's about $55 per license on a yearly basis."

"The return on investment is from the user side because we have seen the performance of it increase the delivery time of the product if we are using too many web-based and on-premise applications. In indirect ways, we saw the return of investment in terms of performance and user satisfaction increase."

"Cortex XDR by Palo Alto Networks is an expensive solution."

"It has reasonable pricing for the use cases it provides to the company."

More Cortex XDR by Palo Alto Networks pricing and cost advice

"The solution is cheaper than Microsoft Defender. It has a subscription and no standard license."

See which vendors are best for you

Use our free recommendation engine to learn which Extended Detection and Response (XDR) solutions are best for your needs.

See recommendations

851,604 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

14%

Financial Services Firm

Manufacturing Company

Government

Computer Software Company

25%

Manufacturing Company

13%

Financial Services Firm

Comms Service Provider

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

Cortex XDR by Palo Alto vs. Sentinel One

Cortex XDR by Palo Alto vs. SentinelOne SentinelOne offers very detailed specifics with regard to risks or attacks. The ability to reverse damage caused by ransomware with minimal interruptions to...

See all answers

Comparing CrowdStrike Falcon to Cortex XDR (Palo Alto)

Cortex XDR by Palo Alto vs. CrowdStrike Falcon Both Cortex XDR and Crowd Strike Falcon offer cloud-based solutions that are very scalable, secure, and user-friendly. Cortex XDR by Palo Alto offers ...

See all answers

How is Cortex XDR compared with Microsoft Defender?

Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface, applies behavioral-based endpoint protection and response, and includes risk-ba...

See all answers

What do you like most about Cybereason XDR?

The solution has an investigation feature, which is useful for building storylines.

See all answers

What needs improvement with Cybereason XDR?

There could be more integrations with other data sources like NDR systems. Additionally, technical support has been slow in recent times. Enabling multifactor authentication has been problematic fo...

See all answers

What is your primary use case for Cybereason XDR?

I use Cybereason XDR for customers who don't have a SOC or managed SOC yet and want to be protected on more than their desktops. It is especially used in the manufacturing industry, yet not exclusi...

See all answers

Comparisons

Microsoft Defender for Endpoint vs Cortex XDR by Palo Alto Networks

Compared 11% of the time

CrowdStrike Falcon vs Cortex XDR by Palo Alto Networks

Compared 7% of the time

Darktrace vs Cortex XDR by Palo Alto Networks

Compared 5% of the time

Wazuh vs Cortex XDR by Palo Alto Networks

Compared 5% of the time

SentinelOne Singularity Complete vs Cortex XDR by Palo Alto Networks

Compared 4% of the time

More Cortex XDR by Palo Alto Networks Competitors

Wazuh vs Cybereason XDR

Compared 47% of the time

Microsoft Defender XDR vs Cybereason XDR

Compared 27% of the time

CrowdStrike Falcon vs Cybereason XDR

Compared 15% of the time

Cynet vs Cybereason XDR

Compared 12% of the time

More Cybereason XDR Competitors

Product Reports

Buyer's Guide

Cortex XDR by Palo Alto Networks

May 2025

Download Cortex XDR by Palo Alto Networks product report

Buyer's Guide

Extended Detection and Response (XDR)

May 2025

Download Cybereason XDR product report

Also Known As

Cyvera, Cortex XDR, Palo Alto Networks Traps

No data available

Overview

Cortex XDR by Palo Alto Networks delivers comprehensive endpoint security, integrating well with other systems to offer robust threat detection and real-time protection through AI-driven analytics.

Cortex XDR by Palo Alto Networks offers advanced endpoint protection and threat detection through AI and behavior-based analytics. Its user-friendly design simplifies integration with firewalls, delivering multi-layered protection with low resource consumption. Valued for policy management, USB control, and incident correlation, Cortex XDR enhances threat management and real-time threat hunting capabilities. However, users note challenges with third-party integration, reporting, and dashboard automation. Agent performance across operating systems and memory consumption are areas for improvement, alongside reducing false positives and simplifying endpoint management and setup.

What features does Cortex XDR offer?

Behavior-Based Detection: Analyzes user behavior to identify suspicious activities.
AI Analytics: Utilizes AI for accurate threat detection and response.
Real-Time Protection: Provides immediate defense against threats.
Policy Management: Allows customization of security policies across endpoints.
USB Control: Regulates USB device access for added security.
Incident Correlation: Connects and analyzes various security events for better response.
Firewall Integration: Seamlessly works with firewalls for enhanced security.
Machine Learning Capabilities: Continuously improves threat detection precision.

What benefits should be considered in reviews?

Low Resource Consumption: Efficient security functions without taxing system resources.
Multi-Layered Protection: Comprehensive security across multiple attack vectors.
User-Friendly Interface: Intuitive design for easier management.
Enhanced Threat Management: Identifies and mitigates threats effectively.
Real-Time Threat Hunting: Proactively searches for and mitigates potential threats.

Cortex XDR is crucial in industries requiring robust endpoint protection, such as finance, healthcare, and technology. It supports malware detection, behavioral analysis, and ransomware mitigation across endpoints, including remote work environments, providing comprehensive threat visibility and security policy management. The solution's integration with firewalls and specialized industry requirements enhances security posture in diverse operational settings.

Palo Alto Networks

Cybereason is the leader in endpoint protection, offering endpoint detection and response, next-generation antivirus, and managed monitoring services. Founded by elite intelligence professionals born and bred in offense-first hunting, Cybereason gives enterprises the upper hand over cyber adversaries.

Cybereason

Sample Customers

CBI Health Group, University Honda, VakifBank

MOTOROLA MOBILITY

Buyer's Guide

Cortex XDR by Palo Alto Networks vs. Cybereason XDR

April 2025

Free Report: Cortex XDR by Palo Alto Networks vs. Cybereason XDR

Find out what your peers are saying about Cortex XDR by Palo Alto Networks vs. Cybereason XDR and other solutions. Updated: April 2025.

DOWNLOAD NOW

851,604 professionals have used our research since 2012.

See our Cortex XDR by Palo Alto Networks vs. Cybereason XDR report.

See our list of best Extended Detection and Response (XDR) vendors.

We monitor all Extended Detection and Response (XDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.