Try our new research platform with insights from 80,000+ expert users

Cortex XDR by Palo Alto Networks vs Tanium comparison

Palo Alto Networks and Tanium are both solutions in the Endpoint Protection Platform (EPP) category. Palo Alto Networks is ranked #4 with an average rating of 8.6, while Tanium is ranked #32 with an average rating of 7.3. Palo Alto Networks holds a 3.9% mindshare in EPP, compared to Tanium’s 2.5% mindshare. Additionally, 95% of Palo Alto Networks users are willing to recommend the solution, compared to 76% of Tanium users who would recommend it.
Cortex XDR by Palo Alto Net...
Read 90 Cortex XDR by Palo Alto Networks reviews
  • 14,000 Views
  • 8,610 Comparison Views
95% willing to recommend
Tanium
Read 18 Tanium reviews
  • 6,025 Views
  • 4,230 Comparison Views
76% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Sep 9, 2024

Both Tanium and Cortex XDR by Palo Alto Networks offer robust cybersecurity solutions with distinct advantages based on user reviews. Cortex XDR has the upper hand due to its advanced features and better customer service.

Features: Tanium users value its real-time data, endpoint management capabilities and overall cost-effectiveness. Cortex XDR users praise its integration with other Palo Alto Networks products, advanced threat detection features and comprehensive security coverage.

Room for Improvement: Tanium users seek improvements in scalability, more intuitive functionalities and better customer service. Cortex XDR users request better integration with third-party tools, refinements in alert accuracy and improved ease of use.

Ease of Deployment and Customer Service: Tanium is noted for its straightforward deployment process but has mixed reviews about customer service. Cortex XDR offers a simple deployment experience, with users reporting more consistent and favorable customer support. Cortex XDR is generally seen as offering better customer service.

Pricing and ROI: Tanium is considered more cost-effective, with users citing a positive ROI. Cortex XDR, while more expensive, is seen as worth the investment due to its advanced capabilities and comprehensive security coverage. Users believe the higher cost of Cortex XDR is justified by its superior features.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Cortex XDR by Palo Alto Networks vs. Tanium Report (Updated: May 2025).
Buyer's Guide
Cortex XDR by Palo Alto Networks vs. Tanium
May 2025
Download the complete report
Helped 851,604 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cortex XDR by Palo Alto Net...
Ranking in Endpoint Protection Platform (EPP)
4th
Average Rating
8.4
Reviews Sentiment
7.4
Number of Reviews
90
Ranking in other categories
Extended Detection and Response (XDR) (7th), Ransomware Protection (1st), AI-Powered Cybersecurity Platforms (4th)
Tanium
Ranking in Endpoint Protection Platform (EPP)
32nd
Average Rating
7.6
Reviews Sentiment
6.8
Number of Reviews
18
Ranking in other categories
Server Monitoring (8th), Vulnerability Management (20th), Endpoint Detection and Response (EDR) (25th)
 

Mindshare comparison

As of May 2025, in the Endpoint Protection Platform (EPP) category, the mindshare of Cortex XDR by Palo Alto Networks is 3.9%, down from 5.0% compared to the previous year. The mindshare of Tanium is 2.5%, up from 2.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Endpoint Protection Platform (EPP)
 

Featured Reviews

Mohammad Qaw - PeerSpot reviewer
Perfect correlation and XDR capabilities for network traffic plus endpoint security
The solution should force customers to integrate with network traffic to see the full benefits of XDR. If you are not integrating it or feeding in your network traffic, then you are just buying a normal antivirus which doesn't make any sense. You are paying double the price to use the antivirus feature or to say you have XDR, but in reality you are not using it. The solution should include an on-premises option because some customers want only on-premises. It would be hard, but good to do if possible. Open XDR would be beneficial in the future. Right now, the solution is Closed XDR so cannot communicate with the few new vendors in the Open XDR market.
Read full review
Ed Jarecki - PeerSpot reviewer
A scalable solution that helps to understand how infrastructure works
We use the tool as an infrastructure operational management solution.  The solution is scalable and helps to understand how infrastructure works. It helps to improve the health of the organization.  Any movement into a SaaS solution has challenges since the processes and data flows are not well…
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The dashboard is customizable."
"Traps has drastically reduced our endpoint attack surface via advanced detection capabilities, sandboxing of never before seen programs, and by drastically limiting where executables can launch in the first place."
"One thing that I like about Cortex XDR by Palo Alto Networks, it is detecting all the suspicious or malicious binaries, and it has integration with Palo Alto Firewall."
"The product's most valuable features are massive user and feature intelligence exploit detection."
"The most valuable feature of Cortex XDR by Palo Alto Networks is its machine-learning capabilities. Additionally, there is full integration with other solutions."
"The information the dashboard provides is very clear."
"It collects and caches and the knowledge of machine learning from different customers to take to the cloud. It makes it better to use for everybody. It allows for quick learning and updates and can, therefore, offer zero-day malware security. This sharing of metadata helps make the solution very safe."
"The product's initial setup phase is very easy."
More Cortex XDR by Palo Alto Networks pros
"Tanium is a very good product and I would rate it eight or nine out of ten."
"The product is granular and can build complex roles compared to other EDR vendors."
"Tanium’s linear-chain architecture is valuable."
"Tanium's most valuable features are patch management, inventory, and distribution software."
"I find the inventory and compliance features of Tanium to be the most impressive."
"The security features are very valuable."
"When I push a quick update, it's done right away, and I can rescan immediately to confirm completion within minutes."
"When I push a quick update, it's done right away, and I can rescan immediately to confirm completion within minutes."
More Tanium pros
 

Cons

"Cortex XDR could improve its sales support team, including better commission structures and referral programs."
"Cortex XDR by Palo Alto Networks could improve by offering remote management. It would be useful to look at the client's issue to fix it."
"It would be good if they could make an exception for applications. Sometimes, it can be a bit of a challenge to make exceptions for certain applications that have been used as rogue."
"In the next release, I would like to see more UI improvements. Their UI is a bit basic. When we are speaking about Palo Alto Networks they are the big company, so they can improve the UI a little bit. The UI, the reports, the log system can all be improved."
"Currently, we are monitoring all USB drives and ports but we would like to improve our device control capabilities."
"Managing the product should be easier."
"Being able to filter the events to see those that are related to the actual alert would save time spent by the engineer."
"The solution lags to the real-time scenarios here and there."
More Cortex XDR by Palo Alto Networks cons
"When working with Tanium, there are some older devices that haven't been patched for a long time, and certain patches are not included in Tanium."
"The solution lacks mobility."
"The solution can give a lot of false positives."
"The reporting could be improved."
"The most painful thing is the interface. It's a bit unclear sometimes."
"The solution needs to improve the reporting and tracking capabilities."
"We had some issues with the solution's OS upgrade."
"Tanium’s scalability could be improved."
More Tanium cons
 

Pricing and Cost Advice

"Very costly product."
"We didn't have to pay any additional fee for the cloud instance. It just came with the renewal, which was nice."
"The solution is expensive. It's pricing is on a yearly-basis."
"I don't like that they have different types of licenses."
"When we first bought it, it was a bit expensive, but it was worth it. The licensing was straightforward."
"The tool's price is moderate."
"I feel it is fairly priced."
"Cortex XDR by Palo Alto Networks is quite an expensive solution."
More Cortex XDR by Palo Alto Networks pricing and cost advice
"It is higher than some competitors in the market."
"There is an annual license required to use this solution."
"The product's pricing differs from region to region depending on negotiations and the number of endpoints."
"The solution offers value for money."
"The solution is expensive but it's a good investment."
"Tanium is a more expensive solution in Latin America than some of the competitors, such as BigFix."
"It's an expensive solution. It would be nice if the cost were lower."
report
See which vendors are best for you
Use our free recommendation engine to learn which Endpoint Protection Platform (EPP) solutions are best for your needs.
See recommendations
851,604 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
14%
Financial Services Firm
9%
Manufacturing Company
7%
Government
7%
Financial Services Firm
17%
Government
13%
Computer Software Company
10%
Manufacturing Company
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Cortex XDR by Palo Alto vs. Sentinel One
Cortex XDR by Palo Alto vs. SentinelOne SentinelOne offers very detailed specifics with regard to risks or attacks. The ability to reverse damage caused by ransomware with minimal interruptions to...
See all answers
Comparing CrowdStrike Falcon to Cortex XDR (Palo Alto)
Cortex XDR by Palo Alto vs. CrowdStrike Falcon Both Cortex XDR and Crowd Strike Falcon offer cloud-based solutions that are very scalable, secure, and user-friendly. Cortex XDR by Palo Alto offers ...
See all answers
How is Cortex XDR compared with Microsoft Defender?
Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface, applies behavioral-based endpoint protection and response, and includes risk-ba...
See all answers
What do you like most about Tanium?
Tanium’s linear-chain architecture is valuable.
See all answers
What needs improvement with Tanium?
While there is always room for improvement, I am pleased with Tanium.
See all answers
What is your primary use case for Tanium?
The primary use case for Tanium ( /products/tanium-reviews ) is compliance, patching, and inventory as part of the core functions.
See all answers
 

Comparisons

Microsoft Defender for Endpoint vs Cortex XDR by Palo Alto Networks Logo
Microsoft Defender for Endpoint vs Cortex XDR by Palo Alto Networks
Compared 11% of the time
CrowdStrike Falcon vs Cortex XDR by Palo Alto Networks Logo
CrowdStrike Falcon vs Cortex XDR by Palo Alto Networks
Compared 7% of the time
Darktrace vs Cortex XDR by Palo Alto Networks Logo
Darktrace vs Cortex XDR by Palo Alto Networks
Compared 5% of the time
Wazuh vs Cortex XDR by Palo Alto Networks Logo
Wazuh vs Cortex XDR by Palo Alto Networks
Compared 5% of the time
Trend Vision One vs Cortex XDR by Palo Alto Networks Logo
Trend Vision One vs Cortex XDR by Palo Alto Networks
Compared 2% of the time
More Cortex XDR by Palo Alto Networks Competitors
CrowdStrike Falcon vs Tanium Logo
CrowdStrike Falcon vs Tanium
Compared 15% of the time
Microsoft Defender for Endpoint vs Tanium Logo
Microsoft Defender for Endpoint vs Tanium
Compared 9% of the time
Microsoft Configuration Manager vs Tanium Logo
Microsoft Configuration Manager vs Tanium
Compared 8% of the time
ServiceNow Discovery vs Tanium Logo
ServiceNow Discovery vs Tanium
Compared 6% of the time
Automox vs Tanium Logo
Automox vs Tanium
Compared 2% of the time
More Tanium Competitors
 

Product Reports

Buyer's Guide
Cortex XDR by Palo Alto Networks
May 2025
Cortex XDR by Palo Alto Networks reportDownload Cortex XDR by Palo Alto Networks product report
Buyer's Guide
Tanium
April 2025
Tanium reportDownload Tanium product report
 

Also Known As

Cyvera, Cortex XDR, Palo Alto Networks Traps
No data available
 

Overview

Cortex XDR by Palo Alto Networks delivers comprehensive endpoint security, integrating well with other systems to offer robust threat detection and real-time protection through AI-driven analytics.

Cortex XDR by Palo Alto Networks offers advanced endpoint protection and threat detection through AI and behavior-based analytics. Its user-friendly design simplifies integration with firewalls, delivering multi-layered protection with low resource consumption. Valued for policy management, USB control, and incident correlation, Cortex XDR enhances threat management and real-time threat hunting capabilities. However, users note challenges with third-party integration, reporting, and dashboard automation. Agent performance across operating systems and memory consumption are areas for improvement, alongside reducing false positives and simplifying endpoint management and setup.

What features does Cortex XDR offer?
  • Behavior-Based Detection: Analyzes user behavior to identify suspicious activities.
  • AI Analytics: Utilizes AI for accurate threat detection and response.
  • Real-Time Protection: Provides immediate defense against threats.
  • Policy Management: Allows customization of security policies across endpoints.
  • USB Control: Regulates USB device access for added security.
  • Incident Correlation: Connects and analyzes various security events for better response.
  • Firewall Integration: Seamlessly works with firewalls for enhanced security.
  • Machine Learning Capabilities: Continuously improves threat detection precision.
What benefits should be considered in reviews?
  • Low Resource Consumption: Efficient security functions without taxing system resources.
  • Multi-Layered Protection: Comprehensive security across multiple attack vectors.
  • User-Friendly Interface: Intuitive design for easier management.
  • Enhanced Threat Management: Identifies and mitigates threats effectively.
  • Real-Time Threat Hunting: Proactively searches for and mitigates potential threats.

Cortex XDR is crucial in industries requiring robust endpoint protection, such as finance, healthcare, and technology. It supports malware detection, behavioral analysis, and ransomware mitigation across endpoints, including remote work environments, providing comprehensive threat visibility and security policy management. The solution's integration with firewalls and specialized industry requirements enhances security posture in diverse operational settings.

Palo Alto Networks

Tanium Endpoint Platform reduces security risk, improves agility & increases efficiency, a fundamentally new approach to endpoint security's threat detection, indicent response, vulnerability assessment and configuration compliance & with management's software distribution, asset utilization, asset inventory and patch management.

Tanium
 

Sample Customers

CBI Health Group, University Honda, VakifBank
JPMorgan Chase, eBay, Amazon, US Bank, MetLife, pwc, Cerner, Delphi, MGM Grand, New York Life
Buyer's Guide
Cortex XDR by Palo Alto Networks vs. Tanium
May 2025
Free Report: Cortex XDR by Palo Alto Networks vs. Tanium
Find out what your peers are saying about Cortex XDR by Palo Alto Networks vs. Tanium and other solutions. Updated: May 2025.
DOWNLOAD NOW
851,604 professionals have used our research since 2012.
See our Cortex XDR by Palo Alto Networks vs. Tanium report.
See our list of best Endpoint Protection Platform (EPP) vendors and best Endpoint Detection and Response (EDR) vendors.

We monitor all Endpoint Protection Platform (EPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.