Cortex XDR and WatchGuard EPDR are competitive cybersecurity solutions. Cortex XDR is favored for its comprehensive threat detection capabilities while WatchGuard EPDR stands out due to its integration of endpoint protection and detection response.
Features: Cortex XDR is praised for effective threat correlation across various datasets, enhancing visibility and response actions. It provides powerful analytics for identifying and mitigating threats, and includes advanced machine learning for real-time threat detection. WatchGuard EPDR integrates EDR with traditional antivirus solutions, providing robust endpoint protection. It offers ease of use in day-to-day operations with seamless integration of protection and detection features, and strong compatibility with various operating systems.
Room for Improvement: Users have noted that Cortex XDR could benefit from improved support for older systems, more intuitive setup processes, and enhanced reporting capabilities. WatchGuard EPDR users suggest improvements in the depth of reporting, the addition of more advanced automation features, and more comprehensive threat analysis tools.
Ease of Deployment and Customer Service: Users find Cortex XDR deployment straightforward with minimal configuration issues, but support can be inconsistent. WatchGuard EPDR is also easily deployed and receives higher marks for consistent and responsive customer service. WatchGuard’s reliable support aids in smoother deployment experiences and better ongoing operational support.
Pricing and ROI: Cortex XDR users feel the product is priced on the higher end but see significant ROI due to its extensive threat detection capabilities. WatchGuard EPDR is considered more budget-friendly with competitive ROI, appealing to smaller organizations due to its cost-effectiveness. Cortex XDR’s superior threat detection commands a premium whereas WatchGuard’s better affordability wins favor among budget-conscious users.
They appreciate the rich telemetry data from the solution, as it provides in-depth threat identification.
I have seen a return on investment with Cortex XDR by Palo Alto Networks, as this product is offered at a minimal cost, and we can find a good ROI from it.
I can say that knowing you have a product like WatchGuard EPDR that's working 24/7 to help protect students in a school is good for ROI.
Every vendor has similar support; it depends on how the case is handled and raised.
Their support is efficient and responsive whenever I raise a ticket through my portal.
They did well with handling high-risk threats.
They create a case, tell me to refer to articles, and if not resolved, they take a remote session to solve the issue.
Technical support for Panda Adaptive Defense 360 is provided by the reseller, and they also do preventive maintenance yearly.
Cortex XDR is stable, offering high quality and reliable performance.
For the last 11 months, we haven't faced any outage issues, so it is a stable product.
All the situations and issues were controlled in a good way by Cortex XDR by Palo Alto Networks.
It is very stable with no hanging problems.
The stability is approximately a seven to eight out of ten.
The inclusion of this feature would allow the application of DLP policies alongside antivirus policies via a single agent and console, making it more competitive as other OEMs often offer DLP solutions as part of their antivirus products.
If the per GB data could be provided at a certain level free of cost or at the same cost which the customer is taking for the entire bundle, that would be better.
Cortex XDR could improve its sales support team, including better commission structures and referral programs.
Panda Adaptive Defense 360 is not compatible with certain network devices like access points, switches, or routers, which would be an area for improvement.
Other firewalls allow adding categories and in-app controls which WatchGuard currently lacks.
The software has performance issues due to its requirements on the processor.
Cortex XDR is perceived as expensive by some customers, yet offers dynamic pricing.
Compared to competitors such as CrowdStrike and Sophos, the pricing of Cortex XDR by Palo Alto Networks is similar to CrowdStrike but more expensive than Sophos.
It is worth the money and provides good return on investment.
The pricing is slightly high, but the product quality justifies it.
Regarding pricing, I am not sure because I did not compare it with other antivirus; maybe it is pricey.
It incorporates AI for normal behavior detection, distinguishing unusual operations.
The product provides automation responses in case of a threat attack, severity assessments, centralized manageability, and comprehensive compliance features, resulting in reduced costs.
If a user doesn't click any link within 30 days and on the 31st day clicks a new link, Cortex XDR immediately alerts us that this user has clicked on an uncommon link or their behavior is uncommon.
The cloud of WatchGuard lets me see all my devices, updating me to minute levels with detailed information, such as patch status and vulnerabilities.
The detection capabilities for malicious activities are effective.
The EDR has a high accuracy rate with only a few false positives.
| Product | Market Share (%) |
|---|---|
| Cortex XDR by Palo Alto Networks | 3.7% |
| WatchGuard EPDR | 2.1% |
| Other | 94.2% |
| Company Size | Count |
|---|---|
| Small Business | 41 |
| Midsize Enterprise | 18 |
| Large Enterprise | 36 |
| Company Size | Count |
|---|---|
| Small Business | 26 |
| Midsize Enterprise | 8 |
| Large Enterprise | 1 |
Cortex XDR by Palo Alto Networks delivers comprehensive endpoint security, integrating well with other systems to offer robust threat detection and real-time protection through AI-driven analytics.
Cortex XDR by Palo Alto Networks offers advanced endpoint protection and threat detection through AI and behavior-based analytics. Its user-friendly design simplifies integration with firewalls, delivering multi-layered protection with low resource consumption. Valued for policy management, USB control, and incident correlation, Cortex XDR enhances threat management and real-time threat hunting capabilities. However, users note challenges with third-party integration, reporting, and dashboard automation. Agent performance across operating systems and memory consumption are areas for improvement, alongside reducing false positives and simplifying endpoint management and setup.
What features does Cortex XDR offer?
What benefits should be considered in reviews?
Cortex XDR is crucial in industries requiring robust endpoint protection, such as finance, healthcare, and technology. It supports malware detection, behavioral analysis, and ransomware mitigation across endpoints, including remote work environments, providing comprehensive threat visibility and security policy management. The solution's integration with firewalls and specialized industry requirements enhances security posture in diverse operational settings.
EDR for continuous monitoring that prevents the execution of unknown processes. Behavioral analysis and detection of IoAs (indicators of attack) scripts, macros, etc.
Automatic detection and response for targeted attacks and in-memory exploits. Endpoint protection capabilities such as URL filtering, device control and managed firewall.
Zero-Trust Application and Threat Hunting features delivered as managed services. Lightweight agent and easy-to-use Cloud-based console with detailed reporting.
We monitor all Endpoint Protection Platform (EPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
