We performed a comparison between Azure Web Application Firewall and Microsoft Defender XDR based on real PeerSpot user reviews.
Find out in this report how the two Microsoft Security Suite solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."We have found the most valuable features to be the web application, minimal skills required for management, control through policies, and automation."
"Azure WAF is extremely stable."
"The initial setup is easy and straightforward...Azure Web Application Firewall is a scalable product."
"The integration it has with GitHub is great."
"The most valuable feature is that it allows us to publish our applications behind the firewall."
"The solution has good dashboards."
"It has been a stable product in my experience."
"It's a good option if you want a solution that's ready to go and easy for your team to learn. It's cloud-based, so you don't need to buy or maintain any hardware infrastructure."
"I like 365 Defender's advanced threat hunting. The dashboard is user-friendly with templates for site policies, etc. The most important use case is evaluating the risk links and applications."
"I like Defender XDR's automation capabilities. XDR isn't automated by default, but you can automate it to respond. If an attack is performed anywhere within the organization, you can isolate that instance from the network. This is what I can figure out for it. When integrated with Sentinel, you can set up playbooks to automate all the alerts gathered on Sentinel from different Microsoft solutions. Sentinel has a wider range of capabilities than XDR."
"The ability to isolate and address viruses is the most valuable feature of Microsoft Defender XDR."
"All of the security components are valuable including, antiphishing, antispam, and stage three antivirus."
"For me, the advanced hunting capabilities have been really great. It allowed querying the dataset with their own language, which is KQL or Kusto Query Language. That has allowed me to get much more insight into the events that have occurred. The whole power of 365 Defender is that you can get the whole story. It allows you to query an email-based activity and then correlate it with an endpoint-based activity."
"Microsoft Defender's most critical component is its CASB solution. It has many built-in policies that can improve your organization's cloud security posture. It's effective regardless of where your users are, which is critical because most users are working from home. It's cloud-based, so nothing is on-premise."
"The most valuable aspect is undoubtedly the exploration capability"
"The comprehensiveness of Microsoft's threat detection is good."
"The management can be improved."
"I would say that Azure's customer service is not that good...I am not very happy with the support offered."
"In Brazil, we have some problems with the phone service that affect our connection with the cloud. However, it isn't common."
"Deployment should be simplified so that a non-techie can handle it."
"From a reporting perspective, they could do more there."
"The support for proxy forwarding could improve."
"Azure WAF should not be deployed in the middle of the traffic."
"The documentation needs to be improved."
"At times, there may be delays in the execution of certain actions and their effects."
"The web filtering solution needs to be improved because currently, it is very simple."
"The onboarding and offboarding need improvement. I work with other vendors as well, and they have an option to add a device or remove a device from the portal, whereas with Microsoft 365 Defender, we need to do that manually. However, once you do that, everything can be controlled through the portal, but getting the device onboarded and offboarded is currently manual. If we have an option to simply remove a device from the portal or get a device added from the portal, it would be more convenient. The rest of the features are similar. This is the only area where I found it different from others. I would also like to be able to simply filter with a few of the queries that are already there."
"When we do investigations, it would be better if Microsoft could populate the host dashboard more. When we open any host for investigation, we want the entire timeline of what is happening on the host, including all the users logging in, their hardware, Windows version, etc."
"Improving scalability, especially for very large tenants, could be beneficial for Microsoft Defender XDR."
"The solution does not offer a unified response and standard data."
"The cost can be high if you want to build custom license packages. Another area for improvement is the policies. In Azure, we need to implement policies in JSON format, but in 365 Defender 365, it would be helpful to use a different format so we can customize the platform."
"The price could be better. It'll also help if they can continuously update and upgrade the solution. Every day there's a new virus uploaded into the network, and we have to keep updating it to identify all these things."
More Azure Web Application Firewall Pricing and Cost Advice →
Azure Web Application Firewall is ranked 19th in Microsoft Security Suite with 9 reviews while Microsoft Defender XDR is ranked 1st in Microsoft Security Suite with 80 reviews. Azure Web Application Firewall is rated 8.4, while Microsoft Defender XDR is rated 8.4. The top reviewer of Azure Web Application Firewall writes "It's a good option if you want a solution that's ready to go and easy for your team to learn". On the other hand, the top reviewer of Microsoft Defender XDR writes "Includes four services and four products, which can help organizations a lot". Azure Web Application Firewall is most compared with AWS WAF, Fortinet FortiWeb, Azure Front Door, Azure Firewall and F5 Advanced WAF, whereas Microsoft Defender XDR is most compared with CrowdStrike Falcon, Microsoft Defender for Cloud, Microsoft Purview Compliance Manager, Wazuh and Trend Vision One. See our Azure Web Application Firewall vs. Microsoft Defender XDR report.
See our list of best Microsoft Security Suite vendors.
We monitor all Microsoft Security Suite reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.