No more typing reviews! Try our Samantha, our new voice AI agent.

CrowdStrike Falcon vs OpenText EnCase eDiscovery comparison

Sponsored
 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cortex XDR by Palo Alto Net...
Sponsored
Average Rating
8.4
Reviews Sentiment
6.8
Number of Reviews
110
Ranking in other categories
Endpoint Protection Platform (EPP) (4th), Endpoint Detection and Response (EDR) (7th), Extended Detection and Response (XDR) (6th), Ransomware Protection (2nd), AI-Powered Cybersecurity Platforms (1st)
CrowdStrike Falcon
Average Rating
8.6
Reviews Sentiment
7.3
Number of Reviews
141
Ranking in other categories
Security Information and Event Management (SIEM) (5th), Endpoint Protection Platform (EPP) (1st), Threat Intelligence Platforms (TIP) (1st), Endpoint Detection and Response (EDR) (1st), Extended Detection and Response (XDR) (1st), Attack Surface Management (ASM) (1st), Identity Threat Detection and Response (ITDR) (1st), AI-Powered Cybersecurity Platforms (2nd)
OpenText EnCase eDiscovery
Average Rating
7.8
Reviews Sentiment
7.7
Number of Reviews
8
Ranking in other categories
eDiscovery (9th)
 

Mindshare comparison

Extended Detection and Response (XDR) Mindshare Distribution
ProductMindshare (%)
CrowdStrike Falcon9.4%
Wazuh6.0%
SentinelOne Singularity Complete5.9%
Other78.7%
Extended Detection and Response (XDR)
eDiscovery Mindshare Distribution
ProductMindshare (%)
OpenText EnCase eDiscovery3.3%
Microsoft Purview eDiscovery6.8%
kCura Relativity5.4%
Other84.5%
eDiscovery
 

Featured Reviews

ABHISHEK_SINGH - PeerSpot reviewer
Senior Process Expert at A.P. Moller - Maersk
Gained full visibility and streamlined threat detection through behavior-based insights and AI integration
Initially, we got to have a lot of false positives when we onboarded, but nowadays it's quite smooth. We have fine-tuned our security policies and allowed different levels of policies to get rid of those false positives. Currently, we are getting a fairly good amount of incidents that are not false positives or benign, but actionable items. The process is streamlined. In the initial days, the operations used to get involved in a lot of benign and other activities, but now the process is streamlined. We are leveraging the auto-detection and remediation plans. The operations teams are now more involved in other business roles as well, not just looking into the logs and fetching out what's happening there. They have fixed a lot of things. Initially, they didn't have IAC code drift detection, cloud posture management, or security posture management, but they have those now. They purchased different vendors and did a merger with that. They have now Prisma Cloud that gets integrated and now they are working with Cortex Cloud. Everything that was negative has now been addressed, and the product altogether looks to be in a very better and mature shape now. Currently, it's more or less detecting the workloads with AI-based best practices. Since most organizations are consuming AI agents and other things, we are looking forward to seeing what other feature enhancements Palo Alto can support in that.
Dotan Sadka - PeerSpot reviewer
Ai And Automation at PeerSpot
Security team has reduced response times and now manages threats from a unified console
There are some drawbacks. While CrowdStrike Falcon is a very powerful tool, the high initial implementation cost can sometimes be a burden, and to get the maximum benefit by integrating it with other security systems as we did, you need a certain level of expertise, which is a bit disappointing. Additionally, sometimes updates can cause unexpected issues in the system, so thorough pre-testing is essential, which is another point of concern. Moving forward, I would like integrations with other security tools to become even smoother. Additionally, if they offered more flexible pricing plans or SME-focused packages so that smaller companies could adopt it without too much burden, I think many more organizations would benefit.
Alejandro Stromer - PeerSpot reviewer
Director Consulting SAP OpenText en Entelgy at DCL Consultores EIM SL
A stable and scalable hybrid solution with easy setup
The solution is scalable. It has three levels. You have the presentation area that can be escalated to the balance sheet. You have the back-end area that can be escalated using higher viability to configure more application servers. Also, the area of storage can be increased. We usually cater to enterprise solutions but have small- and medium-sized customers. It starts with 25 users and goes up to 100s and 1000s.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Previously, we had to install endpoint protection per machine and then scan and update, but Cortex XDR basically does that centrally and predictably, so we have more time to do day-to-day work rather than spend time chasing those endpoints."
"Its interface and pricing are most valuable, and it is better than other vendors in terms of security."
"The positive impacts I see from Cortex XDR by Palo Alto Networks include a complete 360-degree view of our security posture altogether, being a uniform platform where we are ingesting logs from multiple resources."
"Cortex XDR by Palo Alto Networks's ability to block sophisticated threats in real time is quite good and is on par with SentinelOne's."
"Cortex XDR by Palo Alto Networks has helped lighten the load of our security analysts because it was the major tool that we were using and the one we utilized most."
"Implementing Cortex XDR by Palo Alto Networks has had a significant impact on my security analyst workload because it becomes much easier."
"It integrates well into the environment."
"The scalability of Cortex XDR by Palo Alto Networks is very good."
"This solution consistently releases improvements. They have communicated their next two years of development which is powerful and covers all of our needs."
"The primary way that CrowdStrike has improved the way our organization functions is visibility, and when we do have an issue, the ability to see what was happening before, during, and after the issue on the target laptop or server is far better than what we were used to."
"Everything we've done with CrowdStrike is due to Arctic Wolf. We don't even need to get alerts from CrowdStrike anymore. It'll send those to Arctic Wolf, and then Arctic Wolf analyzes those and let us know if there's a major issue."
"The initial setup was straightforward."
"CrowdStrike Falcon's most valuable feature is the fact that it's not getting in the way of our workforce and their workflow."
"The most valuable feature of CrowdStrike Falcon is its accuracy."
"The most valuable features of Crowdstrike Falcon XDR are Spotlight and Discovery, they are helpful."
"We haven't had any infections or down time."
"Data Recovery: Its ability to repair damaged partitions and uncover hidden partitions from within the tool, and allow further analysis."
"The most important feature we've found is the Enscripts. That is one powerful feature that I, personally, love to use."
"The solution is very stable."
"The technical support is excellent."
"The solution has been quite good, and, overall, the features we need are available to us."
"It is a very useful tool; it is worth buying irrespective of price."
"I like the processing feature on the product because it does everything at once, i.e, indexing, recovery, keyword searches, etc."
"Image creation and image analysis in one program, basically for ease of use."
 

Cons

"Managing the product should be easier."
"It automatically detects security issues. It should be able to protect our network devices while operating autonomously."
"It would be good to have a better way to search for a file within the UI."
"We had a problem with getting our older endpoints up to date, but their newest updates have been really good."
"If Palo Alto reduces the pricing slightly for their products, it would make them more scalable in markets such as India and globally for cybersecurity."
"In reporting they should have a customizable dashboard due to the fact that C-level people don't like reporting to the IT department. They prefer to have a real-time dashboard. That kind of dashboard needs to have various customizations."
"Initially, we got to have a lot of false positives when we onboarded, but nowadays it's quite smooth."
"Data privacy is a matter of concern. You have to be careful with data privacy, it can be sensitive and Cortex can have most of your access."
"CrowdStrike should provide better visibility in its reporting. There should be more forensic details about detected threats."
"The new interface, the UI, seems a bit messy."
"It would be nice if the dashboard had some more information upfront, and looked a little better."
"A year and a half ago or more, if you put in a support request by email, then it wasn't timely addressed."
"The technical support team often just replies to an issue with a link to an article rather than actually calling back and talking to someone and making sure the problem is solved. To me, that's kind of weak."
"I would like to see a little bit more in the offline scanning ability."
"CrowdStrike should add support for ransomware protection."
"CrowdStrike Falcon could improve by having an easier way to search and use the interface for extracting queries from the data. The interface could improve."
"Sometimes the application can take more time to complete the image processing or fail at the end of the process."
"​Sometimes the application can take more time to complete the image processing or fail at the end of the process.​"
"From a customer service standpoint, this is unacceptable."
"Ease of use and learning curve need improvement."
"I suggest that if the mobile phone acquisition is embedded in the Encase law enforcement version, it would be very useful."
"We have come across problems with the end-case. We could not find an email discovery type of module and there was not flexibility with the email."
"There were minor UI bugs."
"I would like to see a capability to ingest and absorb more data. That would be really good. It currently is lacking this function."
 

Pricing and Cost Advice

"Licensing for Palo Alto Networks Cortex XDR can be costly, especially when it comes to a hundred users. A license is required for each user, and the subscription must be renewed on a yearly basis."
"Cortex XDR by Palo Alto Networks is an expensive solution."
"Cortex XDR is a costly solution."
"Cortex XDR’s pricing is very reasonable."
"Compared to CrowdStrike, Cortex XDR is an expensive solution."
"In terms of the cost Cortex XDR by Palo Alto Networks is very expensive because we are a Mexican company and when you translate dollars to pesos the cost is very high. The solution is very expensive for Mexican companies. I understand that they have international prices, but I do not think it offsets the price enough for many companies in countries, such as Mexico. The amount it is reduced is not a massive percentage."
"When we first bought it, it was a bit expensive, but it was worth it. The licensing was straightforward."
"Very costly product."
"CrowdStrike Falcon can be more expensive than some competitors, and its base price doesn't cover every feature."
"The more endpoints an organization adds the cheaper the cost."
"Our licensing fees were between $50,000 and $60,000 per year, which was pretty expensive for a small business."
"The cost of CrowdStrike Falcon could be reduced. It is quite expensive if you compare it to other solutions, such as Blue Coat, Symantec, McAfee, or Kaspersky."
"The pricing and licensing are reasonable. I don't think we are getting charged more than what it is worth. It is fair, but I do not like how it is a la carte. I realize they do that so other organizations can buy and get the agent, getting it cheaper than you could otherwise. However, if you want the main core package, which has all the main features with the exception of maybe the multi-cloud protections, that can get pricier for an organization. So, you have to pick and choose what you want. I do not care for a la carte pricing."
"The cost is usually a challenge in the industry. I think we pay around sixty-eight dollars."
"The price is too high."
"It has an annual license, and it is not that expensive."
"We have a license. And, we found the cost high. We contacted them and talked to them about the ratio of the US dollar versus the Indian rupee and then we came to a solution."
"EnCase is an affordable solution."
"We have a license. And, we found the cost high. We contacted them and talked to them about the ratio of the US dollar versus the Indian rupee and then we came to a solution."
"​The product is affordable and user-friendly.​"
report
Use our free recommendation engine to learn which Extended Detection and Response (XDR) solutions are best for your needs.
890,088 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Construction Company
13%
Financial Services Firm
12%
Comms Service Provider
8%
Manufacturing Company
7%
Financial Services Firm
11%
Computer Software Company
10%
Manufacturing Company
9%
Government
6%
Performing Arts
12%
Financial Services Firm
8%
Government
8%
Manufacturing Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business45
Midsize Enterprise20
Large Enterprise48
By reviewers
Company SizeCount
Small Business53
Midsize Enterprise33
Large Enterprise63
By reviewers
Company SizeCount
Small Business2
Midsize Enterprise2
Large Enterprise3
 

Questions from the Community

Cortex XDR by Palo Alto vs. Sentinel One
Cortex XDR by Palo Alto vs. SentinelOne SentinelOne offers very detailed specifics with regard to risks or attacks. ...
Comparing CrowdStrike Falcon to Cortex XDR (Palo Alto)
Cortex XDR by Palo Alto vs. CrowdStrike Falcon Both Cortex XDR and Crowd Strike Falcon offer cloud-based solutions th...
How is Cortex XDR compared with Microsoft Defender?
Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface,...
How does Crowdstrike Falcon compare with Darktrace?
Both of these products perform similarly and have many outstanding attributes. CrowdStrike Falcon offers an amazing u...
How does Microsoft Defender for Endpoint compare with Crowdstrike Falcon?
The CrowdStrike solution delivers a lot of information about incidents. It has a very light sensor that will never pu...
Is Crowdstrike Falcon better than Trend Micro Deep Security?
I like that Crowdstrike allows me to easily correlate data between my firewalls. What’s most useful for my needs is t...
Ask a question
Earn 20 points
 

Also Known As

Cyvera, Cortex XDR, Palo Alto Networks Traps
CrowdStrike Falcon XDR, CrowdStrike Falcon Threat Intelligence, CrowdStrike Identity Protection, CrowdStrike Falcon Surface, CrowdStrike Falcon Platform
EnCase eDiscovery
 

Overview

 

Sample Customers

CBI Health Group, University Honda, VakifBank
Information Not Available
Ontario Ministry of Government, Aerospace Company, Chesterfield Police Department
Find out what your peers are saying about CrowdStrike Falcon vs. OpenText EnCase eDiscovery and other solutions. Updated: May 2025.
890,088 professionals have used our research since 2012.