Try our new research platform with insights from 80,000+ expert users

Kandji vs Microsoft Defender for Endpoint comparison

Kandji and Microsoft are both solutions in the Endpoint Detection and Response (EDR) category. Kandji is ranked #54 with an average rating of 7.0, while Microsoft is ranked #3 with an average rating of 8.3. Kandji holds a 0.4% mindshare in EDR, compared to Microsoft’s 10.5% mindshare. Additionally, 100% of Kandji users are willing to recommend the solution, compared to 94% of Microsoft users who would recommend it.
Kandji
Read 1 Kandji review
  • 492 Views
  • 136 Comparison Views
100% willing to recommend
Microsoft Defender for Endp...
Read 197 Microsoft Defender for Endpoint reviews
  • 19,755 Views
  • 3,983 Comparison Views
94% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between Kandji and Microsoft Defender for Endpoint based on real PeerSpot user reviews.

Find out what your peers are saying about CrowdStrike, SentinelOne, Microsoft and others in Endpoint Detection and Response (EDR).

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Endpoint Detection and Response (EDR) Report (Updated: January 2025).
Buyer's Guide
Endpoint Detection and Response (EDR)
January 2025
Download the complete report
Helped 860,592 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Kandji
Ranking in Endpoint Detection and Response (EDR)
54th
Average Rating
7.0
Reviews Sentiment
7.7
Number of Reviews
1
Ranking in other categories
Vulnerability Management (48th), Mobile Device Management (MDM) (7th), Enterprise Mobility Management (EMM) (17th)
Microsoft Defender for Endp...
Ranking in Endpoint Detection and Response (EDR)
3rd
Average Rating
8.2
Reviews Sentiment
7.1
Number of Reviews
197
Ranking in other categories
Endpoint Protection Platform (EPP) (1st), Advanced Threat Protection (ATP) (4th), Anti-Malware Tools (1st), Microsoft Security Suite (4th)
 

Mindshare comparison

As of July 2025, in the Endpoint Detection and Response (EDR) category, the mindshare of Kandji is 0.4%, up from 0.2% compared to the previous year. The mindshare of Microsoft Defender for Endpoint is 10.5%, down from 13.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Endpoint Detection and Response (EDR)
 

Featured Reviews

Amit-Sarkar - PeerSpot reviewer
An easy-to-manage and deploy solution, but it should provide open customization
You don't need a certification or great knowledge to manage and deploy the solution because it's not complex. It's a very easy plug-and-play solution where you can just enroll the devices and choose the features you want. Kandji doesn't require much customization because it has built-in features that we have to create manually otherwise.
Read full review
Sudhen Swami - PeerSpot reviewer
Easy to update with good protection and a useful cloud portal
We've mainly used it for endpoints. However, we've also used it for DLP as well. We're also in the process of implementing it for cloud and identity as well. However, it's very good for endpoints, and that's our main focus. The malware protection is good. The visibility it provides is very useful. We can combine visibility with wider security features and alerts around malware, misconfiguration, or any other kinds of threats. The cloud portal is quite good. From there, we are able to see alerts and have colleagues review issues and monitor to see if any patterns arise. It's serving us quite well overall. It allows us to look at other items, like application and browser control. It helps us prioritize threats. We have a process in place now where we can review issues and remediate them effectively. We have been able to integrate a variety of Microsoft security products together. We use Azure AD, for example, and we've begun to implement DLP, among other items. We're looking at labeling and tagging and will expand into that soon. Defender has more stringent system requirements than, for example, Check Point. So when we implemented the Check Point Endpoint agent, that solution didn't mind what version of Windows you were using. When we moved to Defender, Defender had certain system prerequisites that had to be met. So we had to make sure that we're on a minimum version of Windows when we're utilizing Office, and Office has to be a particular version as well. It has more stringent system requirements that have to be met before you can implement it. It works natively together with other Microsoft solutions. Once you get more and more of those different components across the environment, then you start to get better visibility. So, rather than having lots of different solutions, you have fewer solutions and a single vendor solution. That way, you start getting into a position where you get better visibility and integration as well. The standardization is good. It's important. It's helping me with monitoring and learning. Updates and upgrades are quite smooth and seamless. Defender helps us automate routine tasks. Quite a lot of Microsoft is straightforward for us now. Previously, we didn't have enough resources and were unable to look at the alerts. Having this in place makes things a lot more straightforward for us. We have both the technology and the people in place now, alongside the process. We do see the benefits in that, and that's why we're continuing our adoption across the estate in terms of client and server as well. It's helping us avoid looking at multiple dashboards and centralized monitoring. We're not fully there yet. We're getting there. While we haven't witnessed time saving yet, once it's fully deployed, it will. By then, we'll have standardized processes across a single solution. We have saved money, however, as we continue to reduce non-Mircosft systems. Since we won't be using various competing technologies, we can save on licensing costs. We've likely so far saved 15%. While it's hard to estimate exactly how much, the solution has helped us decrease time to detection and time to respond.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"It's a very easy plug-and-play solution where you can just enroll the devices and choose the features you want."
"The endpoint detection of threats is valuable. The initial detection of things like ransomware and viruses and being able to shut down machines immediately and stop a threat is valuable. We can stop a threat at a source versus allow it to propagate it across the network."
"It's absolutely free to use."
"The most valuable feature of Microsoft Defender for Endpoint is its ability to bring together all the data, providing more information than just antivirus hits."
"The solution integrates very well with Windows applications and Microsoft endpoint products."
"It's a Microsoft product; it's easier to deploy this product than other options."
"There are some competitive products on the market, but the best is Microsoft Defender because it's very easy to integrate. That's one reason a lot of clients want Microsoft Defender. It's also very easy to implement compared to other solutions."
"The feature I find most valuable in Microsoft Defender for Endpoint is that it blocks the process and keeps the endpoint from getting infected with malware."
"We are a Microsoft shop, and Defender is a Microsoft solution that provides some security at a reasonable cost."
More Microsoft Defender for Endpoint pros
 

Cons

"Kandji should give open customization."
"Monitoring can always be better, onboarding can be a little bit faster, log collection could be easier, they could streamline the dashboard. They could maybe split it up into different workspaces and have the ability to segment groups a little bit more."
"The only issue I would say is our mobile endpoints do not have Defender installed for part of them. An additional feature that could be included in the next release is free Copilot."
"Microsoft Defender for Endpoint can have more options and more AI capabilities in the future, because everything keeps changing."
"On the Mac OS platform, there is no parity between Windows and Mac OS. The solution is very feature-rich and very well-integrated into Windows, and I guess baked into Windows 10 and Windows 11. Whereas, on the Mac OS platform, there is still some work there to give it a more feature-reach platform."
"Sometimes, there are different skews. In a basic skew, they should have basic log analysis without the need to integrate with any third-party or SIEM solutions, like Sentinel. This would make it so much easier for users who don't have log collection or log analysis."
"Microsoft Defender for Endpoint is not as robust, and you cannot customize it much, so that's a challenge."
"This solution is not secure, which is why I have moved to Linux."
"There's a lot of manual effort involved to configure what we need."
More Microsoft Defender for Endpoint cons
 

Pricing and Cost Advice

"Users have to pay a yearly licensing fee for Kandji, which is expensive."
"I don't know the standalone costs. It is my understanding that the M365 E5 is $56 a month or something close to that pricing. That would be for the full suite. Just Defender might be $8 a month. I can't say for sure."
"It is built into Windows 10. If our clients are using Microsoft Defender, the cost goes away for them."
"We sell this product as part of Office 365 and it is not expensive."
"This solution is part of Windows and comes included with it."
"When compared with other vendors, the pricing is very high."
"It is an expensive solution. It would be nice if it could be included with the Microsoft Office package."
"We pay a yearly license for Microsoft Defender. We also have a support contract with them."
"We have the E5 security license, and the solution comes with that."
More Microsoft Defender for Endpoint pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Endpoint Detection and Response (EDR) solutions are best for your needs.
See recommendations
860,592 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
13%
Financial Services Firm
12%
University
7%
Healthcare Company
7%
Educational Organization
14%
Computer Software Company
13%
Government
8%
Financial Services Firm
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

What do you like most about Kandji?
It's a very easy plug-and-play solution where you can just enroll the devices and choose the features you want.
See all answers
What is your experience regarding pricing and costs for Kandji?
Users have to pay a yearly licensing fee for Kandji, which is expensive.
See all answers
What needs improvement with Kandji?
Kandji should have certification experience, which they don't have. Kandji should give open customization. Most customers find required features from other vendors, which Kandji doesn't have. It wo...
See all answers
How is Cortex XDR compared with Microsoft Defender?
Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface, applies behavioral-based endpoint protection and response, and includes risk-ba...
See all answers
Which offers better endpoint security - Symantec or Microsoft Defender?
We use Symantec because we do not use MS Enterprise products, but in my opinion, Microsoft Defender is a superior solution. Microsoft Defender for Endpoint is a cloud-delivered endpoint security s...
See all answers
How does Microsoft Defender for Endpoint compare with Crowdstrike Falcon?
The CrowdStrike solution delivers a lot of information about incidents. It has a very light sensor that will never push your machine hardware to "test", you don't have the usual "scan now" feature ...
See all answers
 

Comparisons

Microsoft Intune vs Kandji Logo
Microsoft Intune vs Kandji
Compared 42% of the time
CrowdStrike Falcon vs Kandji Logo
CrowdStrike Falcon vs Kandji
Compared 19% of the time
Jamf Pro vs Kandji Logo
Jamf Pro vs Kandji
Compared 10% of the time
Open EDR vs Kandji Logo
Open EDR vs Kandji
Compared 9% of the time
SentinelOne Singularity Complete vs Kandji Logo
SentinelOne Singularity Complete vs Kandji
Compared 7% of the time
More Kandji Competitors
CrowdStrike Falcon vs Microsoft Defender for Endpoint Logo
CrowdStrike Falcon vs Microsoft Defender for Endpoint
Compared 6% of the time
HP Wolf Security vs Microsoft Defender for Endpoint Logo
HP Wolf Security vs Microsoft Defender for Endpoint
Compared 5% of the time
F-Secure Total vs Microsoft Defender for Endpoint Logo
F-Secure Total vs Microsoft Defender for Endpoint
Compared 5% of the time
Trellix Endpoint Security Platform vs Microsoft Defender for Endpoint Logo
Trellix Endpoint Security Platform vs Microsoft Defender for Endpoint
Compared 4% of the time
Symantec Endpoint Security vs Microsoft Defender for Endpoint Logo
Symantec Endpoint Security vs Microsoft Defender for Endpoint
Compared 4% of the time
More Microsoft Defender for Endpoint Competitors
 

Product Reports

Buyer's Guide
Vulnerability Management
June 2025
Kandji reportDownload Kandji product report
Buyer's Guide
Microsoft Defender for Endpoint
June 2025
Microsoft Defender for Endpoint reportDownload Microsoft Defender for Endpoint product report
 

Also Known As

No data available
Microsoft Defender ATP, Microsoft Defender Advanced Threat Protection, MS Defender for Endpoint, Microsoft Defender Antivirus
 

Interactive Demo

Demo not available
Kandji
Microsoft
 

Overview

Kandji’s automations are a force multiplier. They free your technology team from repetitive tasks, letting you focus energy on more impactful projects. Kandji has purpose-built experiences from setup and app installs to software updates and computer restarts. It’s what your teams expect from a company with high standards. From increased efficiency to lower cost of ownership, your bottom line is our top priority.

Kandji

Microsoft Defender for Endpoint is a comprehensive security solution that provides advanced threat protection for organizations. It offers real-time protection against various types of cyber threats, including malware, viruses, ransomware, and phishing attacks.

With its powerful machine-learning capabilities, it can detect and block sophisticated attacks before they can cause any harm. The solution also includes endpoint detection and response (EDR) capabilities, allowing organizations to quickly investigate and respond to security incidents. It provides detailed insights into the attack timeline, enabling security teams to understand the scope and impact of an incident.

Microsoft Defender for Endpoint also offers proactive threat hunting, allowing organizations to proactively search for and identify potential threats within their network. It integrates seamlessly with other Microsoft security solutions, such as Microsoft Defender XDR, to provide a unified and holistic security approach. With its centralized management console, organizations can easily deploy, configure, and monitor the security solution across their entire network.

Microsoft Defender for Endpoint is a robust and scalable security solution that helps organizations protect their endpoints and data from evolving cyber threats.

Microsoft
 

Sample Customers

Information Not Available
Petrofrac, Metro CSG, Christus Health
Buyer's Guide
Endpoint Detection and Response (EDR)
January 2025
Download Free Report
Find out what your peers are saying about CrowdStrike, SentinelOne, Microsoft and others in Endpoint Detection and Response (EDR). Updated: January 2025.
DOWNLOAD NOW
860,592 professionals have used our research since 2012.
See our list of best Endpoint Detection and Response (EDR) vendors.

We monitor all Endpoint Detection and Response (EDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.