Try our new research platform with insights from 80,000+ expert users

CrowdStrike Falcon vs VMRay comparison

The compared CrowdStrike and VMRay solutions aren't in the same category. CrowdStrike is ranked #1 in XDR , with an average rating of 8.5, and holds a 9.9% mindshare in the category. VMRay is ranked #24 in Anti-Malware Tools , with an average rating of 5.0, and holds a 1.9% mindshare. Additionally, 97% of CrowdStrike users are willing to recommend the solution.
Sponsored
Cortex XDR by Palo Alto Net...
Read 108 Cortex XDR by Palo Alto Networks reviews
  • 14,649 Views
  • 6,006 Comparison Views
96% willing to recommend
CrowdStrike Falcon
Read 138 CrowdStrike Falcon reviews
  • 51,469 Views
  • 14,926 Comparison Views
97% willing to recommend
VMRay
Read 1 VMRay review
  • 1,902 Views
  • 1,503 Comparison Views
0% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between CrowdStrike Falcon and VMRay based on real PeerSpot user reviews.

Find out what your peers are saying about CrowdStrike, SentinelOne, TrendAI and others in Extended Detection and Response (XDR).

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Extended Detection and Response (XDR) Report (Updated: February 2026).
Buyer's Guide
Extended Detection and Response (XDR)
February 2026
Download the complete report
Helped 884,873 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cortex XDR by Palo Alto Net...
Sponsored
Average Rating
8.4
Reviews Sentiment
6.8
Number of Reviews
108
Ranking in other categories
Endpoint Protection Platform (EPP) (5th), Endpoint Detection and Response (EDR) (7th), Extended Detection and Response (XDR) (6th), Ransomware Protection (2nd), AI-Powered Cybersecurity Platforms (2nd)
CrowdStrike Falcon
Average Rating
8.6
Reviews Sentiment
7.3
Number of Reviews
138
Ranking in other categories
Security Information and Event Management (SIEM) (6th), Endpoint Protection Platform (EPP) (1st), Threat Intelligence Platforms (TIP) (1st), Endpoint Detection and Response (EDR) (1st), Extended Detection and Response (XDR) (1st), Attack Surface Management (ASM) (1st), Identity Threat Detection and Response (ITDR) (1st), AI-Powered Cybersecurity Platforms (1st)
VMRay
Average Rating
5.0
Reviews Sentiment
7.0
Number of Reviews
1
Ranking in other categories
Advanced Threat Protection (ATP) (29th), Anti-Malware Tools (24th)
 

Mindshare comparison

Extended Detection and Response (XDR) Mindshare Distribution
ProductMindshare (%)
CrowdStrike Falcon9.9%
Wazuh6.8%
SentinelOne Singularity Complete5.8%
Other77.5%
Extended Detection and Response (XDR)
Anti-Malware Tools Mindshare Distribution
ProductMindshare (%)
VMRay1.9%
Microsoft Defender for Endpoint7.8%
F-Secure Total3.6%
Other86.7%
Anti-Malware Tools
 

Featured Reviews

ABHISHEK_SINGH - PeerSpot reviewer
ABHISHEK_SINGH
Senior Process Expert at A.P. Moller - Maersk
Gained full visibility and streamlined threat detection through behavior-based insights and AI integration
Initially, we got to have a lot of false positives when we onboarded, but nowadays it's quite smooth. We have fine-tuned our security policies and allowed different levels of policies to get rid of those false positives. Currently, we are getting a fairly good amount of incidents that are not false positives or benign, but actionable items. The process is streamlined. In the initial days, the operations used to get involved in a lot of benign and other activities, but now the process is streamlined. We are leveraging the auto-detection and remediation plans. The operations teams are now more involved in other business roles as well, not just looking into the logs and fetching out what's happening there. They have fixed a lot of things. Initially, they didn't have IAC code drift detection, cloud posture management, or security posture management, but they have those now. They purchased different vendors and did a merger with that. They have now Prisma Cloud that gets integrated and now they are working with Cortex Cloud. Everything that was negative has now been addressed, and the product altogether looks to be in a very better and mature shape now. Currently, it's more or less detecting the workloads with AI-based best practices. Since most organizations are consuming AI agents and other things, we are looking forward to seeing what other feature enhancements Palo Alto can support in that.
Read full review
Waleed Omar - PeerSpot reviewer
Waleed Omar
Information Security Specialist at Arab Open University
Provides effective real-time threat detection with potential for cost optimization
Some features such as device control, firewall management, and file analysis are standalone products that we need to purchase separately. If these features came out of the box within the product, it would be much more beneficial for us. Other providers such as SentinelOne include these features in their base product. We attended a CrowdStrike Falcon event where they discussed some shallow AI features, but we cannot see these in our panel yet. We work with different solutions such as Darktrace and SocRadar, where AI features are automatically displayed in our dashboards after release. However, for CrowdStrike Falcon, we cannot see these features.
Read full review
GC
Gaurav-Chawla
Pre-Sales at Frux
Has a valuable IP tracing feature, but is an expensive solution
We use this solution for authorization and more on the false positive verification IP tracing is the most valuable feature. The technical support needs improvement.  I have been using VMRay for two and a half years. The technical support team is not good.  Negative The initial setup is…
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"We can use Cortex XDR to get the entire graph of the incidents from source to destination, and we can take remedial action."
"Being a cloud solution it is very flexible in serving internal and external connections and a broad range of devices."
"The multi-layered approach to the product gives you confidence that it will stop exploits, ransomware, worms, or viruses from compromising endpoints, essentially providing peace of mind."
"Palo Alto is the core of the security infrastructure in the environment."
"The positive impacts I see from Cortex XDR by Palo Alto Networks include a complete 360-degree view of our security posture altogether, being a uniform platform where we are ingesting logs from multiple resources."
"The initial setup isn't too bad."
"When the pandemic started, Palo Alto came up with many solutions, which helped with the quick shift from on-premises to the cloud."
"The live terminal is probably the best thing ever. It gives you the access to get straight onto any machine."
More Cortex XDR by Palo Alto Networks pros
"The detection is very reliable. Also, OverWatch is a great feature."
"The platform is very scalable."
"The feature that I find to be the most valuable, is being able to look at the system analysis and being able to baseline what is installed on the system."
"CrowdStrike Falcon helps with endpoint protection by having very low memory utilization and processor usage, so it doesn't impact the computer system performance, and the computer system works very fast compared to all other endpoint protection solutions."
"The solution's reporting console is phenomenal, and I can get a lot of data out of it."
"The CrowdStrike Falcon agent is very lightweight. Users never complain about their PCs getting stuck and things like that."
"CrowdStrike Falcon's scalability is good. We have thousands of students using this solution."
"One of the most valuable features of CrowdStrike Falcon is when there are upgrades there are no additional fees."
More CrowdStrike Falcon pros
"IP tracing is the most valuable feature."
 

Cons

"However, if you do not have Palo Alto in your environment, you are paying these additional services just for Cortex XDR by Palo Alto Networks, so it is not a cost-effective solution."
"It tends to do 99.9% of things. The only thing I'd like is single sign-on authentication into their cloud platform so that my users can be properly authenticated against it."
"In reporting they should have a customizable dashboard due to the fact that C-level people don't like reporting to the IT department. They prefer to have a real-time dashboard. That kind of dashboard needs to have various customizations."
"There are some default policies which sometimes affect our applications and cause them to run around. In the hotel industry, we use a different type of data versus Oracle and SQL. By default, there are some policies which stop us from running properly. Because of this, the support level is also not that strong. We have to wait to get a results."
"It would be better if they could educate the customers more. Some sort of seminars and roadshows will help educate the customers and show what the product can do. The price could be better. It would also help if they had a team for deployment and support."
"The solution should add unwanted malicious hash values to a block list so that whenever the action is triggered, it will automatically prevent the malicious content."
"The server sometimes stops continuously to check things so it would be helpful to receive access updates or technical reasons."
"The dashboard is the area that needs to improve so that we can have the ability to drill down without having to go elsewhere to verify results."
More Cortex XDR by Palo Alto Networks cons
"There are some aspects of the UI that could use some improvement, e.g., working in groups. I build a group, then I have to manually assign prevention policies, update policies, etc., but there is no function to copy that group. So, if I wanted to make a subgroup for troubleshooting or divide workstations into groups of laptops and desktops, then I have to manually build a brand new group. I can't just copy a build from one to another. Additionally, in order to do any work within a group, I have to first do the work on the respective prevention policy page or individual policy page, then remove the group if the group is assigned to a different prevention policy, remove the prevention policy, and then add the new one in. So, it can get a little hectic. It would be easier if I could add and remove things from the group page rather than having to go into the policy pages to do it."
"The pricing is a bit too high."
"The solution needs to have integration with on-premises security devices and security facilities. That means all the security products, including the perimeter firewall, the DMZ."
"Some policies in the tool need to be fine-tuned. Customized IOCs need to be improved since they have certain shortcomings."
"They should provide us with good visibility for everything."
"The biggest issue occurred when every computer worldwide experienced a blue screen."
"The ability to receive text alerts natively in the console would be kind of cool."
"CrowdStrike Falcon could improve by having an easier way to search and use the interface for extracting queries from the data. The interface could improve."
More CrowdStrike Falcon cons
"The technical support needs improvement."
 

Pricing and Cost Advice

"I am using the Community edition."
"I don't recall what the cost was, but it wasn't really that expensive."
"Compared to CrowdStrike, Cortex XDR is an expensive solution."
"The pricing is okay, although direct support can be expensive."
"It has reasonable pricing for the use cases it provides to the company."
"Our customers have expressed that the price is high."
"It's the most expensive solution, but features-wise, it's quite strong. It's very good for protection, so the results are very good in the case of protection. I would rate it a two out of ten in terms of pricing."
"Cortex XDR’s pricing is very reasonable."
More Cortex XDR by Palo Alto Networks pricing and cost advice
"There is an annual license required to use this solution."
"Crowdstrike Falcon is relatively cheap."
"CrowdStrike Falcon is one of the more expensive endpoint solutions on the market."
"As I'm part of the technical team, not the budgeting team, I don't have information on CrowdStrike Falcon pricing."
"Purchasing the product through the AWS Marketplace is just a click away. Since we were using the on-premise version of the product, we continued on the cloud by purchasing it through the AWS Marketplace."
"In my opinion, the pricing of CrowdStrike Falcon seems aggressive."
"We have a yearly subscription and find the price to be good. I'd give it a rating of four out of five for price, we got a good discount."
"The product is expensive."
More CrowdStrike Falcon pricing and cost advice
"The solution is overly priced."
report
See which vendors are best for you
Use our free recommendation engine to learn which Extended Detection and Response (XDR) solutions are best for your needs.
See recommendations
884,873 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
9%
Manufacturing Company
9%
Financial Services Firm
9%
Comms Service Provider
7%
Computer Software Company
11%
Financial Services Firm
10%
Manufacturing Company
10%
Government
6%
Financial Services Firm
15%
Manufacturing Company
9%
Computer Software Company
8%
Government
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business44
Midsize Enterprise20
Large Enterprise47
By reviewers
Company SizeCount
Small Business50
Midsize Enterprise33
Large Enterprise62
No data available
 

Questions from the Community

Cortex XDR by Palo Alto vs. Sentinel One
Cortex XDR by Palo Alto vs. SentinelOne SentinelOne offers very detailed specifics with regard to risks or attacks. ...
See all answers
Comparing CrowdStrike Falcon to Cortex XDR (Palo Alto)
Cortex XDR by Palo Alto vs. CrowdStrike Falcon Both Cortex XDR and Crowd Strike Falcon offer cloud-based solutions th...
See all answers
How is Cortex XDR compared with Microsoft Defender?
Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface,...
See all answers
How does Crowdstrike Falcon compare with Darktrace?
Both of these products perform similarly and have many outstanding attributes. CrowdStrike Falcon offers an amazing u...
See all answers
How does Microsoft Defender for Endpoint compare with Crowdstrike Falcon?
The CrowdStrike solution delivers a lot of information about incidents. It has a very light sensor that will never pu...
See all answers
Is Crowdstrike Falcon better than Trend Micro Deep Security?
I like that Crowdstrike allows me to easily correlate data between my firewalls. What’s most useful for my needs is t...
See all answers
What is your experience regarding pricing and costs for VMRay?
The solution is overly priced.
See all answers
What needs improvement with VMRay?
The technical support needs improvement.
See all answers
What is your primary use case for VMRay?
We use this solution for authorization and more on the false positive verification.
See all answers
 

Comparisons

Microsoft Defender for Endpoint vs Cortex XDR by Palo Alto Networks Logo
Microsoft Defender for Endpoint vs Cortex XDR by Palo Alto Networks
Compared 9% of the time
SentinelOne Singularity Complete vs Cortex XDR by Palo Alto Networks Logo
SentinelOne Singularity Complete vs Cortex XDR by Palo Alto Networks
Compared 6% of the time
Cortex XSIAM vs Cortex XDR by Palo Alto Networks Logo
Cortex XSIAM vs Cortex XDR by Palo Alto Networks
Compared 4% of the time
Symantec Endpoint Security vs Cortex XDR by Palo Alto Networks Logo
Symantec Endpoint Security vs Cortex XDR by Palo Alto Networks
Compared 3% of the time
Trellix Endpoint Security Platform vs Cortex XDR by Palo Alto Networks Logo
Trellix Endpoint Security Platform vs Cortex XDR by Palo Alto Networks
Compared 3% of the time
More Cortex XDR by Palo Alto Networks Competitors
Microsoft Defender for Endpoint vs CrowdStrike Falcon Logo
Microsoft Defender for Endpoint vs CrowdStrike Falcon
Compared 3% of the time
Fortinet FortiEDR vs CrowdStrike Falcon Logo
Fortinet FortiEDR vs CrowdStrike Falcon
Compared 3% of the time
Microsoft Defender XDR vs CrowdStrike Falcon Logo
Microsoft Defender XDR vs CrowdStrike Falcon
Compared 3% of the time
SentinelOne Singularity Complete vs CrowdStrike Falcon Logo
SentinelOne Singularity Complete vs CrowdStrike Falcon
Compared 2% of the time
Trellix Endpoint Security Platform vs CrowdStrike Falcon Logo
Trellix Endpoint Security Platform vs CrowdStrike Falcon
Compared 1% of the time
More CrowdStrike Falcon Competitors
Joe Sandbox Ultimate vs VMRay Logo
Joe Sandbox Ultimate vs VMRay
Compared 19% of the time
ANY.RUN vs VMRay Logo
ANY.RUN vs VMRay
Compared 19% of the time
CrowdStrike Falcon Sandbox vs VMRay Logo
CrowdStrike Falcon Sandbox vs VMRay
Compared 12% of the time
Cuckoo Sandbox vs VMRay Logo
Cuckoo Sandbox vs VMRay
Compared 8% of the time
Immunity Debugger vs VMRay Logo
Immunity Debugger vs VMRay
Compared 2% of the time
More VMRay Competitors
 

Product Reports

Buyer's Guide
Cortex XDR by Palo Alto Networks
March 2026
Cortex XDR by Palo Alto Networks reportDownload Cortex XDR by Palo Alto Networks product report
Buyer's Guide
CrowdStrike Falcon
March 2026
CrowdStrike Falcon reportDownload CrowdStrike Falcon product report
Buyer's Guide
Anti-Malware Tools
February 2026
VMRay reportDownload VMRay product report
 

Also Known As

Cyvera, Cortex XDR, Palo Alto Networks Traps
CrowdStrike Falcon XDR, CrowdStrike Falcon Threat Intelligence, CrowdStrike Identity Protection, CrowdStrike Falcon Surface, CrowdStrike Falcon Platform
No data available
 

Overview

Cortex XDR by Palo Alto Networks provides advanced threat detection with AI-driven endpoint protection and seamless integration, ensuring multi-layered security and automatic threat response.

Cortex XDR is designed to safeguard endpoints against malware and suspicious activities. It offers advanced threat detection and response capabilities using behavioral analysis, AI, and machine learning. It seamlessly integrates with security infrastructures, providing endpoint security, firewall integration, and enhanced visibility in both cloud-based and on-premises environments.

What are the key features of Cortex XDR?
  • Advanced Threat Detection: Uses AI and machine learning for proactive threat identification.
  • Multi-layered Security: Combines various security measures for comprehensive protection.
  • Endpoint Protection: Safeguards against malware and exploits.
  • Behavioral Analysis: Monitors suspicious activity for early detection.
  • Automatic Threat Response: Automates responses to neutralize threats.
What benefits should users expect?
  • Ease of Use: Simplifies security management with intuitive design.
  • Resource Efficiency: Minimizes impact on system resources.
  • Integration Capabilities: Works well with existing security setups.
  • Reduced Analyst Workload: Automates processes to decrease manual intervention.

Organizations in diverse sectors deploy Cortex XDR to protect against malware, leveraging its advanced threat detection capabilities. Its integration with existing security infrastructures appeals to those seeking comprehensive protection in both cloud and on-premises environments, providing enhanced visibility and threat intelligence.

Palo Alto Networks

CrowdStrike Falcon provides cutting-edge endpoint detection with automatic alerts, real-time monitoring, and seamless integration capabilities. Cloud-native architecture and AI-driven processes ensure scalable protection and efficient threat remediation.

CrowdStrike Falcon is recognized for its robust EDR and threat intelligence features that enhance security and streamline operations. Its lightweight agent minimizes system impact while offering real-time monitoring and detailed reporting. This platform uses cloud-native architecture for scalable, consistent protection, significantly reducing administrative demands. AI and machine learning empower precise threat hunting and behavioral analysis, which mitigates false positives and boosts cybersecurity efficiency. Users seek improvements in integration with other systems, reporting functions, and compatibility with specific operating systems. While the solution handles malware mitigation and threat response efficiently, suggestions for on-demand scanning, enhanced visibility, and better dashboard features are noted.

What are the key features of CrowdStrike Falcon?
  • Automatic Alert System: Provides instant alerts to enhance threat detection.
  • Robust EDR: Offers advanced endpoint detection capabilities.
  • Threat Intelligence: Delivers detailed insights for proactive security measures.
  • Real-time Monitoring: Enables continuous security assessments.
  • Seamless Integration Options: Streamlines operations with existing infrastructure.
  • Lightweight Agent: Minimizes system impact, maintaining performance efficiency.
  • Cloud-native Architecture: Provides scalable, consistent protection against threats.
  • AI and ML-driven Processes: Offers accurate threat hunting and behavioral analysis.
What benefits or ROI should users expect from CrowdStrike Falcon?
  • Enhanced Security: Comprehensive protection for endpoints using cutting-edge technologies.
  • Reduced Administrative Burden: Simplifies management of security incidents.
  • Efficient Threat Remediation: Minimizes downtime with quick threat response actions.
  • Improved Threat Visibility: Provides detailed reports and insights.
  • Scalable Protection: Ensures adaptable security measures across multiple devices.

In technology sectors, CrowdStrike Falcon commonly supports endpoint protection and threat response initiatives, allowing companies to replace traditional antivirus systems with more advanced solutions. In finance, it secures sensitive data across multiple platforms, ensuring compliance. In healthcare, real-time security analysis protects patient data on critical devices like servers and laptops, utilizing AI to enhance cybersecurity defenses.

CrowdStrike

VMRay is focused on a single mission: to help enterprises protect themselves against the growing global malware threat. The company’s automated malware analysis and detection solutions help enterprises around the world minimize business risk, protect their valuable data and safeguard their brand. VMRay’s founders, Dr. Carsten Willems and Dr. Ralf Hund, were early pioneers in malware sandboxing, developing breakthrough technologies that continue to lead the industry. They founded VMRay to transform their research into practical solutions for making the online world a safer place. Learn more: www.vmray.com

VMRay
 

Sample Customers

CBI Health Group, University Honda, VakifBank
Information Not Available
National Bank of Canada, Carbon Black, Cloudmark, Cyberint, Expel, G Data Advanced Analytics, Jisc
Buyer's Guide
Extended Detection and Response (XDR)
February 2026
Download Free Report
Find out what your peers are saying about CrowdStrike, SentinelOne, TrendAI and others in Extended Detection and Response (XDR). Updated: February 2026.
DOWNLOAD NOW
884,873 professionals have used our research since 2012.

We monitor all Extended Detection and Response (XDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.