TrustRadius

Mandiant Advantage Threat Intelligence vs. Microsoft Defender for Endpoint

Overview
ProductRatingMost Used ByProduct SummaryStarting Price
Mandiant Advantage Threat Intelligence
Score 8.8 out of 10
Enterprise companies (1,001+ employees)
Since 2004, Mandiant has been a partner to security-conscious organizations. Mandiant’s approach helps organizations develop more effective and efficient cyber security programs and instills confidence in their readiness to defend against and respond to cyber threats.N/A
Microsoft Defender for Endpoint
Score 8.9 out of 10
N/A
Microsoft Defender for Endpoint (formerly Microsoft Defender ATP) is a holistic, cloud delivered endpoint security solution that includes risk-based vulnerability management and assessment, attack surface reduction, behavioral based and cloud-powered next generation protection, endpoint detection and response (EDR), automatic investigation and remediation, managed hunting services, rich APIs, and unified security management.
$2.50
per user/per month
Pricing
Mandiant Advantage Threat IntelligenceMicrosoft Defender for Endpoint
Editions & Modules
No answers on this topic
Academic
$2.50
per user/per month
Standalone
$5.20
per user/per month
Offerings
Pricing Offerings
Mandiant Advantage Threat IntelligenceMicrosoft Defender for Endpoint
Free Trial
YesYes
Free/Freemium Version
YesNo
Premium Consulting/Integration Services
YesNo
Entry-level Setup FeeOptionalNo setup fee
Additional DetailsPriced by company size
More Pricing Information
Community Pulse
Mandiant Advantage Threat IntelligenceMicrosoft Defender for Endpoint
Features
Mandiant Advantage Threat IntelligenceMicrosoft Defender for Endpoint
Endpoint Security
Comparison of Endpoint Security features of Product A and Product B
Mandiant Advantage Threat Intelligence
7.2
6 Ratings
0% below category average
Microsoft Defender for Endpoint
8.7
76 Ratings
3% above category average
Infection Remediation7.26 Ratings9.073 Ratings
Anti-Exploit Technology00 Ratings8.873 Ratings
Endpoint Detection and Response (EDR)00 Ratings9.175 Ratings
Centralized Management00 Ratings8.875 Ratings
Hybrid Deployment Support00 Ratings7.210 Ratings
Vulnerability Management00 Ratings8.770 Ratings
Malware Detection00 Ratings9.174 Ratings
Threat Intelligence
Comparison of Threat Intelligence features of Product A and Product B
Mandiant Advantage Threat Intelligence
7.8
10 Ratings
8% above category average
Microsoft Defender for Endpoint
-
Ratings
Network Analytics7.79 Ratings00 Ratings
Threat Recognition7.89 Ratings00 Ratings
Vulnerability Classification7.510 Ratings00 Ratings
Automated Alerts and Reporting8.09 Ratings00 Ratings
Threat Analysis7.510 Ratings00 Ratings
Threat Intelligence Reporting8.210 Ratings00 Ratings
Automated Threat Identification7.99 Ratings00 Ratings
Best Alternatives
Mandiant Advantage Threat IntelligenceMicrosoft Defender for Endpoint
Small Businesses
Egnyte
Egnyte
Score 9.4 out of 10
ThreatLocker
ThreatLocker
Score 9.4 out of 10
Medium-sized Companies
CrowdStrike Falcon
CrowdStrike Falcon
Score 9.1 out of 10
BlackBerry Protect (CylancePROTECT)
BlackBerry Protect (CylancePROTECT)
Score 9.1 out of 10
Enterprises
CrowdStrike Falcon
CrowdStrike Falcon
Score 9.1 out of 10
BeyondTrust Endpoint Privilege Management
BeyondTrust Endpoint Privilege Management
Score 9.9 out of 10
All AlternativesView all alternativesView all alternatives
User Ratings
Mandiant Advantage Threat IntelligenceMicrosoft Defender for Endpoint
Likelihood to Recommend
7.8
(18 ratings)
8.8
(136 ratings)
Likelihood to Renew
-
(0 ratings)
8.4
(10 ratings)
Usability
7.6
(18 ratings)
8.7
(11 ratings)
Availability
-
(0 ratings)
9.1
(1 ratings)
Performance
-
(0 ratings)
9.1
(1 ratings)
Support Rating
-
(0 ratings)
9.0
(7 ratings)
Implementation Rating
-
(0 ratings)
7.3
(1 ratings)
Configurability
-
(0 ratings)
8.2
(1 ratings)
Product Scalability
-
(0 ratings)
9.1
(1 ratings)
User Testimonials
Mandiant Advantage Threat IntelligenceMicrosoft Defender for Endpoint
Likelihood to Recommend
Mandiant
Usually SOC leverages Intel from mutiple sources. The scenarios are: 1.Suitable: In large scale SOC where more than 5000 devices are being monitored and the tech stack is wide, Mandiant will play an excellent role in that scenario. 2.Not Suitable: In small scale SOCs wherein limited devices belonging to the same tech stack is being used then the analysts can rely on OSINT and it is not useful to buy the solution.
Verified User
Anonymous
Read full review
Microsoft
Because of its integration with Windows, it is very easy to deploy and manage. Any IT department should be able to leverage the software and interface. The admin portal provides weighted recommendations that comprise the Secure Store, offering admins, security teams, and business owners valuable insights into their security footprint without requiring a strong security background. The software would be ideal for small and mid-sized businesses that cannot dedicate resources to security. Larger enterprises would also benefit, but may require the enhanced license.
MM
Michael Miller
IT Engineer
Read full review
Pros
Mandiant
  • accelerated threat response feature, prioritizing threats according to requirement.
  • Optimization of the threat intelligence , and can be integrated with 3rd party tools.
  • Features like - Breach ,Adversary, Machine and Operational Intelligence.
  • Mandiant dynamic host and the malware views along with indicators.
Verified User
Anonymous
Read full review
Microsoft
  • One, it's crazy lightweight, so compared to some of the competitors that we also have used with our security services, it's really lightweight and so I don't have a lot of overhead on the system that it's running on.
  • It does really fantastic PowerShell integration.
Verified User
Anonymous
Read full review
Cons
Mandiant
  • Paywalls exist throughout the data set and can halt an investigation without the right model
  • Some data was incomplete or broken up between pay tiers
  • Navigation through the data lacked a definitive trail or breadcrumbs to retrace steps during investigations
Verified User
Anonymous
Read full review
Microsoft
  • So the fact that Defender for Endpoint still works with signatures is actually, I don't know, a little difficult for us because, I mean, since Microsoft trusts those signatures, you can easily inject code. And we've done it many times. To show that you can inject code through vulnerabilities like CV 2013, 99, and 33 but still keep the signature. So because of the trust of those signatures, the malware just kind of slides into the environment without Defender knowing. That's the first part. The second part is that the behavioral analysis is not precisely its Prime. It's not Defender's best capability for endpoints. So, Defender does not identify all behaviors considered by other EDRs in the market.
Verified User
Anonymous
Read full review
Likelihood to Renew
Mandiant
No answers on this topic
Microsoft
Cost add-ons for Security features is nickel and diming the process to keep pace with cybercrime. Limited Education budgets require us to be more pro-active in finding cost-effective measures to protect our devices, staff and students. Defender is a strong, well-featured product that is pricing itself out of the education market
Verified User
Anonymous
Read full review
Usability
Mandiant
Mandiant Advantage Threat Intelligence has a very usable platform, with well-differentiated sections for the analyst, as well as the possibility of cross-searching to obtain the desired results. All this is presented with an interface that is easy on the eye and not very messy, which increases productivity and the speed with which work is done.
Verified User
Anonymous
Read full review
Microsoft
It offers multiple security features and integrates well with Microsoft ecosystems. A workflow for threat detection, investigation, automated remediation, and a centralized dashboard is an added advantage. This application is mainly designed for experienced users; new users may feel challenged.
Verified User
Anonymous
Read full review
Reliability and Availability
Mandiant
No answers on this topic
Microsoft
Microsoft Defender for Endpoint chugs along just fine no matter what we throw at it and what systems it's running on. It doesn't take up a lot of resources either, so that's welcomed.
Verified User
Anonymous
Read full review
Performance
Mandiant
No answers on this topic
Microsoft
Microsoft Defender for Endpoint is easy on memory and resources on clients.
Verified User
Anonymous
Read full review
Support Rating
Mandiant
No answers on this topic
Microsoft
The first time I tried to onboard my macOS endpoints to MDE I struggled for quite a bit. I had to reach out to Microsoft's MDE support team. The tech was very helpful in walking me through the steps during a screen share session
Joe Aldeguer | TrustRadius Reviewer
Joe Aldeguer
IT Director
Read full review
Implementation Rating
Mandiant
No answers on this topic
Microsoft
Deployment was handled by our team here and everything went pretty smoothly. We did have a few hiccups in our test group, but that only took a bit to get ironed out.
Verified User
Anonymous
Read full review
Alternatives Considered
Mandiant
It gives more ways to analyze threats and options to fixed it. This device gives more visibility on vulnerability detection and its analysis. It provides detailed reports to have more information of all malwares which help us to increase overall security of our current organization
Sunil Redekar | TrustRadius Reviewer
Sunil Redekar
Network Security Engineer
Read full review
Microsoft
Cylance's policy is to block everything and requires an active person to monitor and unblock legitimate processes. As updates and software continue to evolve, it is a full-time job to be a Cylance administrator. Microsoft Defender for Endpoint is a set-and-forget solution that catches threats when they occur and leaves you to focus on your work unimpeded.
Verified User
Anonymous
Read full review
Scalability
Mandiant
No answers on this topic
Microsoft
Microsoft Defender for Endpoint is easily scaled from small orgs to giant enterprises.
Verified User
Anonymous
Read full review
Return on Investment
Mandiant
  • Improved incident response time
  • Specific investigations that have reduced the attack surface
  • Technical reports on threats not controlled by the bank's local team
IS
Ivan Salguero Astete
Cyber Intelligence Analyst
Read full review
Microsoft
  • Reduced incidents of security breaches lead to lower remediation costs and avoid potential financial losses and reputational damage.
  • Reduces the need for additional third-party security solutions and training, thereby lowering overall security management costs.
  • Increased efficiency and productivity of IT staff lead to better allocation of resources and cost savings.
  • Reduces the risk of fines and sanctions associated with non-compliance, ensuring business continuity and protecting revenue.
CF
Carlos Eduardo Faquinello
IT Solutions Architect
Read full review
ScreenShots

Mandiant Advantage Threat Intelligence Screenshots

Screenshot of Mandiant Advantage DashboardScreenshot of Mandiant Advantage Actor DetailsScreenshot of Mandiant Advantage Actor Graph

Microsoft Defender for Endpoint Screenshots

Screenshot of blocked activitiesScreenshot of Detects & respondsScreenshot of discovers vulnerabilityScreenshot of Eliminates blind spotsScreenshot of Risk management