Cortex XDR
Endpoint Security Powered by AI
Includes 30 days of data retention and standard success
Our Price: Request a Quote
Click here to jump to more pricing!
Please Note: All Prices are Inclusive of GST
Overview:
The New Standard for Endpoint Security
DETECTION
Reduce risk by detecting attacks you miss today - proven by 100% detection with no delays or config. changes in the latest MITRE ATT&CK Evals.
FALSE POSITIVES
Confidently block endpoint threats without disruption - tested with zero prevention false positives in the latest MITRE ATT&CK Evals.
FEWER ALERTS
Increase SOC efficiency with AI & automation - reducing the volume of alerts you need to triage by 98%.
Endpoint Security Powered by AI
Detect More Attacks in Real Time with AIEndpoints are the #1 target, but 84% of attacks span multiple vectors. Cortex XDR® connects data from endpoint, cloud, network and identity sources and applies AI to detect and prioritize cyberattacks, no matter where they come from.
Prevent Endpoint Threats with Industry-Leading AccuracyCyberattacks will try to compromise your endpoints in multiple ways, and you have to be ready for it all. That's why Cortex XDR features prevention modules tailored to stop every technique used in modern attacks, from zero-day exploits to fileless malware, hijacking legitimate processes — and whatever comes next.
Get to the Root Cause and Cut Investigation Time to MinutesOnce an adversary gains initial access, the race is on. You may see IoCs and malware, but do you know how they got there? Uncover the execution path of every alert and run native automation to disrupt the entire attack chain within minutes, not hours or days.
Stop Advanced Attacks with a Unified Agent Across Enterprise and CloudWhen it comes to defending the cloud, the environment may be different, but your protection stays the same. The unified XDR agent delivers best-in-class cloud detection and response (CDR) to stop attacks in real time for today's multicloud organization.
Go Beyond XDR and Transform Your SOC with an AI-Driven PlatformExpand XDR with industry-leading NG-SIEM, SOAR, ASM, and cloud security capabilities, all in one unified backend, frontend and analyst experience with the Cortex Platform.
Prevent, Detect, and Respond to the Stealthiest Threats
You can now stop modern attacks with Cortex XDR®, the industry's first endpoint-based extended detection and response platform that integrates data from any source. Your SOC team can cut through the noise and focus on what matters most with intelligent alert grouping and incident scoring. Cross-data insights accelerate investigations so that you can streamline incident response and recovery. Finally, by harnessing the power of AI, analytics, and rich data, Cortex XDR allows you to detect stealthy threats.
Get Full Visibility Across Your Entire Environment
Cortex XDR automatically stitches together endpoint, network, cloud, and identity data to accurately detect attacks and simplify investigations. Third-party alerts are dynamically integrated with endpoint data to reveal root cause and save hours of analysts' time.
Discover Threats with Analytics and Machine Learning
Using machine learning, Cortex XDR continuously profiles endpoint and network behavior to detect anomalous activity indicative of attacks. It provides a 360-degree view of users, including user risk scores, for user behavior analytics (UBA).
Gain Deeper Insights with Global Analytics
Cortex XDR's Global Analytics system harnesses cross-customer insights for you to identify advanced threats, such as supply chain and zero-day attacks. By applying analytics to an integrated set of data, Cortex XDR can detect evasive threats that siloed endpoint, network, and cloud detection and response tools miss.
Investigate at Lightning Speed
Each incident within Cortex XDR provides you with a complete picture of an attack, with key artifacts and threat intelligence details. Furthermore, Cortex XDR's SmartScore identifies high-risk incidents with machine learning, empowering your team to quickly assess attack scope and impact.
Orchestrate, Automate, and Enrich with Cortex XSOAR
Cortex XDR tightly integrates with Cortex XSOAR®, enabling your teams to feed incident data for automated response based on 1,000+ product integrations. XSOAR playbooks can automatically ingest Cortex XDR incidents, retrieve related alerts, and update incident fields in Cortex XDR. It also links insights to incidents in real time, giving you unmatched visibility into the global threat landscape and automating the distribution of your threat intelligence at scale.
| Capabilities | XDR Prevent | XDR Pro per Endpoint | XDR Pro per Gigabyte |
|---|---|---|---|
| Next-Generation Antivirus Block malware, ransomware, exploits, and fileless attacks |
✓ | ✓ | |
| Endpoint Protection Safeguard endpoints with device control, firewall, and disk encryption |
✓ | ✓ | |
| Detection and Response Pinpoint attacks with AI-driven analytics and coordinate response |
✓ | ✓ | |
| Managed Detection and Response Let Unit 42 experts work for you 24/7 to detect and respond to threats |
✓ | ||
| Managed Threat Hunting Let Unit 42 experts work for you 24/7 to discover advanced threats |
✓ | ||
| Host Insights Find vulnerabilities and sweep across endpoints to eradicate threats |
✓ | ||
| Forensics Investigation Investigate incidents swiftly with comprehensive forensics evidence collection |
✓ | ||
| Third-Party Security Events Send security events from other data sources |
✓ | ✓ | |
| Third-Party Security Logs Send raw logs from other data sources |
✓ | ||
| Network Traffic Analysis Syslog, Kafka, DB, CSV file, FTP, NetFlow, Windows events, Pathfinder |
✓ | ||
| Prisma® and Palo Alto Networks IoT Security Unify cloud and/or control system environments with XDR |
✓ | ||
| Integrations Threat intelligence solutions, Slack, send syslog |
✓ | ✓ | ✓ |
| Security Analytics Apply machine learning and UEBA detections to security data |
✓ | ✓ | |
| Identity Threat Detection and Response (ITDR Module) Uncover threats like insiders, lateral movement, credential compromise (includes XTHD when paired with XDR Pro per Endpoint) |
✓ | ||
| eXtended Threat Hunting Data (XTHD Module) Collect rich endpoint data for deep threat hunting |
✓ |
Documentation:
Download the Cortex XDR Datasheet (PDF).
Need Professional IT Security Services?
Contact our certified security experts today to discuss your specific requirements and learn how our professional services can enhance your organization's security posture.
Pricing Notes:
- All Prices are Inclusive of GST
- Pricing and product availability subject to change without notice.
Includes 30 days of data retention and standard success
Our Price: Request a Quote
CDR, CWP, WAAS, CNAPP, CSPM, CIEM, DSPM, AI-SPM, Agentless Scan, ASPM and CI/CD security. Per workload per year, 30 days retention.
Our Price: Request a Quote
Additional 30 days cold storage beyond the base 30 days. Price per Endpoint per month.
Our Price: Request a Quote
Allows forwarding of endpoint data from a single XDR endpoint for 1 year.
Our Price: Request a Quote
Additional 30 days hot storage beyond the base 30 days. Price per Endpoint per month.
Our Price: Request a Quote
Includes IAC, SCA and Secrets Security. Per Developer per year.
Our Price: Request a Quote
Per workload per year.
Our Price: Request a Quote
A single Compute Unit add-on.
Our Price: Request a Quote
Price per GB.
Our Price: Request a Quote
Includes 1 child tenant.
Our Price: Request a Quote
Child tenant for Enterprise MT.
Our Price: Request a Quote
Includes Extended Threat Hunting module events. Price per Endpoint per month.
Our Price: Request a Quote
Includes Extended Threat Hunting module events. Per endpoint, 1 year.
Our Price: Request a Quote
Includes Extended Threat Hunting module events. Price per Endpoint per month.
Our Price: Request a Quote
Annual Forensics add-on for 1 Cortex XDR endpoint, includes 30 days of data retention.
Our Price: Request a Quote
Monthly Forensics add-on for 1 Cortex XDR endpoint, includes 30 days of data retention ($10 per month).
Our Price: Request a Quote
Additional 30 days cold storage for entire ingested data (excl. endpoints). Price per daily ingested GB per month.
Our Price: Request a Quote
Allows forwarding of 1GB of data each day for 1 year.
Our Price: Request a Quote
Additional 30 days hot storage for entire ingested data (excl. endpoints). Price per daily ingested GB per month.
Our Price: Request a Quote
Additional 30 days beyond the base 180 days. Price per Endpoint per month.
Our Price: Request a Quote
Additional 30 days beyond the base 180 days. Price per daily ingested GB per month.
Our Price: Request a Quote
For Cortex XDR.
Our Price: Request a Quote
Includes 30 days data retention, 180 days alerts and incidents retention, and standard success.
Our Price: Request a Quote
Includes 180 days of alerts retention and standard success.
Our Price: Request a Quote
Enhanced visibility add-on for Cortex XDR Pro EP/Cloud. Includes 30 days data retention. Price per Endpoint.
Our Price: Request a Quote
eXtended Managed Detection and Response service for XDR Pro EP and Cloud. Includes XTH capabilities.
Our Price: Request a Quote
eXtended Managed Detection and Response service. Includes XDR Extended Threat Hunting (XTH) module.
Our Price: Request a Quote
Requires a completed SOW.
Our Price: Request a Quote
Can be bought only with Deployment Service. Term: 1 month.
Our Price: Request a Quote
Term: 5 months.
Our Price: Request a Quote
Term: 4 months.
Our Price: Request a Quote
Term: 1 month.
Our Price: Request a Quote
1 SKU qty = 8 sessions.
Our Price: Request a Quote
1 SKU qty = 2 sessions.
Our Price: Request a Quote
1 SKU qty = 2 sessions.
Our Price: Request a Quote
For EE and EE Plus.
Our Price: Request a Quote
Our Price: Request a Quote
Our Price: Request a Quote
For EE Dedicated and EE Dedicated Plus.
Our Price: Request a Quote
Our Price: Request a Quote
Our Price: Request a Quote
Our Price: Request a Quote
Minimum 5 days.
Our Price: Request a Quote
Our Price: Request a Quote
Our Price: Request a Quote
Our Price: Request a Quote
Our Price: Request a Quote
Our Price: Request a Quote
For use with Unit 42 MDR customers only.
Our Price: Request a Quote
For use with Unit 42 MDR customers only.
Our Price: Request a Quote
For use with Unit 42 MDR customers only.
Our Price: Request a Quote