No more typing reviews! Try our Samantha, our new voice AI agent.

Microsoft Defender for Business vs OpenText Core Endpoint Protection​ comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Mar 29, 2026

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cortex XDR by Palo Alto Net...
Sponsored
Ranking in Endpoint Protection Platform (EPP)
4th
Average Rating
8.4
Reviews Sentiment
6.8
Number of Reviews
114
Ranking in other categories
Endpoint Detection and Response (EDR) (6th), Extended Detection and Response (XDR) (4th), Ransomware Protection (2nd), AI-Powered Cybersecurity Platforms (1st)
Microsoft Defender for Busi...
Ranking in Endpoint Protection Platform (EPP)
12th
Average Rating
7.6
Reviews Sentiment
6.6
Number of Reviews
20
Ranking in other categories
Microsoft Security Suite (15th)
OpenText Core Endpoint Prot...
Ranking in Endpoint Protection Platform (EPP)
39th
Average Rating
7.8
Reviews Sentiment
5.8
Number of Reviews
31
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of July 2026, in the Endpoint Protection Platform (EPP) category, the mindshare of Cortex XDR by Palo Alto Networks is 3.8%, up from 3.7% compared to the previous year. The mindshare of Microsoft Defender for Business is 1.5%, down from 2.0% compared to the previous year. The mindshare of OpenText Core Endpoint Protection​ is 1.7%, up from 0.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Endpoint Protection Platform (EPP) Mindshare Distribution
ProductMindshare (%)
Cortex XDR by Palo Alto Networks3.8%
Microsoft Defender for Business1.5%
OpenText Core Endpoint Protection​1.7%
Other93.0%
Endpoint Protection Platform (EPP)
 

Featured Reviews

ABHISHEK_SINGH - PeerSpot reviewer
Senior Process Expert at A.P. Moller - Maersk
Gained full visibility and streamlined threat detection through behavior-based insights and AI integration
Initially, we got to have a lot of false positives when we onboarded, but nowadays it's quite smooth. We have fine-tuned our security policies and allowed different levels of policies to get rid of those false positives. Currently, we are getting a fairly good amount of incidents that are not false positives or benign, but actionable items. The process is streamlined. In the initial days, the operations used to get involved in a lot of benign and other activities, but now the process is streamlined. We are leveraging the auto-detection and remediation plans. The operations teams are now more involved in other business roles as well, not just looking into the logs and fetching out what's happening there. They have fixed a lot of things. Initially, they didn't have IAC code drift detection, cloud posture management, or security posture management, but they have those now. They purchased different vendors and did a merger with that. They have now Prisma Cloud that gets integrated and now they are working with Cortex Cloud. Everything that was negative has now been addressed, and the product altogether looks to be in a very better and mature shape now. Currently, it's more or less detecting the workloads with AI-based best practices. Since most organizations are consuming AI agents and other things, we are looking forward to seeing what other feature enhancements Palo Alto can support in that.
Paritosh Jani - PeerSpot reviewer
Associate VP (Managed Information Technology Services) at Dev Information Tech Pvt Ltd
Has delivered automated threat response and streamlined integration with advanced tools
The best features of Microsoft Defender for Business include it coming as an XDR solution which provides automated investigations, remediations, and endpoint detection and response. Moreover, it can be tightly integrated with vulnerability management or detecting vulnerabilities and pushing them to the SIEM solution. I utilize the advanced threat hunting feature of Microsoft Defender for Business and find it helpful; it's good and improving with every update. Microsoft Defender for Business integrates effectively with the Microsoft ecosystem as with Azure Sentinel, and it has a two-way natural integration. Apart from that, it also integrates with industry SIEM solutions such as Splunk.
reviewer2584380 - PeerSpot reviewer
vCIO At Grove Networks Inc. at a computer software company with 11-50 employees
Improving threat detection is critical for enhanced protection
We use Webroot Business Endpoint Protection as a NextGen antivirus solution for our clients. It's included in the contract we have with our clients as a cost-effective option for antivirus protection Webroot Business Endpoint Protection is cost-effective for rolling it out to all of our clients,…

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"I don't have to do much monitoring with it; I don't have to have anybody manually looking at this, it gives us reports, and it lets us know if something needs to be addressed, and we can easily address it."
"We can use Cortex XDR to get the entire graph of the incidents from source to destination, and we can take remedial action."
"The level of security I get for my endpoints and servers is extremely valuable."
"The stability of the solution is very good. We have about 100 users on it right now, and we use it twice a week."
"Cortex is the best solution for avoiding security breaches, malware attacks, and other kinds of security issues."
"If you are looking to deploy a security solution as a whole, this is a good option."
"The behavior-based detection feature is valuable."
"Being a cloud solution it is very flexible in serving internal and external connections and a broad range of devices."
"Microsoft Defender for Business is good for small and medium-sized businesses. It offers solid security flexibility and integration with tools like Microsoft Lighthouse and some other software. It takes some of the features of Defender for Endpoint EDR and provides those services for small and medium-sized business environments."
"Defender is top class in terms of functional security."
"The solution is effective, continuously improving, and highly regarded, especially with Microsoft's leadership in the industry."
"It is scalable."
"The security features in Microsoft Defender for Business that have been most effective for our company include the way it's built-in and intertwined into all the operating systems, giving us a good opportunity to holistically block things for the organization using that tenant."
"If you're an Intune user, you can bring in certain capabilities like system-hardening policies, which further enhances the security."
"The best features of Microsoft Defender for Business include it coming as an XDR solution which provides automated investigations, remediations, and endpoint detection and response."
"I haven't had any problems with the tool's stability."
"The traffic security monitoring, traffic application access feature called the agent, the main feature which is the endpoint security feature are the ones I found valuable. And it also had the in branch security in kind of SD WAN, good three hundred and sixty protection. It is specific and there is ease of deployment also present."
"Working as part of our security stack, it has protected us from countless attacks."
"It is excellent endpoint protection for mobiles that does everything it says it will."
"Webroot's tech support is pretty good; they've given me some pointers."
"The most valuable aspect of the solution is that they have the lightest agent, as it is only six MBs, installs in a matter of seconds, is very lightweight, and has a very minimal, negligible performance impact on the machine and endpoints."
"Speed"
"The most valuable aspect of Webroot Business Endpoint Protection is that I have never gotten malware with it."
"It is very light, it is the only solution that can be installed on a machine that already has an antivirus, and it is a pretty complete solution."
 

Cons

"Being able to filter the events to see those that are related to the actual alert would save time spent by the engineer."
"It is not a suitable solution if you are looking for a single product with multiple features such as DLP, encryption, rollback, etc."
"The downside to the solution is that there are a large number of false positives."
"In reporting they should have a customizable dashboard due to the fact that C-level people don't like reporting to the IT department. They prefer to have a real-time dashboard. That kind of dashboard needs to have various customizations."
"As an improvement, I would like to see enhanced connection speeds."
"The GUI could be improved. It's a little bit cumbersome. It could be more user-friendly."
"Basically, they don't provide customer support tools just to investigate the logs."
"The tool needs to be improved in terms of integration and interface."
"The biggest one is that Defender needs to be more proactive to the emerging threats. There can be tighter integration with email, especially how it integrates with our email system, which is the Microsoft Outlook suite. There should be the ability to react a lot quicker to emerging threats because sometimes, it takes a few days before some of these new threats are fully identified, and we need that to be a few hours."
"If I need logs and don't have local storage bundled with Defender, I need to add workspace and log analytics, which is costly for storing logs of 2 GB, 5 GB, 10 GB."
"Defender's reporting is rather scattered, and its URL filtering mechanism doesn't really work."
"Technical support could be faster to respond."
"Threat protection could be improved even though it is already a built-in feature."
"The areas where Microsoft Defender for Business could improve include the support, installation process, and wiki. I should be able to find solutions to issues quickly without having to delve too deep."
"The threat detection capabilities require significant customization for multistage threat detection."
"We face a licensing issue with Windows 11 Enterprise not reflecting in our portal, which affects activation. Microsoft's support did not resolve this issue, even after sharing remote desktop and screen details."
"I believe that Webroot Business Endpoint Protection should offer a more modern UI."
"We need more control over when upgrades to the app are rolled out."
"We were attacked by CryptoLock. It didn't protect us in the way we needed to and an attack was able to get through their defenses."
"The only complaint I have with Webroot is its inability to prevent UoD phishing and its inability to check against bots or block anti-attacks. Plus the URL server is in zero-definition."
"Usually, when it comes to reliability, McAfee and Norton are at 99 percent. Webroot's percentage is lower."
"I did notice that my OS slowed down, but I don't know if that's due to Webroot."
"It needs to improve the problems with the faster connection, and have a huge reduction in false positives."
"Their customer support should be better. We started having some issues with it, and we didn't get the required support."
 

Pricing and Cost Advice

"The cost depends on your chosen license type, like Pro or other licenses."
"Our customers have expressed that the price is high."
"This is an expensive solution."
"It is cost-effective compared to similar solutions. It fits for the small businesses through to the big businesses."
"Compared to CrowdStrike, Cortex XDR is an expensive solution."
"I don't have any issues with the pricing. We are satisfied with the price."
"Its pricing is kind of in line with its competitors and everybody else out there."
"We didn't have to pay any additional fee for the cloud instance. It just came with the renewal, which was nice."
"It has to get more competitive because we are starting to see some of the competitors providing better pricing, and some of it, of course, is to gain market share. The Defender product pricing is probably a little higher than the competitors."
"The tool is cheap, while some other solutions are more expensive. I remember the tool cost about five euros for a workstation or for a user on a monthly basis."
"Defender for Business is included by default with an Office 365 premium subscription."
"Since we're a nonprofit, we get pretty good discounts on the tool."
"The tool's cost has been a little high, but I do not think it was terrible."
"If you purchase for clients, then you are the managing billing entity. It's better to either get a monthly subscription check from your clients, or to prepay for the year (so as to not keep cash in reserve to pay the bill each month) IMHO."
"We evaluate other options using multiple choices, best value, management and functionality."
"We are on an annual subscription for the use of Webroot Business Endpoint Protection."
"The solution is pretty cheap, actually. At our level, which is at 2,500 endpoints, we're paying 87 cents an agent per month."
"I can't recall the exact pricing, but I believe there is a monthly fee of $20-30 per user."
"The pricing is high."
"With Webroot Business Endpoint Protection, I can select a yearly billing cycle."
"Webroot is less expensive than SentinelOne."
report
Use our free recommendation engine to learn which Endpoint Protection Platform (EPP) solutions are best for your needs.
903,257 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Construction Company
12%
Financial Services Firm
11%
Manufacturing Company
10%
Comms Service Provider
9%
Computer Software Company
15%
Comms Service Provider
9%
Financial Services Firm
9%
Manufacturing Company
6%
Construction Company
12%
Financial Services Firm
8%
Manufacturing Company
8%
Comms Service Provider
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business46
Midsize Enterprise21
Large Enterprise53
By reviewers
Company SizeCount
Small Business15
Midsize Enterprise2
Large Enterprise4
By reviewers
Company SizeCount
Small Business35
Midsize Enterprise2
Large Enterprise2
 

Questions from the Community

Cortex XDR by Palo Alto vs. Sentinel One
Cortex XDR by Palo Alto vs. SentinelOne SentinelOne offers very detailed specifics with regard to risks or attacks. ...
Comparing CrowdStrike Falcon to Cortex XDR (Palo Alto)
Cortex XDR by Palo Alto vs. CrowdStrike Falcon Both Cortex XDR and Crowd Strike Falcon offer cloud-based solutions th...
How is Cortex XDR compared with Microsoft Defender?
Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface,...
What is your experience regarding pricing and costs for Microsoft Defender for Business?
Our thoughts on the pricing for Microsoft Defender for Business are that we wish it could be better. If the pricing w...
What needs improvement with Microsoft Defender for Business?
I see room for improvement in Microsoft Defender for Business, particularly regarding the consolidation of all securi...
What is your experience regarding pricing and costs for Webroot Business Endpoint Protection?
Webroot Business Endpoint Protection is probably on the cheaper side, so I would rate their pricing a one or a two ou...
What needs improvement with Webroot Business Endpoint Protection?
Webroot Business Endpoint Protection needs to improve its ability to detect threats. It does not do what it's adverti...
What is your primary use case for Webroot Business Endpoint Protection?
We use Webroot Business Endpoint Protection as a NextGen antivirus solution for our clients. It's included in the con...
 

Also Known As

Cyvera, Cortex XDR, Palo Alto Networks Traps
No data available
Webroot SecureAnywhere Business Endpoint Protection
 

Overview

 

Sample Customers

CBI Health Group, University Honda, VakifBank
Information Not Available
Mytech Partners
Find out what your peers are saying about Microsoft Defender for Business vs. OpenText Core Endpoint Protection​ and other solutions. Updated: June 2026.
903,257 professionals have used our research since 2012.