Compare Cortex XDR by Palo Alto Networks vs. Darktrace

Cancel
You must select at least 2 products to compare!
Most Helpful Review
Find out what your peers are saying about CrowdStrike, SentinelOne, Broadcom and others in Endpoint Protection (EPP) for Business. Updated: April 2021.
479,124 professionals have used our research since 2012.
Quotes From Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros
"For the initial first level of support, we provide it from our side. If there's escalation required, we use Cisco tech for the AMP. And again, they are perfect. I mean, one of the best, compared to any other vendors.""The most valuable features of this solution are the IPS and the integration with ISE.""The simplicity of use is its most valuable feature. You can very clearly see things.""The stability of the solution is perfect. I believe it's the most stable solution on the market right now.""I am really satisfied with the technical support.""It is a very stable program.""The solution's integration capabilities are excellent. It's one of the best features.""It doesn't impact the devices. It is an agent-based solution, and we see no performance knock on cell phones. That was a big thing for us, especially in the mobile world. We don't see battery degradation like you do with other solutions which really drain the battery, as they're constantly doing things. That can shorten the useful life of a device."

More Cisco AMP for Endpoints Pros »

"We have a complete overview of all our PCs and it's very easy to handle and to use the interface. It has a lot of benefits for us.""It's very stable. I've never experienced downtime for the ASM console or ASM core.""The stability of the solution is very good. We have about 100 users on it right now, and we use it twice a week.""The one feature of Palo Alto Networks Traps that our organization finds most valuable is the App ID service.""WildFire AI is the best option for this product.""The most valuable for us is the correlation feature.""They have a new GUI which is just fantastic.""It collects and caches and the knowledge of machine learning from different customers to take to the cloud. It makes it better to use for everybody. It allows for quick learning and updates and can, therefore, offer zero-day malware security. This sharing of metadata helps make the solution very safe."

More Cortex XDR by Palo Alto Networks Pros »

"The most valuable feature is the alerts. The alerts are meaningful. The event rolls up into meaningful and actionable alerts rather than just being noise.""What I like about Darktrace, is that you can quickly identify threats.""Darktrace is extremely stable.""A simple, powerful AI solution that just does all the work for you when you turn it on.""The Dynamic Threat Dashboard is very nice, as it lists all of your threats and rates them, and then you can choose whether to investigate further.""Its most valuable feature is its ability to identify malicious connected IPs from outside and the attacks that get through to the inside.""Ability to see events and exactly what traffic or website the device had tried to connect to that raised the alert or issue.""The solution is stable. We've never had any problems with it."

More Darktrace Pros »

Cons
"The solution needs more in-depth analytics.""In the next version of this solution, I would like to see the addition of local authentication.""The initial setup is a bit complex because you need to execute existing antiviruses or security software that you have on your device.""In the next release, I would for it to have back up abilities. I would like the ability to go back to a point in time to when my PC was uninfected and to the moment of when the infection happened.""The reporting and analytics areas of the solution need to be improved.""I would like more seamless integration.""The technical support is very slow.""I would recommend that the solution offer more availability in terms of the product portfolio and integration with third-party products."

More Cisco AMP for Endpoints Cons »

"Currently, if you use Palo Alto endpoint protection as the only solution it's very complicated to remove pre-existing threats.""In the next release, I would like to see more UI improvements. Their UI is a bit basic. When we are speaking about Palo Alto Networks they are the big company, so they can improve the UI a little bit. The UI, the reports, the log system can all be improved.""The solution needs better reports. I think they should let the customer go in and customize the reports.""It automatically detects security issues. It should be able to protect our network devices while operating autonomously.""The dashboard is the area that needs to improve so that we can have the ability to drill down without having to go elsewhere to verify results.""There are some third-party solutions that are difficult to integrate with, which is something that can be improved.""There's an overall lack of features.""The solution can never really be an on-premises solution based simply on the way it is set up. It needs metadata to run and improve. Having an on-premises solution would cut it off from making improvements."

More Cortex XDR by Palo Alto Networks Cons »

"I would like for the product to work on the endpoints as well. I would like to see enhanced visibility into the endpoints and network but this solution only sits on the network itself.""The program is quite expensive.""Darktrace does not have any capabilities to configure.""It could build in integrations for some complementary products, but it has an assistant plugin so this is not really a big deal.""This is quite an expensive product so the pricing is something that can be improved.""Darktrace needs to automate the reports of false positives, botnets and everything.""The product doesn't have an endpoint agent that can react to triggers set on the device,""The solution would benefit from automation. Currently, you have to know what you are searching for."

More Darktrace Cons »

Pricing and Cost Advice
"The costs of 50 licenses of AMP for three years is around $9,360.""The price is very good.""The visibility that we have into the endpoint and the forensics that we're able to collect give us value for the price. This is not an overly expensive solution, considering all the things that are provided. You get great performance and value for the cost.""Whenever you are doing the licensing process, I would highly advise to look at what other Cisco solutions you have in your organization, then evaluate if an Enterprise Agreement is the best way to go. In our case, it was the best way to go. Since we had so many other Cisco products, we were able to tie those in. We were actually able to get several Cisco security solutions for less than if we had bought three or four Cisco security solutions independently or ad hoc.""In our case, it is a straightforward annual payment through our Enterprise Agreement.""Our company was very happy with the price of Cisco AMP. It was about a third of what we were paying for System Center Endpoint Protection.""There are a couple of different consumption models: Pay up front, or if you have an enterprise agreement, you can do a monthly thing. Check your licensing possibilities and see what's best for your organization.""The Enterprise Agreement is like an all-you-can-eat buffet of Cisco products. In that vein, it was very affordable."

More Cisco AMP for Endpoints Pricing and Cost Advice »

"This is an expensive solution.""The pricing is a little high. It is per user per year.""We pay about $50,000 USD per year for a bundle that includes Cortex XDR.""This is an expensive solution.""Its pricing is kind of in line with its competitors and everybody else out there.""Every customer has to pay for a license because it doesn't work with what you get from a managed services provider.""The pricing is okay, although direct support can be expensive.""Our customers have expressed that the price is high."

More Cortex XDR by Palo Alto Networks Pricing and Cost Advice »

"It is inexpensive considering what it can do and the competition.""If you consider the features and the cost of market leaders, we are satisfied with the pricing.""The pricing is a little high compared to the competition.""Our customers feel that the price of Darktrace is quite high compared to other solutions.""The pricing is very flexible for Darktrace. Sometimes, a customer does not have the appropriate budget, but Darktrace can handle that. They offer monthly payments, so the customer can acquire the solution very easily.""When it comes to large installations, it can be expensive, but for small accounts it's fine.""It is a very expensive product.""It is expensive. I don't have the price for other competitors."

More Darktrace Pricing and Cost Advice »

report
Use our free recommendation engine to learn which Endpoint Protection (EPP) for Business solutions are best for your needs.
479,124 professionals have used our research since 2012.
Questions from the Community
Top Answer: Among the most valuable features are the exclusions. And on the scalability side, we can integrate well with the SIEM… more »
Top Answer: We use the MSP model, so we're able to pay as we go. We report usage based on the actual usage, which is very handy. The… more »
Top Answer: Like any other security tool, there's always rooms for improvement. Some of the ways the product can be improved are: -… more »
Top Answer: Stability is one of the features we like the most.
Top Answer: The pricing is okay, although direct support can be expensive.
Top Answer: The installation should be easier and the Palo Alto pre-sales and sales should teams have more information on the… more »
Top Answer: Darktrace is very flexible.
Top Answer: In terms of improvements, fine-tuning is the area where we have to spend some time because it works on unsupervised… more »
Popular Comparisons
Also Known As
Cisco Secure Endpoint
Cyvera, Cortex XDR, Palo Alto Networks Traps
Learn More
Overview

Advanced Malware Protection (AMP) is subscription-based, managed through a web-based management console, and deployed on a variety of platforms that protects endpoints, network, email and web Traffic. AMP key features include the following: Global threat intelligence to proactively defend against known and emerging threats, Advanced sandboxing that performs automated static and dynamic analysis of files against more than 700 behavioral indicators, Point-in-time malware detection and blocking in real time and Continuous analysis and retrospective security regardless of the file's disposition and Continuous analysis and retrospective security.

Cortex XDR by Palo Alto Networks is the world's first detection and response app that natively integrates network, endpoint and cloud data to stop sophisticated attacks. Cortex XDR by Palo Alto Networks accurately detects threats with behavioral analytics and reveals the root cause to speed up investigations.

Darktrace is a leading autonomous cyber security AI company and the creator of Autonomous Response technology. It provides enterprise-wide cyber defense to over 4,700 organizations, protecting the cloudemailSaaStraditional networksIoT devicesendpoints, and industrial systems.

A self-learning technology, Darktrace AI autonomously detects, investigates, and responds to advanced cyber-threats, including insider threat, remote working risks, ransomware, data loss, and supply chain vulnerabilities.

The company has 1,500 employees globally, with headquarters in Cambridge, UK. Every second, Darktrace AI fights back against a cyber-threat, before it can cause damage.

Offer
Learn more about Cisco AMP for Endpoints
Learn more about Cortex XDR by Palo Alto Networks
Learn more about Darktrace
Sample Customers
Heritage Bank, Mobile County Schools, NHL University, Thunder Bay Regional, Yokogawa Electric, Sam Houston State University, First Financial Bank
CBI Health Group, University Honda, VakifBank
Irwin Mitchell, Open Energi, Wellcome Trust, FirstGroup plc, Virgin Trains, Drax, QUI! Group, DNK, CreaCard, Macrosynergy, Sisley, William Hill plc, Toyota Canada, Royal British Legion, Vitol
Top Industries
REVIEWERS
Healthcare Company20%
Government13%
Financial Services Firm7%
Non Profit7%
VISITORS READING REVIEWS
Comms Service Provider27%
Computer Software Company22%
Government6%
Financial Services Firm5%
REVIEWERS
Healthcare Company12%
Mining And Metals Company12%
Computer Software Company12%
Security Firm6%
VISITORS READING REVIEWS
Computer Software Company25%
Comms Service Provider21%
Government6%
Manufacturing Company5%
REVIEWERS
Financial Services Firm31%
Healthcare Company8%
Energy/Utilities Company8%
Insurance Company8%
VISITORS READING REVIEWS
Comms Service Provider24%
Computer Software Company22%
Government6%
Financial Services Firm5%
Company Size
REVIEWERS
Small Business36%
Midsize Enterprise16%
Large Enterprise48%
VISITORS READING REVIEWS
Small Business27%
Midsize Enterprise18%
Large Enterprise55%
REVIEWERS
Small Business45%
Midsize Enterprise21%
Large Enterprise33%
VISITORS READING REVIEWS
Small Business31%
Midsize Enterprise20%
Large Enterprise49%
REVIEWERS
Small Business58%
Midsize Enterprise17%
Large Enterprise25%
VISITORS READING REVIEWS
Small Business25%
Midsize Enterprise23%
Large Enterprise52%
Find out what your peers are saying about CrowdStrike, SentinelOne, Broadcom and others in Endpoint Protection (EPP) for Business. Updated: April 2021.
479,124 professionals have used our research since 2012.

Cortex XDR by Palo Alto Networks is ranked 7th in Endpoint Protection (EPP) for Business with 23 reviews while Darktrace is ranked 1st in Intrusion Detection and Prevention Software with 22 reviews. Cortex XDR by Palo Alto Networks is rated 8.4, while Darktrace is rated 7.8. The top reviewer of Cortex XDR by Palo Alto Networks writes "Easy to set up with excellent trend analytics and isolation feature". On the other hand, the top reviewer of Darktrace writes "A 10/10 solution with an awesome interface, good stability and scalability, flexible pricing, and good support". Cortex XDR by Palo Alto Networks is most compared with CrowdStrike Falcon, Symantec End-User Endpoint Security, Microsoft Defender Antivirus, Microsoft Defender for Endpoint and Total Defense Anti-Virus, whereas Darktrace is most compared with Cisco Stealthwatch, CrowdStrike Falcon, Vectra AI, Palo Alto Networks Threat Prevention and Fortinet FortiOS.

See our list of .

We monitor all Endpoint Protection (EPP) for Business reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.