This content is currently locked.

Your current McLean & Company subscription does not include access to this content. Contact your account representative to gain access to Premium SoftwareReviews.

Contact Your Representative

Or Call Us:
+1-877-281-0480 (US/CAN) or
+1-703-544-9513 (International)

Microsoft Corporation

Microsoft Defender XDR

Composite Score

8.1 /10

CX Score

8.3 /10

37 Reviews Write a Review

What is Microsoft Defender XDR?

Coordinate cyberthreat response across your entire digital estate and quickly stop cyberattacks with Microsoft Defender XDR (formerly Microsoft 365 Defender), a unified, AI-powered XDR solution. Accelerate security operations center (SOC) response with incident-level visibility and automatic cyberattack disruption with extended detection and response (XDR). Remediate cyberthreats efficiently with a complete view of the cyberattack chain informed by 65 trillion daily signals and prioritized investigation and response at the incident level.

Company Details

Need Assistance?

We're here to help you with understanding our reports and the data inside to help you make decisions.

Get Assistance

Microsoft Defender XDR Ratings

Real user data aggregated to summarize the product performance and customer experience.
Download the entire Product Scorecard to access more information on Microsoft Defender XDR.

Product scores listed below represent current data. This may be different from data contained in reports and awards, which express data as of their publication date.

87 Likeliness to Recommend

5
Since last award

94 Plan to Renew

2
Since last award

74 Satisfaction of Cost Relative to Value

2
Since last award

{y}

{name}

Emotional Footprint Overview

Product scores listed below represent current data. This may be different from data contained in reports and awards, which express data as of their publication date.

+86 Net Emotional Footprint

The emotional sentiment held by end users of the software based on their experience with the vendor. Responses are captured on an eight-point scale.

How much do users love Microsoft Defender XDR?

5% Negative

8% Neutral

87% Positive

Pros

Helps Innovate
Efficient Service
Continually Improving Product
Inspires Innovation

Feature Ratings

Average 78

Real-Time Threat and Anomaly Detection

Risk Scoring & Remediation Act

Use of the MITRE ATT&CK Framework

24/7/365 Security Monitoring

Incident Management

Prevention

Threat Intelligence

Vulnerability Management

Standardized Playbooks

Compliance Reporting and Archival Mechanisms

Simplified Automation and Integration

Vendor Capability Ratings

Average 76

Quality of Features

Business Value Created

Breadth of Features

Ease of Implementation

Ease of IT Administration

Availability and Quality of Training

Ease of Data Integration

Usability and Intuitiveness

Ease of Customization

Product Strategy and Rate of Improvement

Vendor Support

Microsoft Defender XDR Reviews

Kiran R.

Role: Information Technology
Industry: Technology
Involvement: IT Leader or Manager

Validated Review

Verified Reviewer

Submitted Feb 2025

Great Security with Strong Threat Detection

Likeliness to Recommend

10 /10

What differentiates Microsoft Defender XDR from other similar products?

Integration with Microsoft ecosystem

What is your favorite aspect of this product?

Unified security platform that has multiple tools integration which is great to see and manage in single screen. Automated response and threat hunting is very helpful to mange high flow of alerts.

What do you dislike most about this product?

Fine tuning policies is a bit complex.

What recommendations would you give to someone considering this product?

Good product for long term security and highly recommended XDR in the market.

Pros

Helps Innovate
Continually Improving Product
Reliable
Performance Enhancing

Arjan S.

Role: Information Technology
Industry: Technology
Involvement: IT Development, Integration, and Administration

Validated Review

Verified Reviewer

Submitted Apr 2024

One solution for all XDR needs

Likeliness to Recommend

8 /10

What differentiates Microsoft Defender XDR from other similar products?

It is a well integrated suite that combines all XDR types (except NDR) in one portal. Configuration is not too hard and works well together when you have a Microsoft based landscape. It makes good use of AI and the expertise of Microsoft.

What is your favorite aspect of this product?

My favorite aspect would be that it is combined in one portal and KQL can be used to do all investigations. This makes it a great platform to do investigations when you don't want to learn and manage different platforms. The AI engine at the backend is great, it helps you out even if you are not an experienced analyst.

What do you dislike most about this product?

The pricing can be complex and steap in certain situations, mutli-platform support is sometimes limited. Customization can be hard, if it doesn't meet the needs it is sometimes complex to make the right fit.

What recommendations would you give to someone considering this product?

Start out the easy way .. implement one XDR solution at a time. Learn how they work, optimize them and move on to the next one. Be sure to take care of false postives & benign alerts.. they can take a lot of time. Ideally think of a zero-trust approach first, making use of all the components in the XDR suite

Pros

Continually Improving Product
Includes Product Enhancements
Security Protects
Helps Innovate

Cons

Vendor's Interest First

Julian A.

Role: Student Academic
Industry: Education
Involvement: IT Leader or Manager

Validated Review

Verified Reviewer

Submitted Jan 2024

Very powerful produit to protect your PC.

Likeliness to Recommend

10 /10

What differentiates Microsoft Defender XDR from other similar products?

Fully adoption in a Windows environnement, you can do almost everything from the same console (security.microsoft.com)

What is your favorite aspect of this product?

Easy to learn, scripting is a must to learn. with the licence A5 my clients are fully protected.

What do you dislike most about this product?

Sometimes this product detect false positifs

What recommendations would you give to someone considering this product?

Tak your time to deploy this product, start by a 20 or 50 PC's to do some tests before go in a full deployment.

Pros

Performance Enhancing
Trustworthy
Saves Time
Security Protects

Cons

Vendor's Interest First
Less Generous
Less Transparent

How We Deliver

Events

Microsoft Defender XDR

What is Microsoft Defender XDR?

Company Details

Need Assistance?

Awards & Recognition

Microsoft Defender XDR Ratings

87 Likeliness to Recommend

5 Since last award

94 Plan to Renew

2 Since last award

74 Satisfaction of Cost Relative to Value

2 Since last award

Emotional Footprint Overview

+86 Net Emotional Footprint

How much do users love Microsoft Defender XDR?

Pros

Feature Ratings Average rating of all product features, some of which may not be shown below

Real-Time Threat and Anomaly Detection Real-time or near real time threat detection of attacks and anomalous behavior.

Risk Scoring & Remediation Act Actionable risk mitigation suggestions for each vulnerability discovered.​

Use of the MITRE ATT&CK Framework Threat modeling capabilities and allows for mapping use cases to established TTPs, in order to facilitate rapid incident response.

24/7/365 Security Monitoring MDR provider should include a team of experienced security analysts monitoring the network 24/7 to identify abnormal activity and mitigate against threats.

Incident Management Includes incident diagnosis, escalation, investigation, resolution and recovery, and closure.

Prevention Offers capable next-gen AV (NGAV) and host protection.

Threat Intelligence Security threat intelligence feed integration with ability to update multiple uses and control updating behaviors.

Vulnerability Management Discover and fix vulnerabilities in the system.

Standardized Playbooks Standardized playbooks contain procedures, standards, and anticipated results from incident response. Reduces threat dwell time and time to close the event.

Compliance Reporting and Archival Mechanisms System archives incidents and produces comprehensive reports to stakeholders about current vulnerabilities and past vulnerabilities and remediation efforts.

Simplified Automation and Integration XDR simplifies automations and integrations, out of the box functionality without heavy lifting, SIEM+SOAR without the burden of cost and resources.

Vendor Capability Ratings Average rating of all vendor capabilities, some of which may not be shown below

Quality of Features Feature quality is just as important as quantity. Use this data to determine if this product will do what you're purchasing it to do, easily, intuitively, reliably, and effectively.

Business Value Created Software needs to create value for employees, customers, partners, and, ultimately, shareholders. This data expresses user satisfaction - or lack thereof - with the product's business value.

Breadth of Features Users prefer feature rich software that enables them to perform diverse series of tasks. This data expresses user satisfaction with the product's breadth of features.

Ease of Implementation Successfully implementing new software is necessary to realize its full value and promote end user adoption. This data indicates whether or not the product is easy to implement.

Ease of IT Administration This data indicates whether IT personnel will be able to resolve issues and perform configurations efficiently and effectively.

Availability and Quality of Training Effective and readily available training enables users to get the most out of the software you've chosen. Use this section to make sure your vendor's training programs and materials measure up.

Ease of Data Integration Use this data to determine whether the product will cause headaches or make data integration easy.

Usability and Intuitiveness End user learning curves cost the organization money. Pay attention to your end users' technical ability to determine how important UX is in your purchase.

Ease of Customization Don't get bogged down in a difficult customization; use this data to make sure you can easily achieve the functionality you need for your particular situation.

Product Strategy and Rate of Improvement Vendors who don't stay on top of emerging needs and trends won't enable you to meet your business goals. Use this data to separate innovators from imposters.

Vendor Support The importance of vendor support will vary for each organization depending on internal capabilities, but there will always be issues that only the vendor can resolve.

Microsoft Defender XDR Reviews

Kiran R.

Great Security with Strong Threat Detection

Likeliness to Recommend

Pros

Arjan S.

One solution for all XDR needs

Likeliness to Recommend

Pros

Cons

Julian A.

Very powerful produit to protect your PC.

Likeliness to Recommend

Pros

Cons

Most Popular Microsoft Defender XDR Comparisons

Palo Alto Cortex XDR

Crowdstrike Falcon Platform

Cynet Platform

TrendAI Vision One

Acronis Cyber Protect Cloud

eSentire

Schedule Your Call

5
Since last award

2
Since last award

2
Since last award

Feature Ratings

Real-Time Threat and Anomaly Detection

Risk Scoring & Remediation Act

Use of the MITRE ATT&CK Framework

24/7/365 Security Monitoring

Incident Management

Prevention

Threat Intelligence

Vulnerability Management

Standardized Playbooks

Compliance Reporting and Archival Mechanisms

Simplified Automation and Integration

Vendor Capability Ratings

Quality of Features

Business Value Created

Breadth of Features

Ease of Implementation

Ease of IT Administration

Availability and Quality of Training

Ease of Data Integration

Usability and Intuitiveness

Ease of Customization

Product Strategy and Rate of Improvement

Vendor Support