Search

Reports, Test Results, Testimonials and More

Cortex XDR™, the world’s first extended detection and response product, is rewiring security operations to be more effective and efficient. Now, you can protect endpoints from advanced threats, reduce alert volumes by 50x and accelerate investigations by 8x with the power of proactive security analytics.

The industry’s most forward-thinking analyst firms recognize Cortex XDR

2022 Gartner® Magic Quadrant™ and Critical Capabilities for EPP Reports

Get the 2022 Gartner® Magic Quadrant™ for Endpoint Protection Platforms and the Critical Capabilities for Endpoint Protection Platforms reports to evaluate 18 endpoint security solutions. You’ll learn why Palo Alto Networks for Cortex XDR was named a Visionary, and how we were ranked 4th among 18 vendors in the Type A and Type B Use Cases in the Critical Capabilities report.

MITRE Engenuity ATT&CK® Round 5 Evaluations

The MITRE ATT&CK® Evaluations emulate the real-world attack sequences of advanced persistent threat (APT) groups. On September 20, MITRE Engenuity published the Enterprise 5 ATT&CK Evaluations, which tested the ability of 29 participants to defend against the tactics, techniques and procedures leveraged by sophisticated Russian-based threat group Turla.

In the latest Evaluations, Cortex XDR® was the ONLY vendor with 100% Prevention and 100% Analytic Coverage. The latest MITRE ATT&CK results reveal our dedication to preventing every possible threat and keeping our customers safe from the most determined adversaries.

The Forrester Wave™: Endpoint Security Software as a Service

Palo Alto Networks has been named a Leader in The Forrester Wave: Endpoint Security Software as a Service, Q2 2021 report.

According to the Forrester report, the Palo Alto Networks XDR strategy “is the most comprehensive in this study, offering threat prevention, detection, and access controls spanning endpoint, IoT, network, and cloud apps,” and, "Palo Alto Networks is an easy shortlist addition for enterprise buyers looking to adopt a modern endpoint security solution or a broad XDR strategy with strong threat prevention."

Cortex XDR Named a 3x Strategic Leader in the 2022 AV-Comparatives EPR Test

In the latest Endpoint Prevention and Response (EPR) test, AV-Comparatives evaluated the ability of 10 endpoint security products to detect or automatically block 50 unique targeted attacks. Based on a rigorous and comprehensive assessment, Cortex XDR was awarded the highest certification level available for the third straight year: Strategic Leader.

"Palo Alto Networks Cortex XDR Pro did well at handling threats that are targeted towards enterprise users, in particular before the threats could progress inside and infiltrate the organisation’s network.”

"The product had good mapping to MITRE’s TTPs, thus providing low-level SOC analysts with the data needed to investigate further and escalate when necessary. Alerts were prioritized and aggregated, so as to minimize noise from all the alerts generated. The product can be easily configured and deployed in a domain or workgroup environment."

– AV-Comparatives
Battle-Tested Against the SolarWinds Attack and Other Targeted Attacks
Cortex XDR successfully blocked the SolarWinds supply chain attack before the attack was publicly disclosed. According to Palo Alto Networks CEO, Nikesh Arora, “We experienced an attempt to download Cobalt Strike on one of our IT SolarWinds servers. Cortex XDR instantly blocked the attempt with our Behavioral Threat Protection capability.” Cortex XDR also detected post-exploit activity associated with 4 critical zero-day Microsoft Exchange Server vulnerabilities in February, 2021, before the vulnerabilities were announced.

Read about the SolarWinds attack
NSS Labs 2020 Advanced Endpoint Protection Test
Cortex XDR was awarded a very strong overall “AA” rating in the 2020 Advanced Endpoint Protection (AEP) test by NSS Labs, a globally recognized and trusted source for independent cybersecurity guidance. No vendor in the test scored higher than an AA rating.

“The endpoint protection was capable of detecting and blocking malware and exploits when subjected to numerous evasion techniques … We found the protection against the vast majority of classic malware attacks to be excellent, as well as the protection against drive-by exploits.” – NSS Labs
A SANS Product Review: Streamline Your Enterprise Security with Cortex XDR
The SANS Institute recently provided an in-depth, hands-on evaluation of Cortex XDR.

“We looked at a platform that is changing the game and restoring the advantage to defenders: Palo Alto’s Cortex XDR. Built on top of highly integrated endpoint and network defenses, Cortex XDR provides a much-needed holistic view into an organization. Cortex XDR comes equipped with robust detection and threat intelligence capabilities, detecting behavioral and non-behavioral adversary techniques. Finally, the platform also boasts advanced forensic and incident response capabilities, truly cementing Cortex XDR as a platform that can take an investigation from start to finish and disrupt adversaries in your network." – The SANS Institute
A 2020 Zero Trust Leader
Palo Alto Networks was recognized as a leader in The Forrester Wave™: Zero Trust eXtended Ecosystem Platform Providers, Q3 2020 report. Forrester evaluated a comprehensive suite of Palo Alto Networks products, including Cortex XDR for endpoint security.
According to the Forrester report: “Palo Alto Networks has a complete toolkit for Zero Trust … to deliver Zero Trust everywhere – on-premises, in the data center, and in cloud environments.”
Gartner Peer Insights
According to Gartner Peer Insights in the category of Endpoint Protection Platforms as of August 1, 2023, 95% of Cortex XDR customers would recommend Cortex XDR.

"Cortex XDR is a great and comprehensive security platform that has greatly enhanced our threat detection, response and overall security posture. It helps to provide a unified platform that integrates various security components, including endpoint protection, network security, and cloud security. This integration allows us to have a holistic view of the organisation security landscape, enabling better threat detection and response capabilities. My overall experience has been phenomenal."

- Software Engineer in the IT Services Industry
Ovum Report: Cortex XDR Spans Endpoint, Network, and the Cloud
Ovum profiled Cortex XDR, which automates detection of sophisticated threats, accelerates investigation and provides integrated response.

“The Cortex XDR application itself is cloud-based, leveraging machine learning and behavioral analysis techniques to identify threats across the environment and on individual assets ... With Cortex XDR the objective is for customers to simplify operations and continually reduce their attack surface, as well as to gain greater value from their existing security investments.” – Ovum

Hear from happy customers

State of North Dakota "We desperately needed to do automation and to have a tool that filtered through all the noise. Cortex is doing exactly that. We’re seeing the noise going away and we’re getting to the important alerts that we hadn't seen previously."

Ryan Kramer - Enterprise Network Architect, State of North Dakota

Hear from the state of North Dakota
Avrasya Tüneli (Eurasia Tunnel) “Palo Alto Networks scored highly on every aspect of the proof of concept. We worked closely with the local Palo Alto Networks team and channel support on a proof of concept. By evaluating all the features on the PA-3200 Series ML-Powered NGFW, we subsequently deployed the entire Palo Alto Networks platform."

Emrah Dündar, IT and Security Manager, Avrasya Tüneli

Hear from Avrasya Tüneli
Enloe Medical Center After a ransomware attack, Enloe Medical Center's cybersecurity team knew they needed to strengthen their security posture. They chose Cortex XDR to identify and respond to threats much more rapidly.

“The ‘aha!’ moment that told me that Cortex XDR was what we really needed was the level of visibility that it provided us and the speed at which we were able to triage and validate the information that was coming in. With the combination of XDR, MDR, and a Unit 42 retainer, I can now respond with confidence."

Jordan Sledge - Cybersecurity Manager, Enloe Medical Center Hear from Enloe Medical Center
MineraExar “The project in the production plant strengthened our confidence in the Palo Alto Networks solutions, especially because of their capabilities to generate network visibility and provide us with security and traffic analytics. Now we could be calmer. That is why we decided to work with Palo Alto Networks in the next phase: the protection of the cloud and the endpoints."

Hernán Lamas, Head of Infrastructure, Minera Exar Hear from Minera Exar
Better Mortgage In this video, Jeff White, Director of Security, Better.com, discusses why he decided to move from EDR to XDR, and how a POC provided an easy choice to select Cortex XDR.
“Getting XDR in house has shown us that we can do quite a bit …to pull in more analytics than we’ve ever been able to do before, especially with our prior endpoint suite.”

Jeff White, Director of Security, Better.com Hear more from Better Mortgage

Get the latest news, invites to events, and threat alerts

Popular Resources

Legal Notices

Popular Links

Report a Vulnerability