Try our new research platform with insights from 80,000+ expert users

Kandji vs Microsoft Defender for Endpoint comparison

Kandji and Microsoft are both solutions in the Endpoint Detection and Response (EDR) category. Kandji is ranked #61, while Microsoft is ranked #3 with an average rating of 8.4. Kandji holds a 0.5% mindshare in EDR, compared to Microsoft’s 7.3% mindshare. Additionally, 100% of Kandji users are willing to recommend the solution, compared to 95% of Microsoft users who would recommend it.
Kandji
Read 1 Kandji review
  • 1,738 Views
  • 713 Comparison Views
100% willing to recommend
Microsoft Defender for Endp...
Read 210 Microsoft Defender for Endpoint reviews
  • 33,166 Views
  • 16,251 Comparison Views
95% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between Kandji and Microsoft Defender for Endpoint based on real PeerSpot user reviews.

Find out what your peers are saying about CrowdStrike, SentinelOne, Microsoft and others in Endpoint Detection and Response (EDR).

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Endpoint Detection and Response (EDR) Report (Updated: January 2026).
Buyer's Guide
Endpoint Detection and Response (EDR)
January 2026
Download the complete report
Helped 881,733 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Kandji
Ranking in Endpoint Detection and Response (EDR)
61st
Average Rating
7.0
Reviews Sentiment
7.7
Number of Reviews
1
Ranking in other categories
Vulnerability Management (85th), Mobile Device Management (MDM) (10th), Enterprise Mobility Management (EMM) (21st)
Microsoft Defender for Endp...
Ranking in Endpoint Detection and Response (EDR)
3rd
Average Rating
8.2
Reviews Sentiment
7.0
Number of Reviews
210
Ranking in other categories
Endpoint Protection Platform (EPP) (2nd), Advanced Threat Protection (ATP) (3rd), Anti-Malware Tools (1st), Microsoft Security Suite (3rd)
 

Mindshare comparison

As of February 2026, in the Endpoint Detection and Response (EDR) category, the mindshare of Kandji is 0.5%, up from 0.3% compared to the previous year. The mindshare of Microsoft Defender for Endpoint is 7.3%, down from 11.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Endpoint Detection and Response (EDR) Market Share Distribution
ProductMarket Share (%)
Microsoft Defender for Endpoint7.3%
Kandji0.5%
Other92.2%
Endpoint Detection and Response (EDR)
 

Featured Reviews

Amit-Sarkar - PeerSpot reviewer
Amit-Sarkar
Apple Mobility Service Manager at ZONES PVT LTD
An easy-to-manage and deploy solution, but it should provide open customization
You don't need a certification or great knowledge to manage and deploy the solution because it's not complex. It's a very easy plug-and-play solution where you can just enroll the devices and choose the features you want. Kandji doesn't require much customization because it has built-in features that we have to create manually otherwise.
Read full review
Robert Arbuckle - PeerSpot reviewer
Robert Arbuckle
Security Analyst III at a healthcare company with 10,001+ employees
Automatically isolates threats and integrates with logging to reduce response time
Overall, I would evaluate the Microsoft support level that I receive at probably about a seven, but that depends on the day. It has been spotty. We have had issues where the urgency level of the Microsoft support is not as high as ours, especially during a data breach or potential data breach situation. We have had issues with some of the offshore support being lackluster. One specific thing that comes to mind is we were on a support call with our CISO on the call, and the Microsoft agent, who did not actually work for Microsoft, is one of the vendors that Microsoft uses for support, said, "Just to set expectations, my lunch break is in an hour and I am going to go away then." For us, it was already ten o'clock at night and we had been working on this for a couple of hours, trying to get a security engineer on with us. For him to tell us that he was going to go away and have lunch, it was, "Okay, but go find somebody else if you need to." It was just the lackluster approach, and it seemed like he did not really care. We seem to get a lot of this when we get non-Microsoft support. I can identify areas for improvement with Microsoft Defender for Endpoint, as it is kind of a convoluted mess to try to take care of false positives. Especially when they have been identified as false positives but they keep going off over and over again. It is great for my pocketbook because it generates a lot of on-call action, but I would really prefer more sleep at two o'clock in the morning than dealing with false positives. I would say that the unified portal for managing Microsoft Defender for Endpoint is suitable for both teams as they are all in there. It would be great if they would stop moving things around and renaming things, which makes sense. The new XDR portal is pretty nice. Being able to have it central again inside of the regular Security Center without having to open up two windows is helpful. Overall, I think it is pretty good. There is always going to be something that could be improved, such as alerting and the ability to modify alerts would be a little bit helpful to have. Being able to add more data into the alerts and turn off alerts that are not as useful would be beneficial. It is hard to say what the quantitative impact the security exposure management feature has had on our company's security, because a lot of it is kind of subjective. I think we are sitting at around a fifty percent score still, and a lot of it is just kind of unusual circumstances that we cannot really implement without breaking the organization.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"It's a very easy plug-and-play solution where you can just enroll the devices and choose the features you want."
"It can reach our applications and PC activities in the cloud."
"The attack surface reduction rules are the most valuable. We're able to have unattended remediation actions when the solution works side by side with a local antivirus like Microsoft Defender or Kaspersky. The attack surface reduction rules help us to proactively block and stop threats."
"Microsoft Defender for Endpoint has helped reduce our mean time to remediation significantly."
"Because it has been integrated with the OS, we get the entire software inventories, and we even get access to the registries. Those are the primary features."
"The solution's latest features for threat analysis are updated to provide us with future protection against the latest threats worldwide."
"Attack surface reduction and limiting attack surface vectors are valuable features. It's helpful to isolate specific devices and get super granular with the features they offer."
"The main features of this solution are that it handles everything by itself and is well integrated."
"We like that it has a free version available."
More Microsoft Defender for Endpoint pros
 

Cons

"Kandji should give open customization."
"Microsoft Defender for Endpoint can have more options and more AI capabilities in the future, because everything keeps changing."
"I would like to have additional features such as DNS lookup, which would help for detecting malicious sites."
"I would like to see improvements made to how it secures activities on web pages."
"The GUI is very complex and could be more user friendly."
"Initially, I experienced performance issues that hampered our servers. However, after setting appropriate exclusions, everything seemed to work fine."
"If there were more template queries in the library, that would make it much easier. They could have basic things, like, "Where's the IP for this user?" or, "What file was downloaded from this user?" If there were more of those basic queries that would help."
"The price, in general, could always be a little bit cheaper."
"The solution has minimal customization options, especially compared to Mandiant, so we want to see more scope for customization. A single portal for customization would also be a welcome addition."
More Microsoft Defender for Endpoint cons
 

Pricing and Cost Advice

"Users have to pay a yearly licensing fee for Kandji, which is expensive."
"I recently switched from education to private business, and all I can say is that private business licensing from Microsoft is not cheap until you hit certain quantities or scale. That does not mean that it is not comparable to other industries. It is similar pricing, but it is still crazy to me how much you pay for a client. I feel it is high, but it is in line with other vendors."
"It is affordable and comes in the Office 365 bundle."
"The license cost is around $35 per machine, which is not expensive compared to other products."
"The solution is free."
"I do not have to purchase antivirus solutions anymore because Microsoft Defender for Endpoint is integrated into Windows and comes free."
"I pay for it through the Windows Professional or Standard license. It is a one-time cost for me, and I use the same license."
"There are different licenses, such as E3 and E5."
"There is not a license required for this particular solution."
More Microsoft Defender for Endpoint pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Endpoint Detection and Response (EDR) solutions are best for your needs.
See recommendations
881,733 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
13%
Computer Software Company
11%
Manufacturing Company
9%
Healthcare Company
8%
Computer Software Company
10%
Manufacturing Company
9%
Financial Services Firm
8%
Government
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
By reviewers
Company SizeCount
Small Business80
Midsize Enterprise40
Large Enterprise92
 

Questions from the Community

Ask a question
Earn 20 points
How is Cortex XDR compared with Microsoft Defender?
Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface, applies behavioral-based endpoint protection and response, and includes risk-ba...
See all answers
Which offers better endpoint security - Symantec or Microsoft Defender?
We use Symantec because we do not use MS Enterprise products, but in my opinion, Microsoft Defender is a superior solution. Microsoft Defender for Endpoint is a cloud-delivered endpoint security s...
See all answers
How does Microsoft Defender for Endpoint compare with Crowdstrike Falcon?
The CrowdStrike solution delivers a lot of information about incidents. It has a very light sensor that will never push your machine hardware to "test", you don't have the usual "scan now" feature ...
See all answers
 

Comparisons

Microsoft Intune vs Kandji Logo
Microsoft Intune vs Kandji
Compared 25% of the time
CrowdStrike Falcon vs Kandji Logo
CrowdStrike Falcon vs Kandji
Compared 16% of the time
Jamf Pro vs Kandji Logo
Jamf Pro vs Kandji
Compared 15% of the time
Open EDR vs Kandji Logo
Open EDR vs Kandji
Compared 7% of the time
Mosyle Fuse MSP vs Kandji Logo
Mosyle Fuse MSP vs Kandji
Compared 5% of the time
More Kandji Competitors
HP Wolf Security vs Microsoft Defender for Endpoint Logo
HP Wolf Security vs Microsoft Defender for Endpoint
Compared 5% of the time
Symantec Endpoint Security vs Microsoft Defender for Endpoint Logo
Symantec Endpoint Security vs Microsoft Defender for Endpoint
Compared 5% of the time
CrowdStrike Falcon vs Microsoft Defender for Endpoint Logo
CrowdStrike Falcon vs Microsoft Defender for Endpoint
Compared 4% of the time
Cortex XDR by Palo Alto Networks vs Microsoft Defender for Endpoint Logo
Cortex XDR by Palo Alto Networks vs Microsoft Defender for Endpoint
Compared 3% of the time
F-Secure Total vs Microsoft Defender for Endpoint Logo
F-Secure Total vs Microsoft Defender for Endpoint
Compared 3% of the time
More Microsoft Defender for Endpoint Competitors
 

Product Reports

Buyer's Guide
Vulnerability Management
January 2026
Kandji reportDownload Kandji product report
Buyer's Guide
Microsoft Defender for Endpoint
January 2026
Microsoft Defender for Endpoint reportDownload Microsoft Defender for Endpoint product report
 

Also Known As

No data available
Microsoft Defender ATP, Microsoft Defender Advanced Threat Protection, MS Defender for Endpoint, Microsoft Defender Antivirus
 

Interactive Demo

Demo not available
Kandji
Microsoft
 

Overview

Kandji’s automations are a force multiplier. They free your technology team from repetitive tasks, letting you focus energy on more impactful projects. Kandji has purpose-built experiences from setup and app installs to software updates and computer restarts. It’s what your teams expect from a company with high standards. From increased efficiency to lower cost of ownership, your bottom line is our top priority.

Kandji

Microsoft Defender for Endpoint is a comprehensive security solution that provides advanced threat protection for organizations. It offers real-time protection against various types of cyber threats, including malware, viruses, ransomware, and phishing attacks.

With its powerful machine-learning capabilities, it can detect and block sophisticated attacks before they can cause any harm. The solution also includes endpoint detection and response (EDR) capabilities, allowing organizations to quickly investigate and respond to security incidents. It provides detailed insights into the attack timeline, enabling security teams to understand the scope and impact of an incident.

Microsoft Defender for Endpoint also offers proactive threat hunting, allowing organizations to proactively search for and identify potential threats within their network. It integrates seamlessly with other Microsoft security solutions, such as Microsoft Defender XDR, to provide a unified and holistic security approach. With its centralized management console, organizations can easily deploy, configure, and monitor the security solution across their entire network.

Microsoft Defender for Endpoint is a robust and scalable security solution that helps organizations protect their endpoints and data from evolving cyber threats.

Microsoft
 

Sample Customers

Information Not Available
Petrofrac, Metro CSG, Christus Health
Buyer's Guide
Endpoint Detection and Response (EDR)
January 2026
Download Free Report
Find out what your peers are saying about CrowdStrike, SentinelOne, Microsoft and others in Endpoint Detection and Response (EDR). Updated: January 2026.
DOWNLOAD NOW
881,733 professionals have used our research since 2012.
See our list of best Endpoint Detection and Response (EDR) vendors.

We monitor all Endpoint Detection and Response (EDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.