Try our new research platform with insights from 80,000+ expert users
Microsoft Defender for Endpoint Logo

Microsoft Defender for Endpoint pros and cons

Vendor: Microsoft
4.1 out of 5
Badge Ranked 1
Leave a review

Pros & Cons summary

Microsoft Defender for Endpoint offers real-time protection against threats such as malware and ransomware with seamless integration into Windows, providing easy deployment and automatic updates. Its threat management system provides visibility and risk prioritization, though CPU usage may increase on Azure VMs. Limited firewall customization, integration issues with tools like Splunk, and organizational shortcomings in logging and alerts highlight improvement areas for enterprise buyers.

Buyer's Guide

Get pricing advice, tips, use cases and valuable features from real users of this product.
Get the report

Prominent pros & cons

PROS

Microsoft Defender for Endpoint provides effective real-time protection against threats like malware and ransomware.
The integration with Windows and ease of use make it simple to deploy without additional installation steps.
Automatic updates and seamless integration with Microsoft products ensure up-to-date protection.
Threat and vulnerability management offers real-time visibility and prioritizes risks based on impact.
Automated investigation and response features reduce the workload of security teams.

CONS

Microsoft Defender for Endpoint increases CPU utilization by approximately ten percent on some virtual machines in Azure.
The firewall customization in Microsoft Defender for Endpoint is limited, and more flexibility is needed.
Microsoft Defender for Endpoint has integration issues with third-party tools and platforms like Splunk.
Microsoft Defender for Endpoint logging is extensive but not well-organized for enterprise use.
Microsoft Defender for Endpoint faces difficulties in providing timely alerts and reducing false positives.
 

Microsoft Defender for Endpoint Pros review quotes

it_user1083 - PeerSpot reviewer
it_user1083
Manager of Operations at a tech company with 51-200 employees
Jul 7, 2012
Defender is an antivirus program available at a lower price than other products, like Symantec, McAfee, etc.
Read full review
MN
ITsece56457
IT Security Analyst at Ingenium Group
Feb 24, 2019
Ensures that I'm working with a product that gets updated regularly without me having to remember to do it. Since it's a Microsoft product, I'm confident that it requires a low use of system resources. The benefit of that being that my computer isn't constantly being drained.
Read full review
II
Ibikunle Imam
COO at Floating-Dot Technology LTD
Jun 27, 2019
It's free. There is no additional cost. It's part of Windows.
Read full review
Buyer's Guide
Microsoft Defender for Endpoint
March 2026
Free Report: Microsoft Defender for Endpoint Reviews and More
Learn what your peers think about Microsoft Defender for Endpoint. Get advice and tips from experienced pros sharing their opinions. Updated: March 2026.
DOWNLOAD NOW
884,873 professionals have used our research since 2012.
Defendwind677 - PeerSpot reviewer
Defendwind677
Associate System Engineer - Security Services at a educational organization with 10,001+ employees
Jun 30, 2019
Within its class I think, it has a high and decent detection rate.
Read full review
it_user964356 - PeerSpot reviewer
it_user964356
IT Help Desk at Elsewedy Electric Algerie
Jul 9, 2019
I like the real-time protection features. Windows Defender will detect if there's a threat like a Trojan or something like that but Kaspersky lets it run normally.
Read full review
InfosecAn677 - PeerSpot reviewer
InfosecAn677
Information Security Analyst at a financial services firm with 501-1,000 employees
Jul 9, 2019
This is a very go, proactive solution to threat protection using advanced analysis.
Read full review
SG
MicroAdmin677
‎Microsoft Enterprise administrator at a comms service provider with 1,001-5,000 employees
Jul 16, 2019
It's really stable. I've used a lot of stuff, a lot of products, like ESET and Kaspersky. None of them are comparable with this one. This one is much better.
Read full review
GP
Gabriel Petcu
Program Manager at a tech services company with 51-200 employees
Sep 8, 2019
Defender is integrated into the operating system. It's integrated with everything. You don't have to spend time analyzing what you have to do to be sure that the integration is okay between the security tool and all the other apps. This, from my point of view, is the main advantage.
Read full review
JN
Jean-Jacques Niava
Deputy Director at BG Service
Sep 22, 2019
The most valuable features are that it's easy to use and the updates are very simple.
Read full review
it_user826284 - PeerSpot reviewer
it_user826284
MIS Director at a real estate/law firm with 5,001-10,000 employees
Oct 2, 2019
The most valuable feature is that we can use the solution right out of the box without too much configuration.
Read full review
Show 10 more reviews (out of 209)
 

Microsoft Defender for Endpoint Cons review quotes

it_user1083 - PeerSpot reviewer
it_user1083
Manager of Operations at a tech company with 51-200 employees
Jul 7, 2012
The most problematic part of this program is the difficult customer service.
Read full review
MN
ITsece56457
IT Security Analyst at Ingenium Group
Feb 24, 2019
It would be nice to have a paid upgrade that would provide additional screening of the day-to-day activities.
Read full review
II
Ibikunle Imam
COO at Floating-Dot Technology LTD
Jun 27, 2019
Microsoft Windows Defender doesn't have a game mode.
Read full review
Buyer's Guide
Microsoft Defender for Endpoint
March 2026
Free Report: Microsoft Defender for Endpoint Reviews and More
Learn what your peers think about Microsoft Defender for Endpoint. Get advice and tips from experienced pros sharing their opinions. Updated: March 2026.
DOWNLOAD NOW
884,873 professionals have used our research since 2012.
Defendwind677 - PeerSpot reviewer
Defendwind677
Associate System Engineer - Security Services at a educational organization with 10,001+ employees
Jun 30, 2019
There's a lot of manual effort involved to configure what we need.
Read full review
it_user964356 - PeerSpot reviewer
it_user964356
IT Help Desk at Elsewedy Electric Algerie
Jul 9, 2019
The system can always be simplified and have a better integration check. More detailed reports would be good. When it does the integrated check, it just shows if the system is okay but I want to know what happened.
Read full review
InfosecAn677 - PeerSpot reviewer
InfosecAn677
Information Security Analyst at a financial services firm with 501-1,000 employees
Jul 9, 2019
Updates are not coming out of preview quickly enough and it is holding back on the development of the product.
Read full review
SG
MicroAdmin677
‎Microsoft Enterprise administrator at a comms service provider with 1,001-5,000 employees
Jul 16, 2019
The end-user also cannot do some advanced actions on it. It's a little bit complicated for our end-user, so it needs to be simplified.
Read full review
GP
Gabriel Petcu
Program Manager at a tech services company with 51-200 employees
Sep 8, 2019
The solution needs to improve its ransomware. It's not so good. It could also use some general performance optimization for the computers the solution operates on, to ensure it does not slow down the devices.
Read full review
JN
Jean-Jacques Niava
Deputy Director at BG Service
Sep 22, 2019
I would like to be able to set up any kind of protection I want in the firewall, any IP address or any number.
Read full review
it_user826284 - PeerSpot reviewer
it_user826284
MIS Director at a real estate/law firm with 5,001-10,000 employees
Oct 2, 2019
There's scanning going on that occasionally topples the memory, causing everything to freeze. This should be fixed.
Read full review
Show 10 more reviews (out of 209)

Product Categories

Product Categories
Endpoint Protection Platform (EPP)
Advanced Threat Protection (ATP)
Anti-Malware Tools
Endpoint Detection and Response (EDR)
Microsoft Security Suite

Popular Comparisons

Popular Comparisons
CrowdStrike Falcon vs Microsoft Defender for Endpoint Logo
CrowdStrike Falcon vs Microsoft Defender for Endpoint
Microsoft Intune vs Microsoft Defender for Endpoint Logo
Microsoft Intune vs Microsoft Defender for Endpoint
Microsoft Entra ID vs Microsoft Defender for Endpoint Logo
Microsoft Entra ID vs Microsoft Defender for Endpoint
Microsoft Defender for Cloud vs Microsoft Defender for Endpoint Logo
Microsoft Defender for Cloud vs Microsoft Defender for Endpoint
Cortex XDR by Palo Alto Networks vs Microsoft Defender for Endpoint Logo
Cortex XDR by Palo Alto Networks vs Microsoft Defender for Endpoint
Microsoft Defender for Office 365 vs Microsoft Defender for Endpoint Logo
Microsoft Defender for Office 365 vs Microsoft Defender for Endpoint
SentinelOne Singularity Complete vs Microsoft Defender for Endpoint Logo
SentinelOne Singularity Complete vs Microsoft Defender for Endpoint
Microsoft Sentinel vs Microsoft Defender for Endpoint Logo
Microsoft Sentinel vs Microsoft Defender for Endpoint
IBM Security QRadar vs Microsoft Defender for Endpoint Logo
IBM Security QRadar vs Microsoft Defender for Endpoint
Fortinet FortiEDR vs Microsoft Defender for Endpoint Logo
Fortinet FortiEDR vs Microsoft Defender for Endpoint
HP Wolf Security vs Microsoft Defender for Endpoint Logo
HP Wolf Security vs Microsoft Defender for Endpoint
Huntress Managed EDR vs Microsoft Defender for Endpoint Logo
Huntress Managed EDR vs Microsoft Defender for Endpoint
Elastic Security vs Microsoft Defender for Endpoint Logo
Elastic Security vs Microsoft Defender for Endpoint
Tanium vs Microsoft Defender for Endpoint Logo
Tanium vs Microsoft Defender for Endpoint
Microsoft Defender XDR vs Microsoft Defender for Endpoint Logo
Microsoft Defender XDR vs Microsoft Defender for Endpoint
See all alternatives

Product Categories

Product Categories
Endpoint Protection Platform (EPP)
Advanced Threat Protection (ATP)
Anti-Malware Tools
Endpoint Detection and Response (EDR)
Microsoft Security Suite

Popular Comparisons

Popular Comparisons
CrowdStrike Falcon vs Microsoft Defender for Endpoint Logo
CrowdStrike Falcon vs Microsoft Defender for Endpoint
Microsoft Intune vs Microsoft Defender for Endpoint Logo
Microsoft Intune vs Microsoft Defender for Endpoint
Microsoft Entra ID vs Microsoft Defender for Endpoint Logo
Microsoft Entra ID vs Microsoft Defender for Endpoint
Microsoft Defender for Cloud vs Microsoft Defender for Endpoint Logo
Microsoft Defender for Cloud vs Microsoft Defender for Endpoint
Cortex XDR by Palo Alto Networks vs Microsoft Defender for Endpoint Logo
Cortex XDR by Palo Alto Networks vs Microsoft Defender for Endpoint
Microsoft Defender for Office 365 vs Microsoft Defender for Endpoint Logo
Microsoft Defender for Office 365 vs Microsoft Defender for Endpoint
SentinelOne Singularity Complete vs Microsoft Defender for Endpoint Logo
SentinelOne Singularity Complete vs Microsoft Defender for Endpoint
Microsoft Sentinel vs Microsoft Defender for Endpoint Logo
Microsoft Sentinel vs Microsoft Defender for Endpoint
IBM Security QRadar vs Microsoft Defender for Endpoint Logo
IBM Security QRadar vs Microsoft Defender for Endpoint
Fortinet FortiEDR vs Microsoft Defender for Endpoint Logo
Fortinet FortiEDR vs Microsoft Defender for Endpoint
HP Wolf Security vs Microsoft Defender for Endpoint Logo
HP Wolf Security vs Microsoft Defender for Endpoint
Huntress Managed EDR vs Microsoft Defender for Endpoint Logo
Huntress Managed EDR vs Microsoft Defender for Endpoint
Elastic Security vs Microsoft Defender for Endpoint Logo
Elastic Security vs Microsoft Defender for Endpoint
Tanium vs Microsoft Defender for Endpoint Logo
Tanium vs Microsoft Defender for Endpoint
Microsoft Defender XDR vs Microsoft Defender for Endpoint Logo
Microsoft Defender XDR vs Microsoft Defender for Endpoint
See all alternatives
Related questions
  • 34
Compare Microsoft Windows Defender and Symantec Endpoint Protection. How Do I Choose?
  • 97
Which product would you choose: Microsoft Defender for Endpoint vs Cortex XDR by Palo Alto Networks?
  • 144
What do you think of the integration of Azure AD Services, Defender for Endpoint, and Intune as comprehensive security solutions?
  • 53
CrowdStrike Falcon vs Microsoft Defender ATP: Comparison of features and performance
  • 120
How does Microsoft Defender for Endpoint compare with Crowdstrike Falcon?
  • 66
Running Carbon Black Defense Along with Windows Defender
  • 96
How is Cortex XDR compared with Microsoft Defender?
  • 49
Which offers better endpoint security - Symantec or Microsoft Defender?
  • 58
How does Microsoft Defender for Endpoint compare with Carbon Black CB Defense?
  • 40
How would you compare between Microsoft Defender for Endpoint and Tanium EDR?