Microsoft Defender for Endpoint vs OpenText EnCase eDiscovery comparison

The compared Microsoft and OpenText solutions aren't in the same category. Microsoft is ranked #1 in EPP , with an average rating of 8.3, and holds a 10.8% mindshare in the category. OpenText is ranked #5 in eD , with an average rating of 9.0, and holds a 3.3% mindshare. Additionally, 94% of Microsoft users are willing to recommend the solution, compared to 75% of OpenText users who would recommend it.

Microsoft Defender for Endp...

Read 197 Microsoft Defender for Endpoint reviews

30,707 Views
24,393 Comparison Views

94% willing to recommend

OpenText EnCase eDiscovery

Read 8 OpenText EnCase eDiscovery reviews

328 Views
253 Comparison Views

75% willing to recommend

Microsoft Defender for Endp...

OpenText EnCase eDiscovery

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Microsoft Defender for Endpoint and OpenText EnCase eDiscovery based on real PeerSpot user reviews.

Find out what your peers are saying about Microsoft, CrowdStrike, SentinelOne and others in Endpoint Protection Platform (EPP).

To learn more, read our detailed Endpoint Protection Platform (EPP) Report (Updated: May 2025).

Buyer's Guide

Endpoint Protection Platform (EPP)

May 2025

Download the complete report

Helped 851,823 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Microsoft Defender for Endp...

Average Rating

8.2

Reviews Sentiment

7.1

Number of Reviews

197

Ranking in other categories

Endpoint Protection Platform (EPP) (1st), Advanced Threat Protection (ATP) (2nd), Anti-Malware Tools (1st), Endpoint Detection and Response (EDR) (3rd), Microsoft Security Suite (5th)

OpenText EnCase eDiscovery

Average Rating

7.8

Reviews Sentiment

7.7

Number of Reviews

Ranking in other categories

eDiscovery (5th)

Mindshare comparison

Microsoft Defender for Endpoint and OpenText EnCase eDiscovery aren’t in the same category and serve different purposes. Microsoft Defender for Endpoint is designed for Endpoint Protection Platform (EPP) and holds a mindshare of 10.8%, down 14.4% compared to last year.
OpenText EnCase eDiscovery, on the other hand, focuses on eDiscovery, holds 3.3% mindshare, down 5.6% since last year.

Endpoint Protection Platform (EPP)

eDiscovery

Featured Reviews

AnuragSrivastava

Information Security Engineering Lead at a energy/utilities company with 10,001+ employees

Provides detailed visibility into threats but the ability to add exceptions needs improvement

One major item for improvement is the ability to add exceptions. We can add some exceptions, but not at the level we need to. The second major area for improvement involves enhanced capabilities for different operating systems or platforms. That is, even though we have coverage for different operating systems or platforms such as Linux, we don't get all of the controls and enhanced capabilities that are available with Windows devices. Reporting could also be improved because, at present, we get limited results at times. For example, in an environment with more than 100,000 devices, you may just get 10,000 results when you run a report.

Read full review

Alejandro Stromer

Enterprise Business Solutions Manager at DCL Consultores EIM SL

A stable and scalable hybrid solution with easy setup

The solution is scalable. It has three levels. You have the presentation area that can be escalated to the balance sheet. You have the back-end area that can be escalated using higher viability to configure more application servers. Also, the area of storage can be increased. We usually cater to enterprise solutions but have small- and medium-sized customers. It starts with 25 users and goes up to 100s and 1000s.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"It's effective against most types of infection, and the firewall is perfect for protection."

"It integrates very well with all Windows workstations or other Microsoft Endpoint products. It also works quite well. So far, I have not had any issue that hasn't been sorted out. It doesn't use too many resources, so you don't have to install different things."

"For threat-hunting, I'll put some threats in a test scenario. I've downloaded known viruses that are out in the public for testing. They're not really a virus but they've got a signature. Defender for Endpoint will automatically find those, quarantine them for me, and alert me to what it did. It gives me "automated eyes.""

"It's pretty easy to scale."

"The solution integrates very well with Windows applications and Microsoft endpoint products."

"The detection features are valuable, as is the fact that it is easier to port these logs into Sentinel. That is also useful for us. It is more comprehensive."

"The most valuable feature of Microsoft Defender for Endpoint is that it is embedded into the Windows system. Additionally, the performance is good and simple to maintain."

"It's a very complete application. I have all the controls in one site. I can track emails, attacks, and threats, and I can research information. I really like this configuration because I have all the information in place."

More Microsoft Defender for Endpoint pros

"I like the processing feature on the product because it does everything at once, i.e, indexing, recovery, keyword searches, etc."

"It indexes much faster, and is more reflexive because of the Enscripts."

"Data Recovery: Its ability to repair damaged partitions and uncover hidden partitions from within the tool, and allow further analysis."

"The most important feature we've found is the Enscripts. That is one powerful feature that I, personally, love to use."

"The solution is very stable."

"The technical support is excellent."

"It speeds up the process, so I can meet my deadlines."

Cons

"The second major area for improvement involves enhanced capabilities for different operating systems or platforms. That is, even though we have coverage for different operating systems or platforms such as Linux, we don't get all of the controls and enhanced capabilities that are available with Windows devices."

"I had some cases a while back and told an agent my issue. When I called the next day, I had to explain everything again to a different person, so I found it annoying to repeat myself all over."

"Defender is free for one year. Once that year is over, we will switch to Kaspersky."

"The scalability could be improved - I would rate it between a seven and an eight."

"Features like device inventory continue to lack essential workstation drill-downs showing the entire device information with the least effort."

"The log searches for Microsoft Defender for Endpoint are pretty difficult to navigate. It needs a better UI or more intuitive search and filter mechanisms to make it easy to get through and filter through all the data logs."

"Microsoft Defender for Endpoint can improve by making the reporting faster. It takes some time to reflect back to the administration portal of what has been updated. For example, out of 100 Computers, approximately 90 computers received updates, but when you check the administration portal over one or two days, you will only see 75, even though 90 were updated."

"The major area for improvement is the integration with a managed service provider."

More Microsoft Defender for Endpoint cons

"I would like to see a capability to ingest and absorb more data. That would be really good. It currently is lacking this function."

"We have come across problems with the end-case. We could not find an email discovery type of module and there was not flexibility with the email."

"In the past, incident response time for tech support was slow."

"Ease of use and learning curve need improvement."

"There were minor UI bugs."

"The reporting is a bit unreliable. It needs to be better."

"Sometimes the application can take more time to complete the image processing or fail at the end of the process."

Pricing and Cost Advice

"The solution is an open source version and was free with a paid version of Windows 10."

"The nice thing about Defender and Sentinel is that the cost is based on the data logs that you ingest from the Defender endpoints and data connectors. I don't have to buy a 25- or 50- or 1,000-user or enterprise license. I can buy one license at a time."

"For me, the pricing is very good, but for management it's very expensive. Other solutions are less expensive. But when I present all the information and all the reports they say, "Well, it's expensive, but the cost-benefit is very good.""

"Defender doesn't cost that much. When you use Microsoft technology, you can start with the free version and see how much the technology helps your organization solve security problems before you use the subscription. They also do this pay-as-you-go model, so you only pay when you use it."

"This is an expensive product and licensing for all Microsoft products is a big issue."

"Licensing fees are paid annually through a partner."

"Licensing models of Microsoft are renowned for being complex. We just purchased the whole E5 stack. With E5 licenses for users, we get access to a bunch of features that are not just related to security. I would rate them a three out of five in terms of pricing."

"It's included with the Windows Operating System, I don't pay for any licensing fees."

More Microsoft Defender for Endpoint pricing and cost advice

"The product is affordable and user-friendly."

"We have a license. And, we found the cost high. We contacted them and talked to them about the ratio of the US dollar versus the Indian rupee and then we came to a solution."

"EnCase is an affordable solution."

See which vendors are best for you

Use our free recommendation engine to learn which Endpoint Protection Platform (EPP) solutions are best for your needs.

See recommendations

851,823 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Educational Organization

24%

Computer Software Company

12%

Government

Financial Services Firm

15%

Computer Software Company

14%

Energy/Utilities Company

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

How is Cortex XDR compared with Microsoft Defender?

Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface, applies behavioral-based endpoint protection and response, and includes risk-ba...

See all answers

Which offers better endpoint security - Symantec or Microsoft Defender?

We use Symantec because we do not use MS Enterprise products, but in my opinion, Microsoft Defender is a superior solution. Microsoft Defender for Endpoint is a cloud-delivered endpoint security s...

See all answers

How does Microsoft Defender for Endpoint compare with Crowdstrike Falcon?

The CrowdStrike solution delivers a lot of information about incidents. It has a very light sensor that will never push your machine hardware to "test", you don't have the usual "scan now" feature ...

See all answers

What is your experience regarding pricing and costs for OpenText EnCase eDiscovery?

I rate the product’s pricing a five out of ten, where one is cheap and ten is expensive.

See all answers

What needs improvement with OpenText EnCase eDiscovery?

The solution could improve productivity.

See all answers

What is your primary use case for OpenText EnCase eDiscovery?

We have experience in engineering and capital projects. It is an add-on to extend project and asset management documentation.

See all answers

Comparisons

CrowdStrike Falcon vs Microsoft Defender for Endpoint

Compared 8% of the time

Symantec Endpoint Security vs Microsoft Defender for Endpoint

Compared 5% of the time

Microsoft Intune vs Microsoft Defender for Endpoint

Compared 4% of the time

F-Secure Total vs Microsoft Defender for Endpoint

Compared 4% of the time

HP Wolf Security vs Microsoft Defender for Endpoint

Compared 4% of the time

More Microsoft Defender for Endpoint Competitors

Nuix eDiscovery vs OpenText EnCase eDiscovery

Compared 28% of the time

Trellix Endpoint Security vs OpenText EnCase eDiscovery

Compared 18% of the time

CrowdStrike Falcon vs OpenText EnCase eDiscovery

Compared 15% of the time

BigFix vs OpenText EnCase eDiscovery

Compared 15% of the time

Exterro vs OpenText EnCase eDiscovery

Compared 10% of the time

More OpenText EnCase eDiscovery Competitors

Product Reports

Buyer's Guide

Microsoft Defender for Endpoint

May 2025

Download Microsoft Defender for Endpoint product report

Buyer's Guide

eDiscovery

May 2025

Download OpenText EnCase eDiscovery product report

Also Known As

Microsoft Defender ATP, Microsoft Defender Advanced Threat Protection, MS Defender for Endpoint, Microsoft Defender Antivirus

EnCase eDiscovery

Interactive Demo

Microsoft

Demo not available

OpenText

Overview

Microsoft Defender for Endpoint is a comprehensive security solution that provides advanced threat protection for organizations. It offers real-time protection against various types of cyber threats, including malware, viruses, ransomware, and phishing attacks.

With its powerful machine-learning capabilities, it can detect and block sophisticated attacks before they can cause any harm. The solution also includes endpoint detection and response (EDR) capabilities, allowing organizations to quickly investigate and respond to security incidents. It provides detailed insights into the attack timeline, enabling security teams to understand the scope and impact of an incident.

Microsoft Defender for Endpoint also offers proactive threat hunting, allowing organizations to proactively search for and identify potential threats within their network. It integrates seamlessly with other Microsoft security solutions, such as Microsoft Defender XDR, to provide a unified and holistic security approach. With its centralized management console, organizations can easily deploy, configure, and monitor the security solution across their entire network.

Microsoft Defender for Endpoint is a robust and scalable security solution that helps organizations protect their endpoints and data from evolving cyber threats.

Microsoft

eDiscovery collection tools address the rise in dispersed and remote workforces, the proliferation of mobile devices and new sources of data. Comprehensively collecting data across all data sources, including endpoints, such as desktops and laptops, is critical to defensibility. Collection analytics and culling is key to efficient digital investigations, narrowing the document collection to drive down the cost of legal review.

With OpenText™ EnCase™ eDiscovery, organizations can streamline the collection, culling and preservation of data across diverse sources in a single efficient process.

OpenText

Sample Customers

Petrofrac, Metro CSG, Christus Health

Ontario Ministry of Government, Aerospace Company, Chesterfield Police Department

Buyer's Guide

Endpoint Protection Platform (EPP)

May 2025

Download Free Report

Find out what your peers are saying about Microsoft, CrowdStrike, SentinelOne and others in Endpoint Protection Platform (EPP). Updated: May 2025.

DOWNLOAD NOW

851,823 professionals have used our research since 2012.

We monitor all Endpoint Protection Platform (EPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.