Microsoft Defender XDR vs Snare comparison

The compared Microsoft and Intersect Alliance solutions aren't in the same category. Microsoft is ranked #5 in XDR , with an average rating of 8.4, and holds a 9.6% mindshare in the category. Intersect Alliance is ranked #44 in Log Management , with an average rating of 8.0, and holds a 0.3% mindshare. Additionally, 97% of Microsoft users are willing to recommend the solution, compared to 100% of Intersect Alliance users who would recommend it.

Microsoft Defender XDR

Read 96 Microsoft Defender XDR reviews

7,094 Views
5,434 Comparison Views

97% willing to recommend

Snare

Read 3 Snare reviews

651 Views
466 Comparison Views

100% willing to recommend

Microsoft Defender XDR

Snare

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Microsoft Defender XDR and Snare based on real PeerSpot user reviews.

Find out what your peers are saying about CrowdStrike, SentinelOne, Wazuh and others in Extended Detection and Response (XDR).

To learn more, read our detailed Extended Detection and Response (XDR) Report (Updated: January 2025).

Buyer's Guide

Extended Detection and Response (XDR)

January 2025

Download the complete report

Helped 831,265 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Microsoft Defender XDR

Average Rating

8.4

Reviews Sentiment

7.1

Number of Reviews

Ranking in other categories

Endpoint Detection and Response (EDR) (5th), Extended Detection and Response (XDR) (5th), Microsoft Security Suite (2nd)

Snare

Average Rating

8.0

Reviews Sentiment

7.4

Number of Reviews

Ranking in other categories

Log Management (44th), Security Information and Event Management (SIEM) (43rd)

Mindshare comparison

While both are Security Software solutions, they serve different purposes. Microsoft Defender XDR is designed for Extended Detection and Response (XDR) and holds a mindshare of 9.6%, up 7.4% compared to last year.
Snare, on the other hand, focuses on Log Management, holds 0.3% mindshare, down 0.4% since last year.

Extended Detection and Response (XDR)

Log Management

Featured Reviews

Gabor Nyerd

Enterprise mobility and security evangelist at a financial services firm with 5,001-10,000 employees

Includes four services and four products, which can help organizations a lot

We found that sometimes integrations work, but testing them can take some time. Sometimes, configurations take much longer than expected. We have a configuration in place that needs to be synchronized with another server. However, the servers are four hours apart, so this can cause delays. In general, I believe that the time it takes to configure and test a service should be shorter. Sometimes, it can take a couple of hours to test a single configuration setting. Other times, it is only ten or fifteen minutes, which is normal. However, sometimes, even immediate actions can be triggered by configuration changes, and some settings can take up to eight hours to complete. I believe that this time can be improved. Microsoft is making a lot of improvements to its services in a short period of time. This is a good thing, as it means that the services are constantly being updated and improved. However, it can be challenging for customers to keep up with the changes. For example, a customer may read about an update, understand it, and share it with their colleagues and boss. However, it may take days or weeks to test the update and get the necessary approvals. This can be especially challenging for large customers with many users or machines. In some cases, Microsoft may change a service before the customer has had a chance to implement the previous update. This can be frustrating for customers, as it means that they have to constantly learn new things and adjust their workflows. On the one hand, it is important for Microsoft to keep updating and improving its services. This helps to ensure that the services are meeting the customers' needs and that they are staying ahead of the competition. Microsoft should also be mindful of the challenges that these changes can create for customers. One way to address this challenge is to provide customers with more time to implement changes. Microsoft could also provide more information about upcoming changes so that customers can plan ahead. Ultimately, Microsoft needs to strike a balance between keeping its services up-to-date and providing customers with a smooth transition to new features.

Read full review

Frank Eargle

Information Security Engineer at Glasshouse Systems

A highly scalable solution that is easy to manage and super easy to set up

We use Snare for picking up Windows logs, and we used to use it for SQL as well. We had used it for Linux once or twice. We're mainly using it for Windows and Windows flat files The most valuable feature of Snare is flexibility or the ability to filter all things you don't want and don't have…

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"I like that it's stable. It's been stable for a long time, and Microsoft Defender has done a good job there."

"I rate Microsoft Defender XDR 10 out of 10."

"Scanning, vulnerability reporting, and the dashboard are the most valuable features."

"Advanced hunting is good. I like that. We can drill down to lots of details."

"I have found the ability to delete unwanted threats beneficial."

"The advantage of Microsoft Defender XDR has over other XDRs in the market is that it's easy to use. You can quickly differentiate between alerts, incidents, devices, software, etc. It's easier to investigate an incident, and you have so many options. You can automate investigations and use playbooks. There's also the live response session, which is something you can't find in any other XDR."

"All of the security components are valuable including, antiphishing, antispam, and stage three antivirus."

"The product is very easy to use."

More Microsoft Defender XDR pros

"The best thing about Snare is its format and consistency."

"Snare has good agents, especially for Windows."

"The most valuable feature of Snare is flexibility or the ability to filter all things you don't want and don't have security value."

Cons

"The web filtering solution needs to be improved because currently, it is very simple."

"The design of the user interface could use some work. Sometimes it's hard to find the exact information you need."

"The solution does not offer a unified response and standard data."

"I would like more of the features in Defender for 365 to be included in the smaller licenses. Even if I buy a small license and don't need everything, security shouldn't be a question. Security is one of the main aspects of all projects from our side, so it would be nice to have more features in the smaller licenses."

"There are still some components, such as vulnerability management within the vendor product, where improved integration would be beneficial."

"It would be beneficial to have a more seamless experience with everything consolidated in one place, particularly when dealing with aspects related to the Exchange console."

"The solution can improve the rules and privileges it offers."

"Because of the training model, Defender XDR's automatic response sometimes blocks legitimate users and activities. Also, the UI sometimes responds slowly."

More Microsoft Defender XDR cons

"The solution is now developing a SIEM-like feature on Snare Central Server, but it's not complete yet."

"Users will initially find it difficult to identify the event types and installation in Snare."

"Snare should modernize its GUI a little bit."

Pricing and Cost Advice

"Its licensing and pricing are handled by someone else. My role is limited to incidents or issues with the portal, but you get what you pay for. It is worth the cost."

"Microsoft Defender XDR's licensing is complicated."

"I believe that the pricing of the licensing is fair."

"There are no issues with pricing, but sometimes, the clarity in licensing is a concern."

"While the standalone price of Defender XDR might seem high, its value becomes clear when considering the ease of implementation and smooth integration with our existing Microsoft infrastructure, especially when bundled with other Microsoft products."

"Microsoft Defender falls within a mid-tier price range compared to other security solutions."

"The solution is affordable, and we haven't been hit with any hidden costs. The subscription model is straightforward, and it's easy to understand how much additional features cost. If we need to cancel a license or feature, we do that well in advance to avoid being charged for it, but overall, the pricing and licensing are simple and easy."

"The functionality is fantastic, but for medium and small-sized companies it's overpriced. It would be better if it were a little bit cheaper."

More Microsoft Defender XDR pricing and cost advice

"Snare has reasonable pricing."

"Snare is a cheap solution because a lot of customers are using it."

"On a scale from one to ten, where one is cheap, and ten is expensive, I rate Snare's pricing a four out of ten."

See which vendors are best for you

Use our free recommendation engine to learn which Extended Detection and Response (XDR) solutions are best for your needs.

See recommendations

831,265 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

17%

Financial Services Firm

10%

Government

Manufacturing Company

Computer Software Company

16%

Financial Services Firm

12%

Manufacturing Company

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

What do you like most about Microsoft 365 Defender?

Microsoft Defender XDR provides strong identity protection with comprehensive insights into risky user behavior and potential indicators of compromise.

See all answers

What is your experience regarding pricing and costs for Microsoft 365 Defender?

Licensing is somewhat confusing, particularly when presenting our pitch decks to stakeholders and leveraging key features in premium SKUs, but we managed with some assistance from Microsoft.

See all answers

What needs improvement with Microsoft 365 Defender?

It would be beneficial to reduce the number of clicks required to navigate between blades, as the current navigation and breadcrumb system can be a bit confusing. Some inconsistencies exist between...

See all answers

What do you like most about Snare?

The best thing about Snare is its format and consistency.

See all answers

What is your experience regarding pricing and costs for Snare?

Snare is a cheap solution because a lot of customers are using it.

See all answers

What needs improvement with Snare?

Users will initially find it difficult to identify the event types and installation in Snare.

See all answers

Comparisons

CrowdStrike Falcon vs Microsoft Defender XDR

Compared 33% of the time

Wazuh vs Microsoft Defender XDR

Compared 9% of the time

Microsoft Defender for Cloud vs Microsoft Defender XDR

Compared 7% of the time

Trend Vision One vs Microsoft Defender XDR

Compared 4% of the time

Microsoft Purview Compliance Manager vs Microsoft Defender XDR

Compared 4% of the time

More Microsoft Defender XDR Competitors

syslog-ng vs Snare

Compared 24% of the time

Cribl vs Snare

Compared 19% of the time

LogRhythm SIEM vs Snare

Compared 18% of the time

Splunk Enterprise Security vs Snare

Compared 15% of the time

More Snare Competitors

Product Reports

Buyer's Guide

Microsoft Defender XDR

January 2025

Download Microsoft Defender XDR product report

Buyer's Guide

Log Management

January 2025

Download Snare product report

Also Known As

Microsoft 365 Defender, Microsoft Threat Protection, MS 365 Defender

No data available

Learn More

Microsoft

Intersect Alliance

Overview

Microsoft Defender XDR is a comprehensive security solution designed to protect against threats in the Microsoft 365 environment.

It offers robust security measures, comprehensive threat detection capabilities, and an efficient incident response system. With seamless integration with other Microsoft products and a user-friendly interface, it simplifies security management tasks.

Users have found it effective in detecting and preventing various types of attacks, such as phishing attempts, malware infections, and data breaches.

Watch the Microsoft demo video here: Microsoft Defender XDR demo video.

Snare customers consistently tell us that as the financial and reputational consequences of data breaches, cyber threats like malware and ransomware and the constant risks from insider threats increase that they have urgent and ongoing requirements for maintaining regulatory compliance, auditing and managing cyber threat detection and response. They also tell us that existing solutions like SIEM are often complex to implement and maintain, require specialised technical resources or are increasingly unaffordable or variable in their pricing. As a result of these increased requirements Prophecy International has created the Snare product suite.

Compliance requirements can include any number of regulatory mandates including PCI-DSS, Sarbanes Oxley, HIPAA, NERC, GDPR and more. This makes Snare a high value solution for companies in the Government, Defence and Military sectors, Banking, Finance and Insurance, Retail, Health, Energy, Oil & Gas markets.

Snare is a complete suite of Centralised Log Management (CLM), Security Analytics and SIEM tools.

Created by ex military personnel for military use it offers the highest level of security.

Designed to work as part of your security ecosystem Snare also integrates with most other SIEMs including SPLUNK, QRadar, ARCSight and many more. With over 3,000 customers worldwide using Snare for compliance, auditing and threat response, Snare is the name you can trust.

From Enterprise Agents for Windows, Unix, Linux, OSX, Flat files and Databases to a complete forensics and long term log storage platform, agent management console, multipoint log reflector, advanced log analytics and next gen SIEM capability. Either hosted or on prem with both Opex and Capex pricing models, Snare is a one stop shop for CLM and SIEM. Snare product suite is broadly split into two areas:

Centralised Log Management and Snare Analytics

Centralised Log Management incorporates and 4 core technologies

Snare Enterprise Agents
Snare Reflector
Snare Agent Management Console
Snare Central Service

Snare Analytics incorporates another 4 core technologies

Enhanced Snare Central Server incorporating Analytics
Data Ingestion Technologies (via our Adaptors)
Dashboards and Visualisations including custom KPI engine
Runbook – enabling SOAR

These products can be bought independently or combined into a compete solution. You can also “mix and match” with your current security technologies ensuring that you can leverage your existing investments.

Sample Customers

Accenture, Deloitte, ExxonMobil, General Electric, IBM, Johnson & Johnson and many others.

Military, Defence and Security Agencies, Banking Finance and Insurance companies, Retail, Health and Utilities.

Buyer's Guide

Extended Detection and Response (XDR)

January 2025

Download Free Report

Find out what your peers are saying about CrowdStrike, SentinelOne, Wazuh and others in Extended Detection and Response (XDR). Updated: January 2025.

DOWNLOAD NOW

831,265 professionals have used our research since 2012.

We monitor all Extended Detection and Response (XDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.