The MITRE ATT&CK Evaluation is a recognized assessment conducted by MITRE Engenuity to evaluate cybersecurity vendors’ capabilities in protecting organizations against advanced threats [5]. This article highlights the performance of Bitdefender, Cortex XDR by Palo Alto Networks, and Cynet in the latest evaluations.


In the latest evaluation [2] [4] [7] [8], Bitdefender achieved a perfect score [10], detecting 100% of the attack steps and providing detailed descriptions of the simulated adversary behavior [10]. This is the third consecutive year that Bitdefender has achieved this result [10]. The evaluation included 31 vendors and focused on detecting and protecting against emulated adversary tactics and techniques [10]. Bitdefender’s performance highlights its strong detection coverage across the MITRE ATT&CK Matrix [1], particularly excelling in safeguarding against credential access [1]. The evaluations include solutions from various vendors such as AhnLab [6], BlackBerry [6], Check Point [6], CrowdStrike [6], Cybereason [6], Cynet Systems [6], Deep Instinct [6], Elastic [6], ESET [6], Fortinet [6], IBM Security [6], Malwarebytes [6], Microsoft [6], Palo Alto Networks [6] [8], Qualys [6], Rapid7 [6], Secureworks [6], SentinelOne [6], Sophos [3] [6] [9], Trend Micro [1] [6], VMware [6], WatchGuard [6], and WithSecure [6]. These evaluations aim to provide unbiased insights into product capabilities for detecting advanced adversary behaviors [6], helping organizations make informed decisions about cybersecurity solutions [6].

Cortex XDR [8], developed by Palo Alto Networks, is another vendor that stood out in the MITRE Engenuity ATT&CK Evaluations. They achieved 100% prevention and analytic detection [8], with no configuration changes or delayed detections [8]. Their detections are of the highest quality [8], with only one detection recognized as a Tactic level detection [8]. Cortex XDR blocked all 129 substeps in the Protection evaluation [8], and they had no missed detections if we exclude detections resulting from a configuration change [8]. Palo Alto Networks continues to invest in adversarial research and engineering in endpoint security to help customers stay safe in the face of cyber threats [8].

Cynet [2] [4] [5] [6] [7], a provider of an autonomous breach protection platform [2], also announced the results of its 2023 MITRE Engenuity ATT&CK Evaluation [2] [7]. The evaluation tested the abilities of 30 cybersecurity vendors to detect and respond to a real-world threat posed by the Turla threat group [2]. Cynet achieved 100% threat visibility, 100% detection quality [2] [7], and 100% analytic coverage without any configuration changes [2] [8], making it the first vendor to achieve these results in the same evaluation [2]. Cynet’s performance highlights include 100% detection [2], visibility [2] [4] [5] [7] [8], analytic coverage [2] [4] [8], and real-time detections [2] [4] [8]. The company’s participation in the evaluation has driven improvements to its protections [2] [7].


The impressive performances of Bitdefender, Cortex XDR by Palo Alto Networks, and Cynet in the MITRE ATT&CK Evaluations demonstrate their capabilities in protecting organizations against advanced threats. These evaluations provide valuable insights for cybersecurity leaders to make informed decisions about the best vendor for their organization’s needs. The continuous investments in research and engineering by these vendors highlight their commitment to helping customers stay safe in the face of evolving cyber threats.