Try our new research platform with insights from 80,000+ expert users

Datto Endpoint Detection and Response (EDR) vs Microsoft Defender for Endpoint comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Sep 9, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Datto Endpoint Detection an...
Ranking in Endpoint Detection and Response (EDR)
31st
Average Rating
7.6
Reviews Sentiment
7.0
Number of Reviews
4
Ranking in other categories
No ranking in other categories
Microsoft Defender for Endp...
Ranking in Endpoint Detection and Response (EDR)
3rd
Average Rating
8.2
Reviews Sentiment
7.1
Number of Reviews
192
Ranking in other categories
Endpoint Protection Platform (EPP) (1st), Advanced Threat Protection (ATP) (2nd), Anti-Malware Tools (1st), Microsoft Security Suite (5th)
 

Mindshare comparison

As of April 2025, in the Endpoint Detection and Response (EDR) category, the mindshare of Datto Endpoint Detection and Response (EDR) is 2.5%, up from 1.2% compared to the previous year. The mindshare of Microsoft Defender for Endpoint is 10.6%, down from 14.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Endpoint Detection and Response (EDR)
 

Featured Reviews

Aurélien Boeyen - PeerSpot reviewer
Useful endpoint visibility, high availability, and helpful support
Datto EDR is used for detection and response for endpoints The most valuable feature of Datto EDR is the visibility of the endpoints. The solution could improve by having more deployment methods. I have been using Datto Endpoint Detection and Response (EDR) for approximately three years. Datto…
AnuragSrivastava - PeerSpot reviewer
Provides detailed visibility into threats but the ability to add exceptions needs improvement
One major item for improvement is the ability to add exceptions. We can add some exceptions, but not at the level we need to. The second major area for improvement involves enhanced capabilities for different operating systems or platforms. That is, even though we have coverage for different operating systems or platforms such as Linux, we don't get all of the controls and enhanced capabilities that are available with Windows devices. Reporting could also be improved because, at present, we get limited results at times. For example, in an environment with more than 100,000 devices, you may just get 10,000 results when you run a report.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Datto Endpoint Detection and Response is a perfect product for endpoint security."
"The most valuable feature of Datto EDR is the visibility of the endpoints."
"The insight that the solution provides is the most valuable aspect. The security scanning they do is excellent."
"The ease of deployment has been good."
"Integration between Microsoft products is very easy."
"Defender is stable enough and is competitive with the other products in the market."
"The most valuable aspect lies in its automation capabilities, particularly within security automation."
"Offers good protection."
"Defender has very little impact on the end-user and the agent works quite well with a minimal impact on the client and server."
"The patch updates and version updates are very good. Those happen on an automated basis whenever I'm connecting to the organization network, either through LAN or through the VPN."
"The best part is that it is built into Windows, whether it is a server base or a desktop base, which gives more control over the operating system. Because Defender, the operating system, and the Office solution are by Microsoft, everything is working like hand-in-glove. Its administrative overhead is less because a desktop user has already got some experience of how to handle a Microsoft Defender notification or administer it."
"Technical support is good."
 

Cons

"The solution should allow the automation of playbooks."
"The deployment of the solution right now is terrible. We find it to be very bad. It could be improved enormously."
"The inclusion of web filtering would be good."
"The solution could improve by having more deployment methods."
"The pricing could be a bit better."
"The solution should be updated by Microsoft with new features from time to time."
"Our team's knowledge of the solution needs to be improved, and Microsoft could do a better job conveying the necessary information to users. We could proactively use the tool more and explore capabilities we are not yet utilizing."
"Microsoft Defender for Endpoint can improve by providing more and different types of reports."
"The time it takes to implement policies has room for improvement."
"It can be more secure."
"Microsoft Defender for Endpoint is secure but when it comes to security all solutions could improve security."
"Microsoft Defender in the basic form is not very useful for managing the security environment. The free version is not capable of covering the needs of centralized management, EDR, and behavioral analysis. If you don't have the commercial version, you can't have centralized management and set up the policies and other things. Each client is a standalone installation, which is not useful for security in an enterprise model."
 

Pricing and Cost Advice

"There is an annual license to use this solution. The price of the solution can be expensive depending on the company."
"Datto Endpoint Detection and Response is not an expensive solution."
"The solution is included with Microsoft Windows."
"The license for Microsoft Windows covers Microsoft Defender for Endpoint."
"The nice thing about Defender and Sentinel is that the cost is based on the data logs that you ingest from the Defender endpoints and data connectors. I don't have to buy a 25- or 50- or 1,000-user or enterprise license. I can buy one license at a time."
"We have an enterprise agreement so from my perspective, this is a product that ships with Windows and it is not priced standalone."
"If you don't purchase the advanced threat protection then there is no additional charge."
"The pricing is competitive."
"Defender doesn't cost that much. When you use Microsoft technology, you can start with the free version and see how much the technology helps your organization solve security problems before you use the subscription. They also do this pay-as-you-go model, so you only pay when you use it."
"The base price for an E5 license, which includes Enterprise Mobility + Security E5, is $57 per user per month."
report
Use our free recommendation engine to learn which Endpoint Detection and Response (EDR) solutions are best for your needs.
845,040 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
16%
Comms Service Provider
11%
Manufacturing Company
7%
Retailer
6%
Educational Organization
27%
Computer Software Company
11%
Government
7%
Financial Services Firm
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

What do you like most about Infocyte HUNT?
Datto Endpoint Detection and Response is a perfect product for endpoint security.
What is your experience regarding pricing and costs for Infocyte HUNT?
The price is quite low. On a scale of one to ten, I would rate it a four, meaning it is quite cheap.
What needs improvement with Infocyte HUNT?
The inclusion of web filtering would be good.
How is Cortex XDR compared with Microsoft Defender?
Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface, applies behavioral-based endpoint protection and response, and includes risk-ba...
Which offers better endpoint security - Symantec or Microsoft Defender?
We use Symantec because we do not use MS Enterprise products, but in my opinion, Microsoft Defender is a superior solution. Microsoft Defender for Endpoint is a cloud-delivered endpoint security s...
How does Microsoft Defender for Endpoint compare with Crowdstrike Falcon?
The CrowdStrike solution delivers a lot of information about incidents. It has a very light sensor that will never push your machine hardware to "test", you don't have the usual "scan now" feature ...
 

Also Known As

Infocyte HUNT
Microsoft Defender ATP, Microsoft Defender Advanced Threat Protection, MS Defender for Endpoint, Microsoft Defender Antivirus
 

Interactive Demo

Demo not available
 

Overview

 

Sample Customers

Check Point Software, PwC, Grant Thornton, AT&T, DHL, U.S. Department of Defense
Petrofrac, Metro CSG, Christus Health
Find out what your peers are saying about Datto Endpoint Detection and Response (EDR) vs. Microsoft Defender for Endpoint and other solutions. Updated: March 2025.
845,040 professionals have used our research since 2012.