Try our new research platform with insights from 80,000+ expert users

Kaspersky Endpoint Detection and Response Expert vs Microsoft Defender for Endpoint comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Sep 9, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Kaspersky Endpoint Detectio...
Ranking in Endpoint Detection and Response (EDR)
19th
Average Rating
8.2
Reviews Sentiment
7.3
Number of Reviews
46
Ranking in other categories
No ranking in other categories
Microsoft Defender for Endp...
Ranking in Endpoint Detection and Response (EDR)
3rd
Average Rating
8.2
Reviews Sentiment
7.1
Number of Reviews
192
Ranking in other categories
Endpoint Protection Platform (EPP) (1st), Advanced Threat Protection (ATP) (2nd), Anti-Malware Tools (1st), Microsoft Security Suite (5th)
 

Mindshare comparison

As of April 2025, in the Endpoint Detection and Response (EDR) category, the mindshare of Kaspersky Endpoint Detection and Response Expert is 1.4%, up from 1.0% compared to the previous year. The mindshare of Microsoft Defender for Endpoint is 10.6%, down from 14.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Endpoint Detection and Response (EDR)
 

Featured Reviews

Rodrigo Censi - PeerSpot reviewer
Patch management and integration capabilities drive effective endpoint response management
We work with Kaspersky and two modalities: the Censi final and Censi license. Most of our clients work in financial areas and industry. Our regular enterprise business relies on these solutions Kaspersky is viable with ADR; the Endpoint Detection response feature and the BitLocker management…
AnuragSrivastava - PeerSpot reviewer
Provides detailed visibility into threats but the ability to add exceptions needs improvement
One major item for improvement is the ability to add exceptions. We can add some exceptions, but not at the level we need to. The second major area for improvement involves enhanced capabilities for different operating systems or platforms. That is, even though we have coverage for different operating systems or platforms such as Linux, we don't get all of the controls and enhanced capabilities that are available with Windows devices. Reporting could also be improved because, at present, we get limited results at times. For example, in an environment with more than 100,000 devices, you may just get 10,000 results when you run a report.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Stability-wise, I rate the solution a ten out of ten."
"Kaspersky Endpoint Detection and Response is an effective protection solution."
"The most valuable features are the reports."
"We can scale the solution."
"The solution provides high-end security that is critical for financial institutions and bankers."
"We have a central console and from there you can monitor all workstations via an agent."
"The product is very easy to use."
"Kaspersky Endpoint Detection and Response is a stable solution."
"The technical support from Microsoft is very good. We are part of the Microsoft Suite, and from being part of this we have consistent news regarding Microsoft Defender for Endpoint."
"The most valuable feature is ransomware protection, which can detect malicious activity from IPs or a malicious payload in DLLs, or other things that can corrupt the system."
"Defender for Endpoint allows us automatic resolutions if a unit is compromised or if a user clicks a malicious link."
"The fact that it's from Microsoft, you don't have many false positives, unlike products from other vendors might have."
"We like that it has a free version available."
"The solution is highly scalable."
"Defender for Endpoint is a robust solution that works well out-of-the-box."
"Within its class I think, it has a high and decent detection rate."
 

Cons

"I would like to integrate Kaspersky with my Log Collector SIEM. Right now that's not possible."
"The product should release more frequent updates. The tool needs to improve its scalability as well."
"It's not a simple implementation."
"My opinion is that behavior detection could work better. This feature gets a high rate of false positives."
"Kaspersky needs to strengthen its standing in the market."
"Device control is lacking in EDR."
"I am not happy with Kaspersky's support since basic support is very cool unless you pay for some advanced support, in which you get better responses and feedback from Kaspersky's team."
"The solution can improve by providing automatic fixing of vulnerabilities and reducing the resources used in the server component and endpoint agent. They are very bulky and use a lot of CPU, memory, and hard drive resources."
"The frequency of the patching, and the frequency of the updates, are not included with the free version."
"A concern is ransomware, whether people can penetrate and encrypt my data or steal my credit card/banking information."
"The major area for improvement is the integration with a managed service provider."
"It's not easy to create special allowances for certain groups of users. It can be a little heavy-handed in some areas where Microsoft has decided to lock a feature out, meaning they make it hard to make an exception... One company we work with needed to use about 20 different thumb drives for about 20 users. To make that exception for them was very difficult. In fact, you can't really make an exception. But what you can do is allow them to use it and, while it will still alert, you can actually suppress those alerts."
"I am not sure if I will be using this product in the future because of the price."
"If there were more template queries in the library, that would make it much easier. They could have basic things, like, "Where's the IP for this user?" or, "What file was downloaded from this user?" If there were more of those basic queries that would help."
"Sometimes, there are difficulties in downloading a file considered as malicious."
"Lacks some additional integration."
 

Pricing and Cost Advice

"Kaspersky is licensed on a yearly basis."
"EDR is priced on the cheaper side. Licensing for EDR is available on a yearly basis for around 80 SAR a year."
"Kaspersky's pricing is very competitive when it comes to comparison with the other solutions."
"There is an annual license to use Kaspersky Endpoint Detection and Response. The price overall is a bit expensive when compared to other solutions. There are not any additional fees other than the license."
"The solution isn't the cheapest considering what you get. I would rate the pricing as seven out of ten."
"The solution is worth its cost so I rate pricing a ten out of ten."
"We were on a three-year license to use Kaspersky Endpoint Detection and Response. The price could be better."
"The license for EDR costs about 1,000 pesos per user. I would rate the pricing as four out of five."
"We went for Microsoft Defender once we were informed that it would be part of our Office 365 package. So, we combined the licensing for the OS with Office 365. Yeah. We thought it was a good bargain."
"You do not need to pay any additional costs for antivirus and anti-malware solutions for endpoint protection."
"The license for Microsoft Defender for Endpoint is included in the license for the Microsoft Windows operating system."
"It is free. It is included in Windows 10."
"Because Microsoft Defender comes as an add-on, it can be a bit expensive if you're trying to buying it separately. Another option is to upgrade, but the enterprise licenses for Microsoft can also be quite a bit pricey. Overall, the cost of Microsoft Defender compared to that of other endpoint detection solutions is slightly higher."
"I got it with the Microsoft Windows license."
"The product is free of charge and comes integrated into Windows."
"Its price at the moment is very good because you get a lot of value for your money, especially with the subscriptions. If you have the E1, E3, or E5 enterprise subscription, you pay per month per user, and you get almost an infinite number of solutions. If you compare the price to the number of solutions that you get, it is a very good deal."
report
Use our free recommendation engine to learn which Endpoint Detection and Response (EDR) solutions are best for your needs.
848,716 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
15%
Educational Organization
9%
Financial Services Firm
9%
Comms Service Provider
8%
Educational Organization
26%
Computer Software Company
11%
Government
7%
Financial Services Firm
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about Kaspersky Endpoint Detection and Response Expert?
The integration with our hypervisor is quite smooth, especially within the Kaspersky Enterprise environment. We have many virtual machines, and the integration is helpful.
What is your experience regarding pricing and costs for Kaspersky Endpoint Detection and Response Expert?
If one is cheap, ten is expensive, I rate the product’s price as a seven out of ten, especially if I compare it with CrowdStrike.
What needs improvement with Kaspersky Endpoint Detection and Response Expert?
The Kaspersky console could be easier to navigate and generate reports from. We've got Stripe in the method of deployment, which makes it easier and requires lower integration from my team. Deploym...
How is Cortex XDR compared with Microsoft Defender?
Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface, applies behavioral-based endpoint protection and response, and includes risk-ba...
Which offers better endpoint security - Symantec or Microsoft Defender?
We use Symantec because we do not use MS Enterprise products, but in my opinion, Microsoft Defender is a superior solution. Microsoft Defender for Endpoint is a cloud-delivered endpoint security s...
How does Microsoft Defender for Endpoint compare with Crowdstrike Falcon?
The CrowdStrike solution delivers a lot of information about incidents. It has a very light sensor that will never push your machine hardware to "test", you don't have the usual "scan now" feature ...
 

Also Known As

Kaspersky EDR
Microsoft Defender ATP, Microsoft Defender Advanced Threat Protection, MS Defender for Endpoint, Microsoft Defender Antivirus
 

Interactive Demo

Demo not available
 

Overview

 

Sample Customers

Ferrari, Insolar, Tael, Republic of Serbia
Petrofrac, Metro CSG, Christus Health
Find out what your peers are saying about Kaspersky Endpoint Detection and Response Expert vs. Microsoft Defender for Endpoint and other solutions. Updated: April 2025.
848,716 professionals have used our research since 2012.