SentinelOne vs Kaspersky

03 September 2020 | ITHQ Tech Team


SentinelOne and Kaspersky Endpoint Protection Platforms make many shortlists, despite Kaspersky often being a controversial contender. 

Kaspersky is banned across US government due to its links with the Russian government. It has also been reported to falsify malicious hashes in open source virus databases and has been at the centre of many controversies included executives being arrested for treason.

Despite all this, it continues to score well as an anti virus platform and has been responsible for identifying several new malware variants. Notably, however, the malware they've discovered has always been linked to the US and European governments, further enhancing their reputation as a Russian state actor.

SentinelOne is far more balanced  when it comes to malware discovery, pointing the finger of shame in all directions equally depending on the evidence.

SentinelOne also performed far better than Kaspersky in the MITRE ATT&CK APT29 2020 testing and places higher right on the Gartner Magic Quadrant.

However, if you're looking for a next generation endpoint protection solution and these two are on your list, here's a direct comparison page to help.


Endpoint Protection: Key considerations

  • Is it easy to deploy and manage?
  • Is it dependent on cloud command and control for detection and response?
  • How effective has it been against zero-day attacks?
  • Do you have feature parity across Windows, Mac and Linux?
  • How does it perform in real world test scenarios?
  • What do other customers say about it?


Comparison of Business Benefits and Features


kaspersky logo

SentinelOne logo
Business Benefits
Autonomous Protection and Response Partial - legacy signatures but reliant on cloud
Fast Recovery
Can be automated or 1-click
OS freedom (Windows / Mac / Linux feature parity)
Yes Yes
Fewer alerts with more context
No Yes
Threat hunting
No - additional services Yes - full storyline
API integration Limited Yes
On-device AI
On-device behavioural AI
Partial - limited ML
Exploit protection
Partial - legacy signatures
Yes + context
Lateral movement Partial - legacy signatures and OS events
Yes + context
Rollback Yes but no VSS - proprietary method
Integrated threat feeds Yes
Remote shell
Device control USB - no Bluetooth control
Device control
USB - no Bluetooth control
Firewall control Yes Yes
Bluetooth control No
Threat hunting
Yes - full storyline
Deep visibility No


Industry and Peer Reviews

Gartner Peer Insights


kaspersky logo

Endpoint Security for Business

SentinelOne logo

Endpoint Protection Platform


Gartner peer insights Kaspersky vs SentinelOne




Gartner Magic Quadrant for Endpoint Protection Platforms

May 2021 - full report here





Independent Testing




Scored good results


APT29 2020

Scored record results:

 - Least missed detections

 - Most high-quality detections

 - Most correlated   detections
AA 2020
NSS labs Top ROI score and Recommended rating 2019
Unknown VB100virus 100% block rate across   Windows testing
Certified for Windows
AVTest Certified for Windows and MacOS
In top 10 vendors
SELabslogo AAA rated: in top 10 vendors




All prices calculated at per endpoint per month, for comparison purposes.

Pricing is 'starting from' and based on list pricing. It can be subject to change, volume discounts etc.

Correct at September 2020


Contact us for accurate pricing based on your specific requirements

SentinelOne logo

 Minimum purchase - 5 endpoints - only through ITHQ

Payment can be billed monthly - only through ITHQ

To achieve these prices below, minimum purchase 100 endpoints, billed annually.

Quote always required for accurate pricing

Core Control Complete
$4.16 $4.90 $9.00
Includes full advanced EDR
All Core features plus device, firewall and bluetooth control
All Control features plus threat hunting and deep visibility


kaspersky logo

Minimum purchase - 100 endpoints

Payment always billed annually

Priced according to G2 Crowd

Select Advanced Total
Includes automated EDR All Standard features plus controls, enhanced logging and patch management
All Advanced features plus content filtering and further controls


SentinelOne Get a Demo