Cortex XDR by Palo Alto Networks Reviews

We use it for malicious connections from malicious websites. There might also be some payloads that might be inside the traffic. We also use it to identify malicious processes or bugs that are running on the network and any activities that tend to lead to data infiltration.

It is easy to use.

Technology evolves every day, so it would be nice if it gets more secure. It can also have more integration with other platforms.

I have been using this solution for about a year.

We have maybe a thousand users of this solution because it is deployed on-prem.

I don't think there were issues with the installation.

It has a yearly renewal.

I would recommend this solution. I would rate Cortex XDR a seven out of 10.

We use Cortex XDR by Palo Alto Networks for its ability to detect based on behavior rather than simple virus scan to prevent malicious activities. We also use it to go in and white list things that are okay. This way, they won't get blocked.

The behavior-based detection feature is valuable. 

It'll help if customization was easier. It would be better than how it's now if it came out of the box using their stock set up to get it up-and-running. Then you go in, and you add more restrictive things to make it better.

I have been using Cortex XDR by Palo Alto Networks for a little over a year.

Technical support has been fine.

The initial setup isn't straightforward or complex. It's somewhere in the middle. Like 90% of the features are there out of the box. When you start doing more complex things, it becomes more complicated. For example, if we wanted to limit someone's ability to plug in and access a USB stick, we have to create a profile to do that, and that's an advanced functionality.

We did most of the deployment in-house.

On a scale from one to ten, I would give Cortex XDR by Palo Alto Networks a nine.

We mainly use it for endpoint protection, exploit prevention, and malware prevention. 

It can automatically correlate events and logs, which is very helpful for an IT administrator. It can correlate different kinds of malware activities over a network, agent, or host system. You do not need to do it manually. It is a good feature. 

It is also a user-friendly solution. We have deployed it on the cloud because our space does not provide any flexibility for on-premises deployment, but Palo Alto has added some flexibility to install it on-premises. It must be like the same Cortex XDR agent for all the VPN services, web filtering services, and everything else.

It is not a suitable solution if you are looking for a single product with multiple features such as DLP, encryption, rollback, etc.
this is good as an endpoint protection to prevent malware, exploits, zero days, ransomware, botnet etc. For features like Host DLP or encryption or patch management, or any such features which are available in basic anti-virus, you cannot expect it in Palo Alto Network's Cortex XDR solution. rest, all features work as expected, without any lagg or slowness observed in the system.

I have been using this solution for a year or something like that. We have been using it from the day they launched or released version 4.0. Currently, they are on version 7.

It is stable. I have never faced any kind of issues or never heard from any of my colleagues that they have faced any kind of issue.

There is no problem with scalability. Currently, we have around 150 users. In our company, it is compulsory to install this agent on all systems. If we want to scale it, we just need to install an agent. There is no upgrading the server or the hardware because it is a SaaS service provided by Palo Alto Networks.

We directly raise issues with Palo Alto Networks, and they support us. I've never directly created a support query because our IT team looks into support queries, but I think it's pretty easy. You'll never face any kind of issues or challenges in raising support queries.

It was straightforward. In earlier versions, such as version 4.0, it was a bit difficult to install the server and then upgrade the agents and servers. These processes were difficult. There are no complications now.

It took us more than a week to deploy because we were implementing it on the systems of various users who were working from home.

We are a partner of Palo Alto Networks, so we have deployed it directly.

We evaluated multiple products. We have evaluated Trend Micro, McAfee, Broadcom Symantec, Sophos, and many other products. Each product is good in its own field. We chose Cortex because we already had a Palo Alto Networks firewall. It got integrated easily, and the co-relation part and the co-relation engine worked very well.

If you are looking for security, mainly for advanced threat prevention from ransomware and malware attacks, I would recommend Cortex. Even if you want to integrate your firewall, I would recommend Cortex, but if you are looking for a single product with multiple options or features, such as DLP, encryption, rollback, and other features, I would not recommend Cortex.

I would rate Cortex XDR a nine out of ten.

We had firewalls set up and it integrated but didn't meet with our regulations.

We were using this solution for endpoint protection.

It's a perfect solution. 

It integrates well into the environment.

I would like to see them include NDR (Network Detection Response). Then it would work well with SIEM Response. Also, if they could make an on-premises version we would definitely go with Cortes. At this time, they are not offering an on-premises solution.

We had it in our environment for two days.

It's a stable solution.

Cortex XDR by Palo Alto Networks is scalable.

The technical support was good.

We evaluated Fideles and are currently using it, as it meets the regulations and is on-premises.

We had to move away from working with Cortex XDR by Palo Alto Networks due to the regulations. They state that the logs have to be kept in Saudi Arabia. Also, the log is in the cloud, which is against the regulations. 

We chose Fidelis. They meet the regulations and they are on-premises.

We had no issues with Cortex. We were satisfied but it didn't meet with the regional regulations.

I would rate Cortex XDR by Palo Alto Networks an eight out of ten.

The tool's use cases are relevant to security. 

The tool needs to be improved in terms of integration and interface. 

I have been working with the solution for five years. 

The solution is stable. 

I would rate the product's scalability a nine out of ten. 

The product's technical support is good. 

Positive

The tool's setup is easy. The solution's deployment took five days to complete. 

The solution is expensive. It's pricing is on a yearly-basis. 

I would rate the tool a seven out of ten. 

I'm testing the product right now. I use the solution for endpoint security.

Everything is fine. 

It'll not slow down your system when compared to others.

The initial setup is easy.

I'd like the solution to provide URL filtering and web-based prevention. We'd like to block web pages at a high level.

We would also like to have advanced tech protection and email scanning.

I've been using the solution for a year.

The product is very stable and the performance is good. It doesn't slow down the systems it runs on. There are no bugs or glitches. It doesn't crash or freeze. 

The solution can scale well.

More than 100 people are using the solution right now. 

We've never needed the assistance of technical support just yet.

I've also used McAfee MVISION Endpoint. 

I'm testing them both and finding the advantages and disadvantages between them.

The solution is very easy to set up.

You do have to pay for a license in order to use a solution. It's expensive.

We're a reseller.

We are using the latest, most up-to-date version, of the product.

I would recommend using it with another protection layer. Cortex should provide an additional layer of security apart from this. You might have to integrate with other vendors also.

If you are looking to deploy a security solution as a whole, this is a good option.

I'd rate the solution seven out of ten. If we had more advanced security features, I'd rate it higher.

I use it for visibility, mitigation, and analysis of advanced threat attacks.

Its ability to react to cyber data attacks is awesome. That is pretty much the use of it. What blows your mind is the ability to access your assets remotely and see what is actually going on with them. You can not only see them in a console. You can also react very rapidly to your assets that are compromised.

It should support more mobile operating systems. That is one of the cons of their infrastructure right now.

I have been using this solution for more than four years.

It has been extremely stable.

It is easily scalable. For example, if you have version 2, Palo Alto upgrades it automatically. The agents for your assets are also scalable for new operating systems. So, it is very scalable.

Their technical support is very agile and very good. I would rate them a nine out of 10.

It is way too easy to deploy it and set it up.

I would highly recommend it unless you have iOS assets on your network.

I would rate Cortex XDR an eight out of 10.

I use the solution for endpoint protection.

One of the main benefits of the solution is its intelligence to correlate the events into an incident.

The solution could improve by providing better integration with their own products and others.

I have been using this solution for approximately one year.

The solution is stable.

It is one of the best in the market for scalability.

We have approximately 500 people using this solution in my organization and we plan to increase usage.

The initial installation is easy.

We did the implantation of the solution with integrators.

The price of the solution is high for the license and in general.

We evaluated CrowedStrike and Darktrace.

I would recommend this solution to others.

I rate Cortex XDR by Palo Alto Networks a nine out of ten.