Try our new research platform with insights from 80,000+ expert users

Cortex XDR by Palo Alto Networks vs Tanium comparison

Palo Alto Networks and Tanium are both solutions in the Endpoint Protection Platform (EPP) category. Palo Alto Networks is ranked #4 with an average rating of 8.7, while Tanium is ranked #37 with an average rating of 7.1. Palo Alto Networks holds a 3.9% mindshare in EPP, compared to Tanium’s 2.5% mindshare. Additionally, 95% of Palo Alto Networks users are willing to recommend the solution, compared to 73% of Tanium users who would recommend it.
Cortex XDR by Palo Alto Net...
Read 90 Cortex XDR by Palo Alto Networks reviews
  • 15,109 Views
  • 9,090 Comparison Views
95% willing to recommend
Tanium
Read 16 Tanium reviews
  • 6,211 Views
  • 4,378 Comparison Views
73% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Sep 9, 2024

Both Tanium and Cortex XDR by Palo Alto Networks offer robust cybersecurity solutions with distinct advantages based on user reviews. Cortex XDR has the upper hand due to its advanced features and better customer service.

Features: Tanium users value its real-time data, endpoint management capabilities and overall cost-effectiveness. Cortex XDR users praise its integration with other Palo Alto Networks products, advanced threat detection features and comprehensive security coverage.

Room for Improvement: Tanium users seek improvements in scalability, more intuitive functionalities and better customer service. Cortex XDR users request better integration with third-party tools, refinements in alert accuracy and improved ease of use.

Ease of Deployment and Customer Service: Tanium is noted for its straightforward deployment process but has mixed reviews about customer service. Cortex XDR offers a simple deployment experience, with users reporting more consistent and favorable customer support. Cortex XDR is generally seen as offering better customer service.

Pricing and ROI: Tanium is considered more cost-effective, with users citing a positive ROI. Cortex XDR, while more expensive, is seen as worth the investment due to its advanced capabilities and comprehensive security coverage. Users believe the higher cost of Cortex XDR is justified by its superior features.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Cortex XDR by Palo Alto Networks vs. Tanium Report (Updated: February 2025).
Buyer's Guide
Cortex XDR by Palo Alto Networks vs. Tanium
February 2025
Download the complete report
Helped 844,944 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cortex XDR by Palo Alto Net...
Ranking in Endpoint Protection Platform (EPP)
4th
Average Rating
8.4
Reviews Sentiment
7.4
Number of Reviews
90
Ranking in other categories
Extended Detection and Response (XDR) (7th), Ransomware Protection (2nd), AI-Powered Cybersecurity Platforms (4th)
Tanium
Ranking in Endpoint Protection Platform (EPP)
37th
Average Rating
7.4
Reviews Sentiment
6.5
Number of Reviews
16
Ranking in other categories
Server Monitoring (10th), Vulnerability Management (22nd), Endpoint Detection and Response (EDR) (26th)
 

Mindshare comparison

As of April 2025, in the Endpoint Protection Platform (EPP) category, the mindshare of Cortex XDR by Palo Alto Networks is 3.9%, down from 5.1% compared to the previous year. The mindshare of Tanium is 2.5%, up from 2.0% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Endpoint Protection Platform (EPP)
 

Featured Reviews

Mohammad Qaw - PeerSpot reviewer
Perfect correlation and XDR capabilities for network traffic plus endpoint security
The solution should force customers to integrate with network traffic to see the full benefits of XDR. If you are not integrating it or feeding in your network traffic, then you are just buying a normal antivirus which doesn't make any sense. You are paying double the price to use the antivirus feature or to say you have XDR, but in reality you are not using it. The solution should include an on-premises option because some customers want only on-premises. It would be hard, but good to do if possible. Open XDR would be beneficial in the future. Right now, the solution is Closed XDR so cannot communicate with the few new vendors in the Open XDR market.
Read full review
Mo Vermeiren - PeerSpot reviewer
Is able to make several campaigns work in parallel, but the user interface needs improvement
It's mainly used by the cybersecurity team for Windows patching and deployment of some software solutions I like the fact that you can create patching campaigns depending on the area of your network that you want to address first. I like the ability it has to make several campaigns that work in…
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The initial setup isn't too bad."
"The most valuable feature of Cortex XDR by Palo Alto Networks is its machine-learning capabilities. Additionally, there is full integration with other solutions."
"WildFire AI is the best option for this product."
"Cortex XDR lets us manage several clients from the same console, and its endpoint defense is more advanced than traditional antivirus."
"Best solution for avoiding security breaches, malware attacks, and other kinds of security issues."
"One thing that I like about Cortex XDR by Palo Alto Networks, it is detecting all the suspicious or malicious binaries, and it has integration with Palo Alto Firewall."
"Threat identification and detection are the most valuable features of this solution."
"On a scale from one to ten, I would rate Cortex XDR by Palo Alto Networks a nine."
More Cortex XDR by Palo Alto Networks pros
"I like the fact that you can create patching campaigns depending on the area of your network that you want to address first. I like the ability it has to make several campaigns that work in parallel."
"The interrogation piece was the most valuable feature because it was very detailed."
"Tanium's most valuable feature is its instant discovery aspect."
"I like the tool's incident response and security patching."
"The solution is scalable and helps to understand how infrastructure works. It helps to improve the health of the organization."
"Tanium has made the process of detecting threats more proactive with its detection. So, the process is easier and more efficient."
"The security features are very valuable."
"For incident response tasks, all these tasks can get done in minutes with minimal disruption to the end-user."
More Tanium pros
 

Cons

"Previously, the endpoint would leave the environment, not being on our VPN, essentially unable to interact with the server to upload files. It was unable to retrieve new file verdicts. It was using a thing called "local analysis" to determine if something was a malicious file or not. There was no dynamic analysis."
"There are some false positives. What our guys would have liked is that it would have been easier to manipulate as soon as they found a false positive that they knew was a false positive. How to do so was not obvious. Some people complained about it. The interface, the ESM, is not user-friendly."
"Cortex XDR by Palo Alto Networks could improve by offering remote management. It would be useful to look at the client's issue to fix it."
"There's room for improvement with Mac device installations, which can be challenging."
"I would like to see them include NDR (Network Detection Response)."
"It'll help if customization was easier."
"It's not an ideal choice for smaller businesses, as you need a minimum of 200 endpoints to even use the solution at all."
"The solution should add unwanted malicious hash values to a block list so that whenever the action is triggered, it will automatically prevent the malicious content."
More Cortex XDR by Palo Alto Networks cons
"It is not really additional functions, or the features that are needed, rather the complexity would be reduced based on the number of modules required to put together a comprehensive operational security and risk compliance model."
"They could improve the UI."
"Tanium's limitations should be improved because although it is a great tool, it is limited to only a few classes during a session."
"The most painful thing is the interface. It's a bit unclear sometimes."
"The solution needs to improve the reporting and tracking capabilities."
"The main issues are the network connection because different customers have issues with their networks. It's difficult implementing this type of solution because the network is the main feature in the architecture for these types of solutions. Tanium could improve by creating some network optimization."
"When working with Tanium, there are some older devices that haven't been patched for a long time, and certain patches are not included in Tanium. I have to search outside to download patches, create bundles, and then perform the task."
"The performance could improve in future releases. We have had performance issues in specialized web environments, but overall I think the problems are less than 2% of the computer systems being used."
More Tanium cons
 

Pricing and Cost Advice

"This is an expensive solution."
"Every customer has to pay for a license because it doesn't work with what you get from a managed services provider."
"The pricing seems fair, and I do like the licensing model. You use wherever they are, and it is elastic."
"The price is on the higher side, but it's okay."
"Licensing for Palo Alto Networks Cortex XDR can be costly, especially when it comes to a hundred users. A license is required for each user, and the subscription must be renewed on a yearly basis."
"I don't like that they have different types of licenses."
"Cortex XDR by Palo Alto Networks is quite an expensive solution."
"It is "expensive" and flexible."
More Cortex XDR by Palo Alto Networks pricing and cost advice
"The product's pricing differs from region to region depending on negotiations and the number of endpoints."
"There is an annual license required to use this solution."
"The solution is expensive but it's a good investment."
"Tanium is a more expensive solution in Latin America than some of the competitors, such as BigFix."
"It's an expensive solution. It would be nice if the cost were lower."
"The solution offers value for money."
"It is higher than some competitors in the market."
report
See which vendors are best for you
Use our free recommendation engine to learn which Endpoint Protection Platform (EPP) solutions are best for your needs.
See recommendations
844,944 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
14%
Financial Services Firm
9%
Government
8%
Manufacturing Company
7%
Financial Services Firm
17%
Government
13%
Computer Software Company
10%
Manufacturing Company
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Cortex XDR by Palo Alto vs. Sentinel One
Cortex XDR by Palo Alto vs. SentinelOne SentinelOne offers very detailed specifics with regard to risks or attacks. The ability to reverse damage caused by ransomware with minimal interruptions to...
See all answers
Comparing CrowdStrike Falcon to Cortex XDR (Palo Alto)
Cortex XDR by Palo Alto vs. CrowdStrike Falcon Both Cortex XDR and Crowd Strike Falcon offer cloud-based solutions that are very scalable, secure, and user-friendly. Cortex XDR by Palo Alto offers ...
See all answers
How is Cortex XDR compared with Microsoft Defender?
Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface, applies behavioral-based endpoint protection and response, and includes risk-ba...
See all answers
What do you like most about Tanium?
Tanium’s linear-chain architecture is valuable.
See all answers
What needs improvement with Tanium?
When working with Tanium, there are some older devices that haven't been patched for a long time, and certain patches are not included in Tanium. I have to search outside to download patches, creat...
See all answers
What is your primary use case for Tanium?
We primarily use Tanium for patching, focusing on vulnerabilities. Our major goal with Tanium is to patch based on vulnerabilities detected by our other vulnerability tools.
See all answers
 

Comparisons

Microsoft Defender for Endpoint vs Cortex XDR by Palo Alto Networks Logo
Microsoft Defender for Endpoint vs Cortex XDR by Palo Alto Networks
Compared 12% of the time
CrowdStrike Falcon vs Cortex XDR by Palo Alto Networks Logo
CrowdStrike Falcon vs Cortex XDR by Palo Alto Networks
Compared 7% of the time
Darktrace vs Cortex XDR by Palo Alto Networks Logo
Darktrace vs Cortex XDR by Palo Alto Networks
Compared 5% of the time
Wazuh vs Cortex XDR by Palo Alto Networks Logo
Wazuh vs Cortex XDR by Palo Alto Networks
Compared 5% of the time
More Cortex XDR by Palo Alto Networks Competitors
CrowdStrike Falcon vs Tanium Logo
CrowdStrike Falcon vs Tanium
Compared 16% of the time
Microsoft Defender for Endpoint vs Tanium Logo
Microsoft Defender for Endpoint vs Tanium
Compared 9% of the time
Microsoft Configuration Manager vs Tanium Logo
Microsoft Configuration Manager vs Tanium
Compared 9% of the time
ServiceNow Discovery vs Tanium Logo
ServiceNow Discovery vs Tanium
Compared 6% of the time
Ivanti Endpoint Security for Endpoint Manager vs Tanium Logo
Ivanti Endpoint Security for Endpoint Manager vs Tanium
Compared 2% of the time
More Tanium Competitors
 

Product Reports

Buyer's Guide
Cortex XDR by Palo Alto Networks
March 2025
Cortex XDR by Palo Alto Networks reportDownload Cortex XDR by Palo Alto Networks product report
Buyer's Guide
Tanium
March 2025
Tanium reportDownload Tanium product report
 

Also Known As

Cyvera, Cortex XDR, Palo Alto Networks Traps
No data available
 

Overview

Cortex XDR by Palo Alto Networks delivers comprehensive endpoint security, integrating well with other systems to offer robust threat detection and real-time protection through AI-driven analytics.

Cortex XDR by Palo Alto Networks offers advanced endpoint protection and threat detection through AI and behavior-based analytics. Its user-friendly design simplifies integration with firewalls, delivering multi-layered protection with low resource consumption. Valued for policy management, USB control, and incident correlation, Cortex XDR enhances threat management and real-time threat hunting capabilities. However, users note challenges with third-party integration, reporting, and dashboard automation. Agent performance across operating systems and memory consumption are areas for improvement, alongside reducing false positives and simplifying endpoint management and setup.

What features does Cortex XDR offer?
  • Behavior-Based Detection: Analyzes user behavior to identify suspicious activities.
  • AI Analytics: Utilizes AI for accurate threat detection and response.
  • Real-Time Protection: Provides immediate defense against threats.
  • Policy Management: Allows customization of security policies across endpoints.
  • USB Control: Regulates USB device access for added security.
  • Incident Correlation: Connects and analyzes various security events for better response.
  • Firewall Integration: Seamlessly works with firewalls for enhanced security.
  • Machine Learning Capabilities: Continuously improves threat detection precision.
What benefits should be considered in reviews?
  • Low Resource Consumption: Efficient security functions without taxing system resources.
  • Multi-Layered Protection: Comprehensive security across multiple attack vectors.
  • User-Friendly Interface: Intuitive design for easier management.
  • Enhanced Threat Management: Identifies and mitigates threats effectively.
  • Real-Time Threat Hunting: Proactively searches for and mitigates potential threats.

Cortex XDR is crucial in industries requiring robust endpoint protection, such as finance, healthcare, and technology. It supports malware detection, behavioral analysis, and ransomware mitigation across endpoints, including remote work environments, providing comprehensive threat visibility and security policy management. The solution's integration with firewalls and specialized industry requirements enhances security posture in diverse operational settings.

Palo Alto Networks

Tanium Endpoint Platform reduces security risk, improves agility & increases efficiency, a fundamentally new approach to endpoint security's threat detection, indicent response, vulnerability assessment and configuration compliance & with management's software distribution, asset utilization, asset inventory and patch management.

Tanium
 

Sample Customers

CBI Health Group, University Honda, VakifBank
JPMorgan Chase, eBay, Amazon, US Bank, MetLife, pwc, Cerner, Delphi, MGM Grand, New York Life
Buyer's Guide
Cortex XDR by Palo Alto Networks vs. Tanium
February 2025
Free Report: Cortex XDR by Palo Alto Networks vs. Tanium
Find out what your peers are saying about Cortex XDR by Palo Alto Networks vs. Tanium and other solutions. Updated: February 2025.
DOWNLOAD NOW
844,944 professionals have used our research since 2012.
See our Cortex XDR by Palo Alto Networks vs. Tanium report.
See our list of best Endpoint Protection Platform (EPP) vendors and best Endpoint Detection and Response (EDR) vendors.

We monitor all Endpoint Protection Platform (EPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.