VMware Carbon Black Endpoint Valuable Features

KarthikR1 - PeerSpot reviewer
Consultant at NCR Corporation

When it comes to the pros of Carbon Black CB Defense, it produces a lot of events as per the MitraVax framework, which is good. It provides continuous monitoring and threat detection on endpoints and responds to security incidents. It uses machine learning and behavioral analytics to detect and respond to advanced threats.

View full review »
Andrew Nai - PeerSpot reviewer
Lead Infrastructure Engineer at Government of Singapore

The Intel fit was very extensive and comprehensive enough. The visualization tree product feature in this CB defense is quite good. These are the two more notable product features.

The pricing is excellent.

The solution is stable.

View full review »
UK
Director-International Trade Operations - India Middle East at Dow

The most valuable feature of the solution stems from the support it provides. In my company, whenever we face any issues or downtime with the solution, there is no need to adhere to any timeline wherein we can only get support from the vendor within business hours since it provides support twenty-four hours and seven days a week.

View full review »
Buyer's Guide
VMware Carbon Black Endpoint
February 2024
Learn what your peers think about VMware Carbon Black Endpoint. Get advice and tips from experienced pros sharing their opinions. Updated: February 2024.
763,955 professionals have used our research since 2012.
Ashish Dubey - PeerSpot reviewer
Lead Security Analyst at SecurityHQ

The solution has a library where we can have multiple threat intels onboarded. We just have to subscribe to a particular site intel and they'll provide us with all of the truncated details so that we can create IOCs and alerts on the basis of those IOCs. 

It's one of the best features because there are multiple third-party vendors who can provide us with site intel in one location. You just have to subscribe to them, and they'll start providing you with IOCs. If a new attack starts, you will have all the basic IOCs on that list, which can be used to identify if the same attack is happening in your environment.

We can isolate devices in just two clicks. That's also a great feature. We can remediate and repair devices from a central location. It's not too difficult to use that particular tool. The user interface is very easy to understand. You are not required to roam around the console to find where the alert went. It's easy to resolve that.

When we onboarded Carbon Black, there weren't many EDR solutions available in the market. It was one of the best tools when it was launched. We don't have any complaints with the tool. The tool is very good. It highlights many of the alerts and events.

View full review »
MR
Head Of Information Security Department at a insurance company with 201-500 employees

The most valuable feature of the solution is its EDR functionality. The osquery functionality of the product is also very good since it allows us to investigate special cases. Vulnerability management is another good feature of the product.

View full review »
KarthikR1 - PeerSpot reviewer
Consultant at NCR Corporation

I rate Carbon Black CB Defense an eight out of ten for the ease of its initial setup.

View full review »
KL
Senior Director, Information Technology at C.E. Niehoff & Co.

The feature I found most valuable in Carbon Black CB Defense is the ongoing monitoring, though I'm not sure if it's because of the solution, or if it's because of Red Canary. The ongoing monitoring feature works by emailing updates about any detections found.

View full review »
IT
Group CIO at a construction company with 10,001+ employees

I found the offline scanning to be particularly useful. Compared to CrowdStrike, it had better IT capabilities and beautiful analytics. Overall, it was cost-effective too.

View full review »
Luciano Batalha - PeerSpot reviewer
Systems Engineer at EVONICEVONIC

The most valuable feature of the solution stems from the fact that it is one of the best EDR tools in the market.

View full review »
RizwanAlam - PeerSpot reviewer
AVP - Information Security Governence & Risk Management at Allied Bank Limited

The best feature of this solution is that we have a live response, which is really tailored to our needs. 

View full review »
WAKKAS AHMAD - PeerSpot reviewer
Security Consultant at Mahle

The Carbon Black CB Defense feature I found most valuable is that it gives us the ability to do log analysis as well as the current state of the environment and activity on the user machines.

View full review »
Ramesh RP - PeerSpot reviewer
Security Analyst at Halian

Sandboxing is one of the features I found to be the most valuable in Carbon Black CB Defense.

View full review »
Ricardo Franco Mahecha - PeerSpot reviewer
VMware Consultant at V2S Corporation

For Carbon Black Endpoint, the possibility of integration with different other software's log servers is the important thing. Having just one point of view is more interesting so you don't need to go to different places to see all the information.

View full review »
Matthew Weisler - PeerSpot reviewer
Sole Proprietor at Core-Infosec

The solution is cloud based which makes it easy to use for remote devices or work-at-home situations. 

The solution supports full trust or signature-based approvals. 

You can get very granular and band out policies or applications without having to do hash values. You can band through the entire environment by execution of the name or desk IDXE. This can be achieved on the policy side because of the signature, IOC, or naming convention itself. This is very effective for pushing more blockage or removing threats across the board. 

The solution has a very nice API on the back end for remoting into a system and executing scripts or utilizing self automation. This is useful for monitoring several different companies in a workspace or workbook-type format. For example, I report and send out mass emails from a clickable button in an Excel workbook. The APIs all exist for each client. I push out automatic endpoint monitoring and reports every single day at a particular time, with a simple clickable button that serves as a scheduled task for fifty clients. 

View full review »
Nikunj Kamboj - PeerSpot reviewer
Cybersecurity Analyst at OnX Canada

VMware Carbon Black Endpoint is a highly stable solution.

View full review »
Durai  Singh - PeerSpot reviewer
Business Owner at Ararat Technologies

Customers want solutions that provide endpoint detection and response. The traditional antivirus solutions and the market trend are changing. Customers are asking for the latest technologies. Carbon Black has very good market strategies. We do the marketing activities and promote the product to the customers.

View full review »
A(
Cyber Security and Compliance Consultant at Caretower

The tool is pretty stable.

View full review »
SL
ICT/Systems Application Engineer at Honeywell

The whole purpose of the product, like application control, is very good, and also if you need to update some policies, it works well and instantly.

View full review »
Adriano Gross - PeerSpot reviewer
Information Security Consultant at a recruiting/HR firm with 10,001+ employees

The product’s most valuable feature is incident detection and response.

View full review »
JT
Senior Consultant at Palsys

The product's most valuable feature is its ability to be fully integrated with the VMware environment.

View full review »
TR
Product Engineer Cyber Security at a energy/utilities company with 51-200 employees

The solution's most valuable feature is live response. We can verify and view the task list and the processes. Also, we can create policies with its help.

View full review »
Buyer's Guide
VMware Carbon Black Endpoint
February 2024
Learn what your peers think about VMware Carbon Black Endpoint. Get advice and tips from experienced pros sharing their opinions. Updated: February 2024.
763,955 professionals have used our research since 2012.