We compared Trellix Endpoint Security and VMware Carbon Black Endpoint based on our users reviews in five parameters. After reading the collected data, you can find our conclusion below:
Comparison Results: Trellix offers a comprehensive management console and easy setup process, with a wide range of features. However, it could improve in terms of agent communication and user experience. In contrast, VMware Carbon Black Endpoint has a more challenging initial setup but excels in continuous monitoring, incident detection and response. It could benefit from improvements in areas such as GUI, integration, and support. Overall, Trellix may have an advantage in user-friendly setup and management, while Carbon Black stands out in threat detection and response capabilities.
"NGAV and EDR features are outstanding."
"The most valuable feature is the analysis, because of the beta structure."
"I get alerts when scripts are detected in the environment."
"The product's initial setup phase is very easy."
"Forensics is a valuable feature of Fortinet FortiEDR."
"Ability to get forensics details and also memory exfiltration."
"We have FortiEDR installed on all our systems. This protects them from any threats."
"Fortinet has helped free up around 20 percent of our staff's time to help us out."
"This product has the capability to check a wide range of vulnerabilities and devices."
"The product is quite user-friendly."
"I have found many of the features to be useful."
"The product is easy to use."
"Communication with all Mcafee products (also 3rd parties) by DXL infrastructure."
"Threat prevention is valuable because most clients use other solutions like antivirus as part of web protection. I don't find that kind of solution useful."
"What I like best is the integrated end-to-end security that works with the security information and events manager."
"Technical support is always available and very helpful."
"Carbon Black Cb Defense has a nice component called Alert Triage. It contains full details of the process execution "kill chain" and "go live" for immediate remediation."
"The best feature of this solution is that we have a live response, which is really tailored to our needs."
"The solution is extremely scalable."
"The tool is pretty stable."
"For Carbon Black Endpoint, the possibility of integration with different other software's log servers is the important thing. Having just one point of view is more interesting so you don't need to go to different places to see all the information."
"Carbon Black has very good market strategies."
"Provides visibility into the chain of attack and threats that use valid operating system processes to execute attacks."
"I like its reporting."
"I haven't seen the use of AI in the solution."
"The solution is not stable."
"FortiEDR could add a separate scanning dashboard. In incident management, we prefer to remove the endpoint system from the environment and scan the system. We typically use Symantec for that, but if we want to use FortiEDR for that, then we need a scanning tab to clarify things."
"I would like the solution to extend beyond endpoint protection and include other attack surfaces such as other network components."
"The security should be strong for the cloud. Some applications are on-prem and some are on the cloud. Fortinet should also have strong security for the cloud. There should be more security for the cloud."
"The support needs improvement."
"Integration with Azure and SaaS provisioning tools could improve Fortinet FortiEDR."
"The EDR console should have more extensive reporting. You shouldn't need to purchase FortiAnalyzer. It should be included in the EDR part. The security adviser cloud platform could be improved with more options for exclusive or intensive rules for devices."
"The product could do more to keep administration alerted to detected threats on endpoints."
"We’re facing remote installation issues sometimes:"
"Patch management is unavailable"
"The solution could provide open XDR in addition to EDR."
"Trellix lacked email protection when it was a McAfee product. They added this feature during the merger with FireEye, but it hasn't been fully integrated. The core features will be integrated into the next release. FireEye has several solutions for EDR and sandboxing."
"The platform needs improvement in terms of handling heavy databases."
"The DAC (Dynamic Application Containment) component of this product needs improvement."
"McAfee GW Security and McAfee Child Safety need some improvement as they are relatively new."
"Performing a malware scan usually takes a lot of time, more than 24 hours."
"Carbon Black CB Defense has helped improve my organization by allowing us to have better data so that we can do correlation and get visibility into the alerts."
"I would like to see improvements made so that we can better see all of the processes."
"There could be more knowledge. I think they made a mistake when they took away the Check Point integration, because it provides more automation and also more threat intelligence."
"The EDR portion could be better. I'm not a big fan, but it works."
"I would like to see the user credentials feature improved. I would also like to see more reporting features and better ways to roll the reports out."
"The device control feature could also be compatible with the user’s profile as well."
"The feature set for the firewall needs improvement."
Trellix Endpoint Security is ranked 10th in Endpoint Protection Platform (EPP) with 96 reviews while VMware Carbon Black Endpoint is ranked 16th in Endpoint Protection Platform (EPP) with 62 reviews. Trellix Endpoint Security is rated 8.0, while VMware Carbon Black Endpoint is rated 8.0. The top reviewer of Trellix Endpoint Security writes "Good user behavioral analysis and helpful patching but needs better support services". On the other hand, the top reviewer of VMware Carbon Black Endpoint writes "Centralization via the cloud allows us to protect and control people working from home". Trellix Endpoint Security is most compared with Microsoft Defender for Endpoint, Trellix Endpoint Security (ENS), CrowdStrike Falcon, Cortex XDR by Palo Alto Networks and SentinelOne Singularity Complete, whereas VMware Carbon Black Endpoint is most compared with CrowdStrike Falcon, Microsoft Defender for Endpoint, SentinelOne Singularity Complete, Trend Micro Deep Security and Cisco Secure Endpoint. See our Trellix Endpoint Security vs. VMware Carbon Black Endpoint report.
See our list of best Endpoint Protection Platform (EPP) vendors.
We monitor all Endpoint Protection Platform (EPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.