Cortex XDR
About Cortex XDR
Cortex XDR (formerly Traps) is a threat intelligence software designed to help security teams integrate the system with network, endpoint, third-party, and cloud data to streamline investigations and prevent cyber attacks. The platform allows administrators to identify threats, isolate endpoints, and block malware across environments.
Managers can gain insights into behavioral analytics using machine learning-enabled tools to detect threats and anomalies on a unified interface. Cortex XDR offers an incident management module, which enables teams to combine similar alerts into incidents and gain visibility across threats. Operators can also detect malicious behavior and block files to prevent ransomware attacks.
Cortex XDR lets businesses assess alerts from different sources and automate root cause analysis of various events. Supervisors can also protect devices against script-based threats and prevent data corruption attacks targeting the kernel.
Images
Not sure about Cortex XDR?
Compare with a popular alternative
Starting Price
Pricing Options
Features
Integrations
Ease of Use
Value for Money
Customer Service
Alternatives
Falcon
Splunk Enterprise
Snowflake
Trellix Endpoint Security
Reviews
Already have Cortex XDR?
Software buyers need your help! Product reviews help the rest of us make great decisions.
- Industry: Computer & Network Security
- Company size: 51–200 Employees
- Used Daily for 1+ year
-
Review Source
Overall rating
- Value for Money
- Ease of Use
- Customer Support
- Likelihood to recommend 9.0 /10
XDR for endpoint security is a game changer.
Reviewed on 2025/01/07
It has brought a security posture enhancement. Important audit related demands were fulfilled by...
It has brought a security posture enhancement. Important audit related demands were fulfilled by querying on XDR dataset. It is accurate with work/policy assigned.
Pros
I am an administrator off this tool and it is a powerful tool with good capabilities. Seamless integration with other sensors, log ingestion and log stitching gives a brief story of an incident. It has remediation suggestions based on AI. XDR analytics and Behavioral detection feels promising to foil up ZERO day attack. We can also configure Co-relation rules. XQL provided by palo alto can be used to query the whole dataset and covers data that are not covered in UI.
Cons
Costing is on heavy side, each feature has add-on license cost. UI takes time to understand. Policy structure is a bit rigid.
- Industry: Primary/Secondary Education
- Company size: 501–1,000 Employees
- Used Daily for 2+ years
-
Review Source
Overall rating
- Value for Money
- Ease of Use
- Customer Support
- Likelihood to recommend 10.0 /10
Cortext XDR - Great Endpoint Protection and so much more.
Reviewed on 2023/10/02
Pros
Cortex made our network more secure. When we swapped from our previous anti-virus platform to Cortex XDR we started seeing things that had slipped past our old AV platform and was causing issues in our network. Cortex made it easy to locate and clean these machines and if needed it made it easy to isolate them until they were cleaned and approved to be put back on our network.
Cons
The biggest con for our team, being part of a public school system, is the cost. The cost of this platform compared to traditional anti-virus/endpoint protection platforms such as Avast, Symantec, etc. is very significant and we had to get a trial of this setup and running as a proof of concept to justify the cost difference to our board and county commission in order to get the money to purchase this product but it has definatley been worth it.
Alternatives Considered
Carbon Black Endpoint, Intercept X Endpoint, Malwarebytes for Business and Avast Ultimate Business SecurityReasons for Choosing Cortex XDR
Cortex XDR was more secure and provided more valuable information and analytics than our previous product.Switched From
Avast Business CloudCareReasons for Switching to Cortex XDR
Multiple reasons to be honest and different reasons for each of the competitors. For some of the competitors they got ruled out because of a lack of features or analytics that we wanted to see. Others was ruled out because they did not offer a large enough of an educational discount to get the price down within the budget that we had to work with.
- Industry: Computer Software
- Company size: 501–1,000 Employees
- Used Daily for 1-5 months
-
Review Source
Overall rating
- Ease of Use
- Likelihood to recommend 6.0 /10
Difficult to get setup
Reviewed on 2019/04/24
Pros
Quick intrusion/threat detection, silent background running
Cons
Extremely difficult to roll out to company, was blocking company wide software such as 7-zip, was blocking Skype for Business messages, took forever to troubleshoot and properly roll out and install. In addition, the software does not have a great UI, it appears very serious and unnecessarily serious when detecting small threats
- Industry: Computer & Network Security
- Company size: 51–200 Employees
- Used Daily for 6-12 months
-
Review Source
Overall rating
- Value for Money
- Ease of Use
- Customer Support
- Likelihood to recommend 10.0 /10
A double defense for threat: Cortex XDR
Reviewed on 2024/11/21
Cortex Xdr is a comprehensive security solutions which help in improving the security posture of...
Cortex Xdr is a comprehensive security solutions which help in improving the security posture of the organizations. It comes with advanced threat detection which help security team to focus on high priority incidents rather than wasting time on low severity incidents. Its friendly interface and customizable dashboard provides the clear visualization of incidents and easy to recognize the incidents. It can be integrated with soar as well as siem which allow security team to investigate. It has automated response which help in taking the action on incidents before the attack happen.
Pros
Cortex XDR is an extended version of XDR. The best thing in Cortex XDr is it has integrated threat detection which help in combining the endpoint, network, and even cloud data. It allow the comprehensive visibility and also provide the threat detection across the environment. It comes with automated response capabilities which make easier for security team to responds to threats quickly and efficiency. It has customizations dashboard as per the need of organizations and user. The best thing is it can be integrated with other security solutions like SIEM, SOAR.
The best thing is support of Cortex, they provide the imidate reponse on High ticket and for medium they take 1-2 hr.
Cons
We face some challenges while configuring it, but with a proper security team we can achieve it. Its hard for the non technical guy or fresher to use it but with a proper training they can achieve it. Sometimes we face issues like false positive alerts, which can be decrease by proper investigation of incidents by security teams. It has limited integrations with third party tools.
Sometimes it block the external devices even adding in excepptional but it can be solved by support team.
- Industry: Health, Wellness & Fitness
- Company size: 201–500 Employees
- Used Daily for 1+ year
-
Review Source
Overall rating
- Ease of Use
- Likelihood to recommend 8.0 /10
Cortex XDR Review
Reviewed on 2021/10/19
Cortex is a solid product. We haven't had any major complaints from the user community. We haven't...
Cortex is a solid product. We haven't had any major complaints from the user community. We haven't had to unblock any major products that were perceived as spam at this point. Many other products tended to block updates to products due to the executable file not being recognized by their database. We haven' had that issue with Cortex.
Pros
Our team is responsible for the deployment of Cortex into our Mac and PC environment. The agent was very easy to distribute utilizing our Deployment Software tool. The dashboards provide an excellent view into what is active and reporting back to the tool. We haven't had any major whitelist issues between the tool and endpoints.
Cons
I would like to see the scan on demand option as an easy one-click process for end users so they can be pro-active.
Reasons for Choosing Cortex XDR
Cortex is a lighter client and is less chatty between endpoints and the server.Switched From
Symantec Endpoint SecurityReasons for Switching to Cortex XDR
Cortex is a lighter client than the alternatives. The agents are less chatty between the endpoints and the server. And the overall cost was significantly better.Cortex XDR FAQs
Below are some frequently asked questions for Cortex XDR.Q. What type of pricing plans does Cortex XDR offer?
Cortex XDR offers the following pricing plans:
- Free Trial: Not Available
Contact Palo Alto Networks for pricing details.
Q. Who are the typical users of Cortex XDR?
Cortex XDR has the following typical customers:
2–10, 11–50, 51–200, 201–500, 501–1,000, 1,001–5,000
Q. What languages does Cortex XDR support?
Cortex XDR supports the following languages:
Brazilian Portuguese, Chinese, English, German, Italian, Japanese, Korean, Spanish
Q. Does Cortex XDR support mobile devices?
Cortex XDR supports the following devices:
Android (Mobile)
Q. What other apps does Cortex XDR integrate with?
Cortex XDR integrates with the following applications:
Cortex XSOAR, WildFire
Q. What level of support does Cortex XDR offer?
Cortex XDR offers the following support options:
Email/Help Desk, FAQs/Forum, Knowledge Base, Phone Support
Related categories
See all software categories found for Cortex XDR.
