Try our new research platform with insights from 80,000+ expert users

Microsoft Defender for Endpoint vs OPSWAT Filescan Sandbox comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Microsoft Defender for Endp...
Ranking in Anti-Malware Tools
1st
Average Rating
8.2
Reviews Sentiment
7.1
Number of Reviews
192
Ranking in other categories
Endpoint Protection Platform (EPP) (1st), Advanced Threat Protection (ATP) (2nd), Endpoint Detection and Response (EDR) (3rd), Microsoft Security Suite (5th)
OPSWAT Filescan Sandbox
Ranking in Anti-Malware Tools
30th
Average Rating
8.0
Reviews Sentiment
7.5
Number of Reviews
1
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of April 2025, in the Anti-Malware Tools category, the mindshare of Microsoft Defender for Endpoint is 17.0%, down from 22.2% compared to the previous year. The mindshare of OPSWAT Filescan Sandbox is 0.9%, up from 0.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Anti-Malware Tools
 

Featured Reviews

AnuragSrivastava - PeerSpot reviewer
Provides detailed visibility into threats but the ability to add exceptions needs improvement
One major item for improvement is the ability to add exceptions. We can add some exceptions, but not at the level we need to. The second major area for improvement involves enhanced capabilities for different operating systems or platforms. That is, even though we have coverage for different operating systems or platforms such as Linux, we don't get all of the controls and enhanced capabilities that are available with Windows devices. Reporting could also be improved because, at present, we get limited results at times. For example, in an environment with more than 100,000 devices, you may just get 10,000 results when you run a report.
reviewer2390334 - PeerSpot reviewer
An easily integratable solution that helps scan files
I recommend leveraging the data and using case transcripts to understand how the tool can address your needs. Additionally, testing the solution in your environment can be helpful. If we keep it updated and ensure that the engines and the latest definitions are up-to-date, the solution functions without problems. It continues scanning without any delays. I rate the product an 8 out of 10. With OPSWAT Filescan Sandbox, we can scan various file types, including IOCs, Python compressors, and QR codes from images. All the configuration settings are user-dependent and can be modified over time. It's highly configurable—you can easily navigate to the console, click on any option, and quickly adjust settings, including the default size.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Microsoft Defender for Endpoint is a comprehensive and scalable solution for protecting on-premises and hybrid infrastructure."
"We use Microsoft Defender for the antivirus."
"The whole bundle of the product, which is similar to other Microsoft products, is valuable. Ten years ago, you had third-party stuff for different things. You had one solution for email archiving and another third-party one for something else. Nowadays, Microsoft Office covers all the stuff that was formerly covered by third-party solutions. It is the same with antivirus. The functionality is just basic. You have the scanning, and then you also have a kind of cloud-based protection and reporting about your environment. With Microsoft Security Center, you have a complete overview of your environment. You know the software inventory, and you have security recommendations. You can not only see that the antivirus is up to date; you can also see where are the vulnerabilities in your system. Microsoft Security Center tells you where you have old, deprecated software and what kind of CVEs are addressed. It's really cool stuff."
"It is a straightforward setup."
"It's absolutely free to use."
"Microsoft Defender for Endpoint's most valuable feature is its ease of use."
"It's one of the best antiviruses on the market."
"In terms of the installation, ease of use, and user interface, Defender has been great so far."
"What I find most valuable about it is the design interface."
 

Cons

"Lacks some additional integration."
"Microsoft Defender for Endpoint is secure but when it comes to security all solutions could improve security."
"I would like Microsoft to have some kind of direct integration for USB controls. They have GPO and other controls to control the access of the USB drives on devices, but if there is something that can be directly implemented into the portal, it would be good. There should be a way to control via a cloud portal or something like that in a dynamic way. USB control for data exfiltration would be a good feature to implement. Currently, there are ways to do it, but it involves too many different things. You have to implement it via GPOs and other stuff, and then you move or copy those big files via Defender ATP. If there is a simple way of implementing those features, it would be great."
"It can be more secure."
"Our team's knowledge of the solution needs to be improved, and Microsoft could do a better job conveying the necessary information to users. We could proactively use the tool more and explore capabilities we are not yet utilizing."
"More integration with different platforms is an area for improvement for this product, and should be included in its next release."
"On the Mac OS platform, there is no parity between Windows and Mac OS. The solution is very feature-rich and very well-integrated into Windows, and I guess baked into Windows 10 and Windows 11. Whereas, on the Mac OS platform, there is still some work there to give it a more feature-reach platform."
"Microsoft Defender for Endpoint should include better automation that will make it faster to detect the latest threats happening across the world."
"There's a size limitation, allowing us to scan only small files."
 

Pricing and Cost Advice

"We have a bundle where the price includes all Microsoft products."
"This product is included in the pricing for Windows."
"They are now doing it on an endpoint basis. It is based on the number of endpoints, which is good."
"The normal, standalone model, is not expensive, but the enterprise model that includes the bundle with email and some web protection, is a bit more expensive."
"It is an expensive solution. It would be nice if it could be included with the Microsoft Office package."
"Buying individual point products would've cost us a lot more money than one integrated solution that also capitalizes on Teams Voice and things of that nature. Given our size, buying individual products would have easily cost us a million dollars."
"Licensing models of Microsoft are renowned for being complex. We just purchased the whole E5 stack. With E5 licenses for users, we get access to a bunch of features that are not just related to security. I would rate them a three out of five in terms of pricing."
"Microsoft Defender for Endpoint is included with a Microsoft E5 license."
"The tool is free, but there's a size limitation, allowing us to scan only small files."
report
Use our free recommendation engine to learn which Anti-Malware Tools solutions are best for your needs.
842,767 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Educational Organization
27%
Computer Software Company
11%
Government
7%
Financial Services Firm
7%
Computer Software Company
16%
Financial Services Firm
14%
Insurance Company
11%
Manufacturing Company
9%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

How is Cortex XDR compared with Microsoft Defender?
Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface, applies behavioral-based endpoint protection and response, and includes risk-ba...
Which offers better endpoint security - Symantec or Microsoft Defender?
We use Symantec because we do not use MS Enterprise products, but in my opinion, Microsoft Defender is a superior solution. Microsoft Defender for Endpoint is a cloud-delivered endpoint security s...
How does Microsoft Defender for Endpoint compare with Crowdstrike Falcon?
The CrowdStrike solution delivers a lot of information about incidents. It has a very light sensor that will never push your machine hardware to "test", you don't have the usual "scan now" feature ...
What do you like most about OPSWAT Filescan Sandbox?
What I find most valuable about it is the design interface.
What is your experience regarding pricing and costs for OPSWAT Filescan Sandbox?
The tool is free, but there's a size limitation, allowing us to scan only small files.
 

Also Known As

Microsoft Defender ATP, Microsoft Defender Advanced Threat Protection, MS Defender for Endpoint, Microsoft Defender Antivirus
No data available
 

Interactive Demo

Demo not available
 

Overview

 

Sample Customers

Petrofrac, Metro CSG, Christus Health
Information Not Available
Find out what your peers are saying about Microsoft, SentinelOne, VirusTotal and others in Anti-Malware Tools. Updated: January 2025.
842,767 professionals have used our research since 2012.