Endpoint Prevention & Response (EPR) Test: 2022 & 2024 Insights
Elastic Overview
Image courtesy of AV-Comparatives
The company Elastic was founded in 2008, originally under the name Endgame, with headquarters in Virginia, USA. In 2019, it was acquired by Elastic. It produces software for business networks, targeting both Windows and Linux platforms. The software was first included in AV-Comparatives’ Business Test and Review in 2017. For older test results, refer to the page of Endgame.
Latest Enterprise Main-Tests on Microsoft Windows
- Business Security Test 2025 (March - June) approved
- Performance Test June 2025 Part of Business Security Test 2025 (March – June)
- Real-World Protection Test Enterprise March-June 2025 - Testresult Part of Business Security Test 2025 (March – June)
- Malware Protection Test Enterprise March 2025 - Testresult Part of Business Security Test March-April 2025 – Factsheet
Endpoint Prevention & Response (EPR) Test 2022
AV-Comparatives released its Endpoint Prevention and Response (EPR) Test for 2022. This test evaluates the total cost of ownership (TCO) of products, breach costs, and operational/accuracy costs. The EPR CyberRisk Quadrant™ categorizes products as Strategic Leaders, CyberRisk Visionaries, and Strong Challengers.
Image courtesy of AV-Comparatives
Endpoint Prevention & Response (EPR) Test 2024
!Heuristic
The Endpoint Prevention & Response Test 2024 evaluates enterprise products' ability to detect, prevent, and respond to targeted attacks. The test period runs from June to August 2024, with a release date of September 26, 2024.
Test Details
- Platform/OS: Microsoft Windows
- Test Period: June - August 2024
AV-Comparatives’ Endpoint Prevention and Response Test assesses the effectiveness of Endpoint Protection Products (EPP), Endpoint Detection and Response (EDR), and Extended Detection and Response (XDR) solutions against advanced persistent threats (APTs). The test involved 12 products and simulated 50 distinct targeted attack scenarios.
EPR CyberRisk Quadrant™
Image courtesy of AV-Comparatives
The CyberRisk Quadrant categorizes products into four levels: Strategic Leader, CyberRisk Visionary, Strong Challenger, and Not Certified. This classification helps vendors identify areas for improvement and provides insights into a product's overall performance.
Key Metrics
| Product | 5-Year Product Cost (Per Agent) | Active Response | Passive Response | Combined Prevention/Response Capabilities Y-Axis | Operational Accuracy Costs | Workflow Delay Costs | 5-Year TCO (Per Agent) X-Axis |
|---|---|---|---|---|---|---|---|
| Bitdefender | $100 | 99.3% | 99.3% | 99.3% | Moderate | None | $2,044 |
| Check Point | $190 | 99.3% | 99.3% | 99.3% | Low | None | $689 |
| CrowdStrike | $475 | 98.0% | 98.0% | 98.0% | Low | None | $1,462 |
| ESET | $152 | 99.3% | 99.3% | 99.3% | High | None | $2,946 |
| Kaspersky | $206 | 99.3% | 99.3% | 99.3% | Low | None | $1,045 |
| Palo Alto Networks | $350 | 99.3% | 99.3% | 99.3% | Low | None | $849 |
| VIPRE | $120 | 99.3% | 99.3% | 99.3% | Low | None | $704 |
| Vendor A | $545 | 96.7% | 96.7% | 96.7% | Low | Low | $3,336 |
| Vendor B | $195 | 94.0% | 94.0% | 94.0% | None | Moderate | $6,298 |
| Vendor C | $300 | 95.3% | 95.3% | 95.3% | None | None | $4,654 |
| Vendor D | $160 | 92.0% | 92.0% | 92.0% | Moderate | None | $6,126 |
| Vendor E | $330 | 90.7% | 90.7% | 90.7% | Moderate | None | $3,014 |
Test Results
Cumulative Active Response by Phases
| Product | Phase 1 Only | Phase 1 & 2 | Overall (Phase 1, 2 & 3) |
|---|---|---|---|
| Bitdefender | 98% | 100% | 100% |
| Check Point | 98% | 100% | 100% |
| CrowdStrike | 94% | 100% | 100% |
| ESET | 98% | 100% | 100% |
| Kaspersky | 98% | 100% | 100% |
| Palo Alto Networks | 98% | 100% | 100% |
| VIPRE | 98% | 100% | 100% |
| Vendor A | 94% | 96% | 100% |
| Vendor B | 84% | 98% | 100% |
| Vendor C | 92% | 94% | 100% |
| Vendor D | 86% | 92% | 98% |
| Vendor E | 86% | 92% | 94% |
Cumulative Passive Response by Phases
| Product | Phase 1 Only | Phase 1 & 2 | Overall (Phase 1, 2 & 3) |
|---|---|---|---|
| Bitdefender | 98% | 100% | 100% |
| Check Point | 98% | 100% | 100% |
| CrowdStrike | 94% | 100% | 100% |
| ESET | 98% | 100% | 100% |
| Kaspersky | 98% | 100% | 100% |
| Palo Alto Networks | 98% | 100% | 100% |
| VIPRE | 98% | 100% | 100% |
| Vendor A | 94% | 96% | 100% |
| Vendor B | 84% | 98% | 100% |
| Vendor C | 92% | 94% | 100% |
| Vendor D | 86% | 92% | 98% |
| Vendor E | 86% | 92% | 94% |
AV-Comparatives’ Certification
Certification is granted based on a product’s performance in the CyberRisk Quadrant™, requiring an average score of at least 90% for combined Active and Passive Response.
For more detailed information about AV-Comparatives and their methodologies, visit AV-Comparatives.