- Home
- ...
- Endpoint Protection Suites
- CrowdStrike Falcon Endpoint Protection Platform
- Microsoft Defender XDR
- CrowdStrike Falcon Endpoint Protection Platform-vs-Microsoft Defender XDR
Compare CrowdStrike Falcon Endpoint Protection Platform and Microsoft Defender XDR 
At a Glance
Market Segments
Enterprise (54.1% of reviews)
Enterprise (37.8% of reviews)
Entry-Level Pricing
Free Trial
Free Trial
CrowdStrike Falcon Endpoint Protection Platform
Star Rating
(288)4.7 out of 5
Market Segments
Enterprise (54.1% of reviews)
Entry-Level Pricing
Free Trial
Browse all 4 pricing plansMicrosoft Defender XDR
Star Rating
(293)4.5 out of 5
Market Segments
Enterprise (37.8% of reviews)
Entry-Level Pricing
Free Trial
Learn more about Microsoft Defender XDRSummary
AI Generated Summary
AI-generated. Powered by real user reviews.
- Users report that CrowdStrike Falcon Endpoint Protection Platform excels in Real-Time Detection with a score of 9.6, which reviewers mention provides immediate threat identification, while Microsoft Defender XDR, with a score of 9.2, is noted for being slightly less responsive in real-time scenarios.
- Reviewers mention that CrowdStrike's Threat Hunting capabilities, rated at 9.1, are highly effective, allowing for proactive identification of potential threats, whereas Microsoft Defender XDR, rated at 9.0, is seen as competent but not as robust in this area.
- G2 users highlight the superior Response Automation of CrowdStrike, scoring 9.1, which reviewers say streamlines incident response processes, compared to Microsoft Defender XDR's score of 8.8, where users feel there is room for improvement in automation features.
- Users on G2 report that CrowdStrike's Proactive Threat Hunting feature, rated at 8.9, is a standout, with reviewers mentioning its effectiveness in preemptively identifying vulnerabilities, while Microsoft Defender XDR's similar feature, rated at 8.6, is viewed as less proactive.
- Reviewers mention that CrowdStrike's 24/7 Support is rated at 9.4, with many users praising the responsiveness and helpfulness of the support team, while Microsoft Defender XDR, rated at 8.8, is noted for good support but not as consistently praised.
- Users say that CrowdStrike's Customizable Reports feature, with a score of 8.0, allows for tailored insights that meet specific organizational needs, whereas Microsoft Defender XDR, with a lower score in this area, is seen as less flexible in reporting capabilities.
Featured Products
Sponsored
Applivery
(15)
Threat Intelligence
Visit Website
Sponsored
EventSentry
(40)
Threat Intelligence
Visit Website
Pricing
Entry-Level Pricing
CrowdStrike Falcon Endpoint Protection Platform
Falcon Pro
Free Trial
Provides superior protection from cyber attacks, detects malicious activity, and offers immediate response capabilities for your business.
- Next-Generation Antivirus
- Threat Intelligence
- USB Device Control
Microsoft Defender XDR
Free Trial
Free Trial
- Encrypted Storage - Provides some level of encryption of files and data in transit and sensitive information while it lives online.
- Anomaly Detection - Constantly monitors activity related to user behavior and compares activity to benchmarked patterns.
- Data loss Prevention - Stores data securely either on premise or in an adjacent cloud database to prevent loss of data at rest..
Free Trial
CrowdStrike Falcon Endpoint Protection Platform
Free Trial is available
Microsoft Defender XDR
Free Trial is available
Ratings
Meets Requirements
9.3
200
8.9
252
Ease of Use
9.1
202
8.8
256
Ease of Setup
9.2
163
8.5
129
Ease of Admin
9.0
155
8.7
126
Quality of Support
8.9
197
8.8
251
Has the product been a good partner in doing business?
9.2
156
8.9
126
Product Direction (% positive)
9.6
180
9.5
241
Features by Category
Administration
9.1
37
Not enough data
8.7
33
Not enough data
8.8
36
Not enough data
8.9
39
Not enough data
9.0
39
Not enough data
Functionality
9.6
47
Not enough data
8.7
36
Not enough data
9.5
43
Not enough data
9.7
48
Not enough data
Analysis
9.0
45
Not enough data
9.3
42
Not enough data
9.2
44
Not enough data
Detection & Response
9.1
40
8.8
168
9.1
41
9.0
172
9.3
41
8.8
167
9.6
42
9.2
170
Management
9.0
41
8.7
164
8.9
38
8.5
161
9.1
38
8.7
163
Analytics
9.4
42
9.0
169
9.1
41
8.6
165
9.3
42
8.8
167
Monitoring
9.3
14
Not enough data
9.6
14
Not enough data
8.6
13
Not enough data
9.3
14
Not enough data
9.1
13
Not enough data
Remediation
9.3
14
Not enough data
9.4
14
Not enough data
Platform Features
9.5
10
Not enough data
8.9
11
Not enough data
9.2
11
Not enough data
9.0
10
Not enough data
9.5
11
Not enough data
8.0
10
Not enough data
Automation Capabilities
9.0
10
Not enough data
8.9
11
Not enough data
Generative AI
Feature Not Available
Not enough data
Feature Not Available
Not enough data
Generative AI
Feature Not Available
Not enough data
Orchestration
8.8
53
Not enough data
8.7
53
Not enough data
9.2
58
Not enough data
8.8
53
Not enough data
Information
9.2
61
Not enough data
9.5
64
Not enough data
9.3
62
Not enough data
Personalization
9.4
62
Not enough data
9.3
62
Not enough data
8.7
53
Not enough data
Generative AI
Feature Not Available
Not enough data
Cloud Visibility
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Security
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Identity
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Security Information and Event Management (SIEM)Hide 10 FeaturesShow 10 Features
Not enough data
Not enough data
Network Management
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Incident Management
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Security Intelligence
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
System Control
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Vulnerability Prevention
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Security Management
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Analysis
8.3
6
Not enough data
8.3
6
Not enough data
8.1
6
Not enough data
8.1
6
Not enough data
Detection
8.6
6
Not enough data
8.3
6
Not enough data
8.9
6
Not enough data
ServiceNow Apps
9.0
12
Not enough data
9.2
11
Not enough data
Categories
Categories
Shared Categories
CrowdStrike Falcon Endpoint Protection Platform and Microsoft Defender XDR are categorized as Extended Detection and Response (XDR) Platforms
Unique Categories
CrowdStrike Falcon Endpoint Protection Platform is categorized as Identity Threat Detection and Response (ITDR), Endpoint Protection Platforms, AWS Marketplace, User and Entity Behavior Analytics (UEBA), Managed Detection and Response (MDR), Endpoint Protection Suites, ServiceNow Store Apps, Endpoint Management, Antivirus, Endpoint Detection & Response (EDR), Threat Intelligence, and Security Information and Event Management (SIEM)
Microsoft Defender XDR has no unique categories
Reviews
Reviewers' Company Size
CrowdStrike Falcon Endpoint Protection Platform
Small-Business(50 or fewer emp.)
Mid-Market(51-1000 emp.)
Enterprise(> 1000 emp.)
Microsoft Defender XDR
Small-Business(50 or fewer emp.)
Mid-Market(51-1000 emp.)
Enterprise(> 1000 emp.)
Small-Business
(50 or fewer emp.)
Mid-Market
(51-1000 emp.)
Enterprise
(> 1000 emp.)
Reviewers' Industry
Information Technology and Services
16.9%
Computer & Network Security
9.0%
Financial Services
8.6%
Hospital & Health Care
5.3%
Computer Software
4.9%
Other
55.3%
Information Technology and Services
29.8%
Computer Software
9.8%
Computer & Network Security
9.1%
Financial Services
3.3%
Management Consulting
2.5%
Other
45.5%
Most Helpful Reviews
CrowdStrike Falcon Endpoint Protection Platform
Most Helpful Favorable Review
Wojtek K.
Verified User in Financial Services
Crowdstrike Falcon Endpoint Protection is a robust platform that is easy to deploy at scale and provides many automation and orchestration capabilities. It leverages powerful machine-learning models and an unparalleled global sensor network in the industry....
Most Helpful Critical Review
Ernesto T.
Verified User in Retail
When looking at an incident, it only shows a process tree related to the incident. In order to view the whole panorama of what was going on you need to navigate to Investigate host, which consumes more time and is slow to load. Compare that to Cisco AMP4E...
Microsoft Defender XDR
Most Helpful Favorable Review
Robert D.
Verified User in Chemicals
That its ready to go when the license is purchased. It gives a very high-level defense against several different attacks. The deep url scanning is excellent. I appreciate that you can accesse these features from a central admin account access with every...
Most Helpful Critical Review
Manas Ranjan T.
Verified User in Leisure, Travel & Tourism
Microsoft 365 Defender heavily relies on cloud connectivity to deliver its security services. Microsoft 365 Defender is not immune to false positives, where legitimate activities are mistakenly flagged as threats.
Wojtek K.
Verified User in Financial Services
Crowdstrike Falcon Endpoint Protection is a robust platform that is easy to deploy at scale and provides many automation and orchestration capabilities. It leverages powerful machine-learning models and an unparalleled global sensor network in the industry....
Robert D.
Verified User in Chemicals
That its ready to go when the license is purchased. It gives a very high-level defense against several different attacks. The deep url scanning is excellent. I appreciate that you can accesse these features from a central admin account access with every...
Ernesto T.
Verified User in Retail
When looking at an incident, it only shows a process tree related to the incident. In order to view the whole panorama of what was going on you need to navigate to Investigate host, which consumes more time and is slow to load. Compare that to Cisco AMP4E...
Manas Ranjan T.
Verified User in Leisure, Travel & Tourism
Microsoft 365 Defender heavily relies on cloud connectivity to deliver its security services. Microsoft 365 Defender is not immune to false positives, where legitimate activities are mistakenly flagged as threats.
Alternatives
Discussions
How to uninstall the CS sensor remotely from any host?
2 comments
BB
This can be done via RTR if enabled or via deploying CS's uninstall tool through GPO, or whatever other deployment package manager you are using.Read more
How do people see Firewall logs in Crowdstrike . Is it Possible to view Firewall logs or requires a separated application to pull those into CS console.
1 comment
BB
You can see firewall changes and rule modifications under the event_SimpleNames "FirewallChangeOption" and "FirewallSetRule". CrowdStrike's Firewall license...Read more
What does Microsoft Defender for Office 365 do?
2 comments
ND
Microsoft Defender for Office 365 is security solution which protects threats, phishing, malware, spam, and business email compromise.Read more
Does Microsoft 365 include Microsoft Defender?
1 comment
BE
yes, different plans include different capabilities.Read more
What does Microsoft 365 Defender do?
1 comment
SP
Microsoft 365 Defender is a comprehensive cloud-based security solution that provides protection against a wide range of cybersecurity threats. It is...Read more
Hunting for software insights?
With over 2.5 million reviews, we can provide the specific details that help you make an informed software buying decision for your business. Finding the right product is important, let us help.
or continue with
Gmail.com addresses not permitted. A business domain using Google is allowed.
By proceeding, you agree to our Terms of Use and Privacy Policy
