Microsoft Defender XDR vs Stellar Cyber Open XDR comparison

Microsoft and Stellar Cyber are both solutions in the Extended Detection and Response (XDR) category. Microsoft is ranked #4 with an average rating of 8.4, while Stellar Cyber is ranked #35. Microsoft holds a 6.9% mindshare in XDR, compared to Stellar Cyber’s 1.7% mindshare. Additionally, 97% of Microsoft users are willing to recommend the solution.

Microsoft Defender XDR

Read 101 Microsoft Defender XDR reviews

7,162 Views
5,585 Comparison Views

97% willing to recommend

Stellar Cyber Open XDR

Read 2 Stellar Cyber Open XDR reviews

1,335 Views
1,077 Comparison Views

0% willing to recommend

Microsoft Defender XDR

Stellar Cyber Open XDR

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Microsoft Defender XDR and Stellar Cyber Open XDR based on real PeerSpot user reviews.

Find out in this report how the two Extended Detection and Response (XDR) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

To learn more, read our detailed Microsoft Defender XDR vs. Stellar Cyber Open XDR Report (Updated: April 2025).

Buyer's Guide

Microsoft Defender XDR vs. Stellar Cyber Open XDR

April 2025

Download the complete report

Helped 851,604 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Microsoft Defender XDR

Ranking in Endpoint Detection and Response (EDR)

5th

Ranking in Extended Detection and Response (XDR)

4th

Average Rating

8.4

Reviews Sentiment

7.1

Number of Reviews

101

Ranking in other categories

Microsoft Security Suite (3rd)

Stellar Cyber Open XDR

Ranking in Endpoint Detection and Response (EDR)

59th

Ranking in Extended Detection and Response (XDR)

35th

Average Rating

0.0

Reviews Sentiment

7.0

Number of Reviews

Ranking in other categories

Security Information and Event Management (SIEM) (51st), Security Orchestration Automation and Response (SOAR) (26th), Network Detection and Response (NDR) (21st)

Mindshare comparison

As of May 2025, in the Extended Detection and Response (XDR) category, the mindshare of Microsoft Defender XDR is 6.9%, down from 7.4% compared to the previous year. The mindshare of Stellar Cyber Open XDR is 1.7%, up from 1.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Extended Detection and Response (XDR)

Featured Reviews

Gabor Nyerd

Enterprise mobility and security evangelist at a financial services firm with 5,001-10,000 employees

Includes four services and four products, which can help organizations a lot

We found that sometimes integrations work, but testing them can take some time. Sometimes, configurations take much longer than expected. We have a configuration in place that needs to be synchronized with another server. However, the servers are four hours apart, so this can cause delays. In general, I believe that the time it takes to configure and test a service should be shorter. Sometimes, it can take a couple of hours to test a single configuration setting. Other times, it is only ten or fifteen minutes, which is normal. However, sometimes, even immediate actions can be triggered by configuration changes, and some settings can take up to eight hours to complete. I believe that this time can be improved. Microsoft is making a lot of improvements to its services in a short period of time. This is a good thing, as it means that the services are constantly being updated and improved. However, it can be challenging for customers to keep up with the changes. For example, a customer may read about an update, understand it, and share it with their colleagues and boss. However, it may take days or weeks to test the update and get the necessary approvals. This can be especially challenging for large customers with many users or machines. In some cases, Microsoft may change a service before the customer has had a chance to implement the previous update. This can be frustrating for customers, as it means that they have to constantly learn new things and adjust their workflows. On the one hand, it is important for Microsoft to keep updating and improving its services. This helps to ensure that the services are meeting the customers' needs and that they are staying ahead of the competition. Microsoft should also be mindful of the challenges that these changes can create for customers. One way to address this challenge is to provide customers with more time to implement changes. Microsoft could also provide more information about upcoming changes so that customers can plan ahead. Ultimately, Microsoft needs to strike a balance between keeping its services up-to-date and providing customers with a smooth transition to new features.

Read full review

Hrishiraj Bhattacharjee

Founder & CEO at Team Karimganj

Correlates incidents, allows for quicker identification and helps prioritize investigations

The only challenge is, and that’s where we come into play, it’s a pretty high-tech platform. So, it’s difficult for small and medium-sized organizations to manage it on their own. It’s a very complex system. It requires a lot of expertise. All my guys who work on it have gone through certification from Stellar itself. There are three different certifications that you need to complete. Only then are you certified by Stellar to work on it. It’s a very complex platform. Not everyone can use it. A simple IT engineer or system admin won’t be able to handle it because it’s quite complex. You need to have an understanding of the industry, the subject, and the tool. So, just purchasing this tool or license and then using it on your own would be very difficult to configure and manage on a day-to-day basis. The pricing model is not suitable for small and medium companies, particularly small companies. The minimum pricing model they have is suitable for companies with more than one thousand users. So, if someone has 50 to 100 users, like typical small companies, it’s difficult for them because the cost involved is high. Stellar would charge you for those thousand users, but you do not need all those users. So what are they going to do? I guess Stellar does not want to target small companies directly and maybe relies on resellers and MSPs like us to sell it. So, that is something I would recommend changing. Otherwise, it’s a great tool, but because of the pricing model, small companies are unable to leverage the advantage of this beautiful tool. So, the pricing model should be suitable for small and medium businesses. The product currently has vulnerability monitoring and everything. But if they could also do something about vulnerability management and maybe patch management, that would be nice.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The best feature is probably the alert generation. When I do a security reset, the other session triggers instantly from the Defender console, and I can work on it. The policies are three times, but they are also ready to install it."

"The integration between all the Defender products is the most valuable feature."

"The most valuable feature of the solution stems from the fact that Microsoft Defender XDR is easy to integrate with other Microsoft platforms or products."

"Within advanced threat hunting, the tables that have already been defined by Microsoft are helpful. In the advanced threat hunting tab, there were different tables, and one of the tables was related to device info, device alert, and device events. That was very helpful. Another feature that I liked but didn't have access to was deep analysis."

"From the perspective of Microsoft 365 XDR, the main benefit is a single, centralized dashboard offering the holistic visibility organizations crave."

"We can automate routine tasks and write scripts to carry out difficult tasks, which makes things easier for us."

"I like Defender XDR's automation capabilities. XDR isn't automated by default, but you can automate it to respond. If an attack is performed anywhere within the organization, you can isolate that instance from the network. This is what I can figure out for it. When integrated with Sentinel, you can set up playbooks to automate all the alerts gathered on Sentinel from different Microsoft solutions. Sentinel has a wider range of capabilities than XDR."

"I like that it's stable. It's been stable for a long time, and Microsoft Defender has done a good job there."

More Microsoft Defender XDR pros

"Stellar Cyber Open XDR offers these functionalities at a more affordable price, making it easier for me to position it with price-sensitive customers."

"It can integrate with almost any cybersecurity tool available in the market."

Cons

"The patching capability should be there. Patching is something that you cannot do even though you see the vulnerabilities present in your environment. For patching, you have to depend on another solution."

"There should be better information for experts on features in the solution. What I see when reading about features in Microsoft 365 Defender is that it is always general information. If Microsoft could go deeper into details for the experts about how to use the tools, usage of it would be more familiar and it would be easier to use."

"The onboarding and offboarding need improvement. I work with other vendors as well, and they have an option to add a device or remove a device from the portal, whereas with Microsoft 365 Defender, we need to do that manually. However, once you do that, everything can be controlled through the portal, but getting the device onboarded and offboarded is currently manual. If we have an option to simply remove a device from the portal or get a device added from the portal, it would be more convenient. The rest of the features are similar. This is the only area where I found it different from others. I would also like to be able to simply filter with a few of the queries that are already there."

"It would be highly beneficial if CoPilot could identify anomalies within the network and notify the IT team."

"At times, there may be delays in the execution of certain actions and their effects."

"What could be improved in Microsoft 365 Defender is its licensing, e.g. it should be more consolidated and would be good if it has some optimizations. Improving the alerts and notifications, in terms of adding more details, would also be good for this solution."

"The documentation on their website is somewhat outdated and doesn't show properly. I wanted to try a query in Microsoft Defender 365. When I opened the related documentation from the security blog on the Microsoft website, the figures were not showing. It was difficult to understand the article without having the figures. The figures were there in the article, but they were not getting loaded, which made the article obsolete."

"Automated playbooks and automated dashboards would be preferable to the way the data is currently being presented."

More Microsoft Defender XDR cons

"Support is an issue because they have a limited number of resources."

"I would rate the stability at about five to six. The platform requires some fine-tuning, especially when integrating data sources and creating connectors."

Pricing and Cost Advice

"Understanding the subscription model has been a bit challenging, as every feature or requirement comes with an additional cost."

"Microsoft purposely makes its license combinations complex and includes combinations like Microsoft 365 E3 and Microsoft 365 E5, Office 365 E3, Office 365 E5, and Office 365 E1, so you get confused. Microsoft tries to sell you a bundle of a lot of things together."

"Microsoft Defender XDR is already included in our Office 365 licensing. It is better because we're saving money by using it."

"Purchasing Microsoft Defender XDR as part of a Microsoft 365 bundle can be cost-effective, but acquiring it as a standalone product may be more expensive."

"Its licensing and pricing are handled by someone else. My role is limited to incidents or issues with the portal, but you get what you pay for. It is worth the cost."

"Defender plan 1 is tenant-wise, and Defender plan 2 is per-user, which makes it more expensive. To have certain features, you would need to purchase the E5 license. For all of the capabilities that the tool provides, the price, though it can be high, is fair."

"The price could be better. Normally, the costs depend on the country you're located in for the license. When we were in the initial stage, we went with the E5 license they call premium standard. It cost us around $5.20 per month for four users."

"Microsoft Defender XDR's licensing is complicated."

More Microsoft Defender XDR pricing and cost advice

"It’s a single license platform."

See which vendors are best for you

Use our free recommendation engine to learn which Extended Detection and Response (XDR) solutions are best for your needs.

See recommendations

851,604 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

17%

Financial Services Firm

Manufacturing Company

Government

Computer Software Company

15%

Comms Service Provider

12%

Manufacturing Company

Healthcare Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

What do you like most about Microsoft 365 Defender?

Microsoft Defender XDR provides strong identity protection with comprehensive insights into risky user behavior and potential indicators of compromise.

See all answers

What is your experience regarding pricing and costs for Microsoft 365 Defender?

The pricing for Microsoft Sentinel operates on a pay-as-you-go model based on data ingestion. I recall that Defender XDR pricing is based on the number of endpoints.

See all answers

What needs improvement with Microsoft 365 Defender?

For Microsoft Defender XDR ( /categories/extended-detection-and-response-xdr ), there is currently no ability to reset passwords for on-premises accounts, which is a key challenge. Incident managem...

See all answers

What is your experience regarding pricing and costs for Stellar Cyber Open XDR?

Pricing is a major benefit of Stellar Cyber Open XDR. I rate it between three and four on the cost scale. It offers functionalities at a significantly lower cost than rival products, enabling me to...

See all answers

What needs improvement with Stellar Cyber Open XDR?

I am currently evaluating Stellar Cyber Open XDR in terms of their support. I do not see any major areas for improvement as of now. Their support is good, and the team is small, enabling them to ca...

See all answers

What is your primary use case for Stellar Cyber Open XDR?

I use Stellar Cyber Open XDR ( /products/stellar-cyber-open-xdr-reviews ) as a 24/7 security monitoring tool, especially for customers with large and medium networks. It eliminates the need for a d...

See all answers

Comparisons

CrowdStrike Falcon vs Microsoft Defender XDR

Compared 17% of the time

Wazuh vs Microsoft Defender XDR

Compared 10% of the time

Microsoft Defender for Cloud vs Microsoft Defender XDR

Compared 10% of the time

Trend Vision One vs Microsoft Defender XDR

Compared 5% of the time

Microsoft Purview Compliance Manager vs Microsoft Defender XDR

Compared 4% of the time

More Microsoft Defender XDR Competitors

Wazuh vs Stellar Cyber Open XDR

Compared 18% of the time

CrowdStrike Falcon vs Stellar Cyber Open XDR

Compared 9% of the time

Lumu vs Stellar Cyber Open XDR

Compared 8% of the time

Fortinet FortiSIEM vs Stellar Cyber Open XDR

Compared 7% of the time

Splunk Enterprise Security vs Stellar Cyber Open XDR

Compared 7% of the time

More Stellar Cyber Open XDR Competitors

Product Reports

Buyer's Guide

Microsoft Defender XDR

May 2025

Download Microsoft Defender XDR product report

Buyer's Guide

Extended Detection and Response (XDR)

May 2025

Download Stellar Cyber Open XDR product report

Also Known As

Microsoft 365 Defender, Microsoft Threat Protection, MS 365 Defender

No data available

Overview

Microsoft Defender XDR is a comprehensive security solution designed to protect against threats in the Microsoft 365 environment.

It offers robust security measures, comprehensive threat detection capabilities, and an efficient incident response system. With seamless integration with other Microsoft products and a user-friendly interface, it simplifies security management tasks.

Users have found it effective in detecting and preventing various types of attacks, such as phishing attempts, malware infections, and data breaches.

Watch the Microsoft demo video here: Microsoft Defender XDR demo video.

Microsoft

Stellar Cyber’s AI-driven Security Operations Platform powered by Open XDR delivers comprehensive, unified security without complexity, empowering lean security teams of any skill to secure their environments successfully. With Stellar Cyber, Enterprises, MSSPs and MSPs reduce risk with early and precise identification and remediation of threats while slashing costs, retaining investments in existing tools, and improving analyst productivity, delivering a 20X improvement in MTTD and an 8X improvement in MTTR.

What are the standout features?

Ease of Deployment: Quick and straightforward implementation process.
Comprehensive Security Analytics: Deep insights into security threats through advanced analytics.
Automated Threat Detection: Proactive identification and mitigation of threats.
Intuitive Dashboard: User-friendly interface for efficient security management.
Seamless Tool Integration: Compatibility with diverse security tools.
Real-Time Reporting: Immediate insights into threat activity.
Scalability: Adapts to growing security needs.
Responsive Customer Support: Timely assistance to resolve any issues.

What benefits should users look for?

Improved Threat Visibility: Comprehensive insights into potential cyber threats.
Streamlined Incident Management: Efficient handling and resolution of security incidents.
Reduced False Positives: Enhanced accuracy in threat identification.
Faster Threat Identification: Quick recognition and response to security threats.
Enhanced Data Integration: Unified view of security data from multiple sources.

Stellar Cyber Open XDR is especially beneficial in industries that demand state-of-the-art cybersecurity measures, such as finance, healthcare, and retail. Users in these sectors rely on it for its comprehensive data integration, real-time threat detection, and seamless tool compatibility, enabling them to maintain high-security standards while dealing with sensitive information.

Stellar Cyber

Sample Customers

Accenture, Deloitte, ExxonMobil, General Electric, IBM, Johnson & Johnson and many others.

Sumitomo Chemical USA, PlastiPak Packaging, University of Denver, Large California State Agency, Large Midwestern American City

Buyer's Guide

Microsoft Defender XDR vs. Stellar Cyber Open XDR

April 2025

Free Report: Microsoft Defender XDR vs. Stellar Cyber Open XDR

Find out what your peers are saying about Microsoft Defender XDR vs. Stellar Cyber Open XDR and other solutions. Updated: April 2025.

DOWNLOAD NOW

851,604 professionals have used our research since 2012.

See our Microsoft Defender XDR vs. Stellar Cyber Open XDR report.

See our list of best Extended Detection and Response (XDR) vendors and best Endpoint Detection and Response (EDR) vendors.

We monitor all Extended Detection and Response (XDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.