Extended detection and response (XDR): Which solution is best?

IT Central Station users review the highest reviewed solutions in the extended detection and response (XDR) market.


XDR is designed to give organisations a holistic view of their cybersecurity posture and IT environment with the ability to quickly pivot to deep investigation when further investigation is required. It also builds upon the foundation offered by traditional endpoint detection and response (EDR) by adding even more data and context that can grant better insights. However, choosing an XDR solution is not easy, and there are many choices to choose from.

Over 388,000 professionals have used IT Central Station research to inform their purchasing decisions. Their latest paper looks at the highest rated XDR solution vendors, profiling each and examining what they can offer enterprise.

Here’s a breakdown of the key players currently active in the market:

Azure Defender

Average Rating: 8.0

Top Comparison: Trend Micro XDR

Overview: Delivers Azure and hybrid cloud workload protection and security, including virtual machines, databases, containers, IoT, and more.

Cisco SecureX

Average Rating: 9.7

Top Comparison: Cortex XDR by Palo Alto Networks

Overview: Cloud-native, built-in platform experience that connects Cisco Secure portfolios and enterprise infrastructures to help improve security.

Cortex XDR by Palo Alto Networks

Average Rating: 8.3

Top Comparison: Symantec End-User Endpoint Security

Overview: The world's first detection and response app that natively integrates network, endpoint and cloud data to stop sophisticated attacks.


Average Rating: 8.3

Top Comparison: Darktrace

Overview: The first all-in-one security platform purposely built for organisations that need the ability to effortlessly identify, block and respond to all types of attacks inside the perimeter.

Fidelis Elevate

Average Rating: 8.0

Top Comparison: Carbon Black CB Response

Overview: Integrates network visibility, data loss prevention, deception, and endpoint detection and response into one unified solution.

Microsoft 365 Defender

Average Rating: 7.0

Top Comparison: Cisco SecureX

Overview: Leverages the Microsoft 365 security portfolio to automatically analyse threat data across domains, building a complete picture of each attack in a single dashboard.

Trend MicroXDR

Average Rating: 8.0

Top Comparison: CrowdStrike Falcon

Overview: Correlates data from customer environments and Trend Micro’s global threat intelligence to deliver fewer, higher-fidelity alerts, leading to better, early detection.

IDGConnect_itcentralstation_detectionandresponse_XDR_downloadbutton_2100x912 IDG Connect