We performed a comparison between Cybereason Deep Respond [EOL], VMware Carbon Black Cloud, and VMware Carbon Black Endpoint based on real PeerSpot user reviews.
Find out what your peers are saying about VMware, ServiceNow, IBM and others in Security Incident Response."We have 20,000 endpoints in our organization. It's very critical to monitor each and every device with any of our solutions. By deploying Cybereason, it collects all the information from every computer and it will feed it to the AI engine and do a malware check. It's very clear cut and we save a lot of time. It detects the problem very quickly and we can prevent an issue before it occurs."
"The most valuable features are its lightweight design, ensuring minimal impact on end-users, and its real-time protection."
"The ability to quickly isolate a system from the network, while still being able to perform some forensics and mitigation work remotely, was of great value to us since we had many mobile and distributed systems."
"The market information they gather from the community is really good. Their configuration capabilities are good."
"The ability to isolate an endpoint with only the host name and a click of a button is a major time saver."
"Integration and scalability are the most valuable."
"The detection response and quarantining are very good features."
"For setup, the server can be given to you as a VM image and with minimal configuration needed."
"It is nice when you're in a situation where you think someone's device is compromised and that there's some malware getting into your fleet."
"The solution is very useful and easy to handle. You don't need much intervention with this product."
"The product's most valuable feature is its ability to be fully integrated with the VMware environment."
"It uses machine learning and behavioral analytics for advanced threat detection and response."
"The triage feature that shows you the whole chain of the malware is useful."
"The most valuable feature of the solution stems from the fact that it is one of the best EDR tools in the market."
"The most valuable feature is that it detects and stops malicious executables."
"The visibility provided has been great."
"The best feature of this solution is that we have a live response, which is really tailored to our needs."
"It's all on the analysis part. They currently support from email only. If we have a problem with Cybereason like high memory utilization, for example, we send an email to their team and they respond when they see it, but there is no on-call support. They don't offer the ability to call them."
"The solution needs to simplify the process of adding custom watchlists, as well as embrace YARA for rule creation."
"We are subscribed to FS-ISAC threat indicator, but have been unsuccessful in adding it to our alliance feeds."
"The support team of Carbon Black CB Response needs improvement. At present, they need a lot of information. Then they give you an answer that they already gave you. You tell them it didn't work, and then they take a long time."
"It's not simple."
"Technical support for the solution should be improved because there is a scarcity of support teams in the Middle East."
"They need to improve the batch console. It needs more capabilities. We are limited by the ones it provides..."
"The product detects too many false positives initially and it could integrate better with other security solutions."
"Additionally, it is complex to use, and the pricing should be improved."
"In the past, we've seen some stability issues in the latest version releases. We tend to hang back one version just to make sure issues are fully resolved to avoid user disruption."
"What was rolled out to my company are mixed versions of Carbon Black CB Defense, so what I'd like to see in the next release is more synchronization, where it can detect the endpoint that's running an old version and suggest updates."
"The EDR portion could be better. I'm not a big fan, but it works."
"I'm not sure as to the logic of how we've decided to customize it. We've only really used it since February and therefore there may be more to do on that front. That's why it's hard to say if something is missing or if we just aren't utilizing it."
"Sensor deployment requires extensive fine-tuning, and creating deployment packages is time-consuming."
"The support is poor."
"Based on all the security roles and the release privilege, it could take time for an application to be whitelisted and approved for use."
"Integration is difficult, but CB Defense is more powerful than others. It is difficult to implement but easy to pick up many detections."
Earn 20 points