Compare Carbon Black CB Defense vs. CrowdStrike

Carbon Black CB Defense is ranked 4th in Endpoint Protection for Business with 10 reviews while CrowdStrike is ranked 6th in Endpoint Protection for Business with 10 reviews. Carbon Black CB Defense is rated 9.0, while CrowdStrike is rated 8.6. The top reviewer of Carbon Black CB Defense writes "It has a higher detection ratio because it's cloud-based and it also does a lookup to virus total". On the other hand, the top reviewer of CrowdStrike writes "I like the overall reports of this solution. They are crisp, and to the point". Carbon Black CB Defense is most compared with Carbon Black Cb Response, Cylance and Microsoft Windows Defender, whereas CrowdStrike is most compared with Cylance, Microsoft Windows Defender and Symantec Endpoint Protection (SEP). See our Carbon Black CB Defense vs. CrowdStrike report.
You must select at least 2 products to compare!
Carbon Black CB Defense Logo
30,560 views|20,731 comparisons
CrowdStrike Logo
29,390 views|21,822 comparisons
Most Helpful Review
Find out what your peers are saying about Carbon Black CB Defense vs. CrowdStrike and other solutions. Updated: November 2019.
382,196 professionals have used our research since 2012.
Quotes From Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

The most valuable feature is that it detects and stops malicious executables.The offline networking is the most important feature. Some of our users are engineers that work offsite, and they can still be on the solution, which is also great.The number of false-positives is very, very low compared to other products using AI.The biggest feature out of CarbonBlack is its ability to dive in with more depth. You can look at the entire kill chain and understand, not only if an alarm or identified incident is truly a true security issue versus a false positive, and it allows us to backtrack and figure out why it actually happened and how it got into the environment.The data analysis is the most valuable because of the whitelist database. It is different than standard IDS solutions.It actually does some heuristics, and some behavioral analysis.The most valuable asset is the time-lining capability for any breach activity.This product has the capability of uploading scripts to the tool and this is a very comprehensive feature.

Read more »

This solution has made the lives of the IT staff much easier, compared to the previous one.We are now able to find the root cause analysis on any threat. We can figure out where the issue came in versus just dealing with where it is at the moment.We have seen a reduction to the performance hit to our operating systems.We are happy with CloudStrike's ease of use and touch notification.Because it is security product and acts like an AIML smart product, not merely based on daily/weekly updates and signatures.The automatic alert feature is the most important feature of the solution.The most valuable feature is its threat analysis.Scalability is good. We have had no issues with it.

Read more »

This solution works well but needs lots of tuning and optimization.The endpoint machines need improvement.The implementation of the solution should be improved. It takes too much time.Carbon Black needs to do a better job of proving their platform in the industry, and providing a bit more access to do industry testing with real world examples to help prove their platform.The UI interface needs improvement. The management needs further work in future versions.The tech support communicates, but it's just not with movement.I would personally give the tech support a rating of seven out of ten.Adding an application and a device control feature would be a great help for this solution.

Read more »

I would like to see the machine learning feature enhanced.As the company has grown, the technical support has felt less personal.The GUI can use improvement, it's cloud-based so sometimes the interface can be a bit slow. The interface could use a little bit more speed.We have had to open a case with the technical support to get some issues and bugs resolved.Unfortunately, native applications are not supported.The management of log aggregation is in need of improvement.I would like CrowdStrike to provide some correlation in the threat analysis, so we can visualize things better.Whenever there is a feature release (upgrade) where we push to all the endpoints, it causes something to be blocked without us knowing.

Read more »

Pricing and Cost Advice
Carbon Black might be a touch more expensive than Symantec. They tend to get a premium for their capabilities. They're sort of an industry leader in a lot of areas with the functionality that they provide.I am not really involved in the pricing of this product. But, from my understanding, it is OK for us.The cost is a considerable factor, but the benefit factor is the most important. When you compare it with other products, the price is high. Carbon Black will negotiate the price.​The cost/benefit factor has great relevance in Cb Defense implementations​.

Read more »

This solution has a very competitive price.We are at about $60,000 per year.The other administrator and I can log in to check the exact details of what happened, what was running, and what caused the detection. We know exactly what was happening on the end users PC and we can tell if it's something that we actually need or something that's malicious.I do not have experience with the cost or licensing of the product.I would like them to further reduce the price, because it is quite pricey at the moment.Purchasing the product through the AWS Marketplace is just a click away. Since we were using the on-premise version of the product, we continued on the cloud by purchasing it through the AWS Marketplace.The pricing will depend upon your volume of usage.

Read more »

Use our free recommendation engine to learn which Endpoint Protection for Business solutions are best for your needs.
382,196 professionals have used our research since 2012.
Answers from the Community
Janet Peng
author avatarGerald Ostrofsky

In a nutshell:

Carbon Black:
- Using the PSC is like your home alarm system being connected to every neighbor!
- The product has rich and unmatched set of features in the end point protection space. Very focused on capabilities and domain expertise.

- Easy out of the box, and provides so much more value than just an AV product.

author avatarNachiketSathaye
Real User

Pointers are based on the tests performed during the evaluation a few months back)

- Artificial Intelligence and Machine Learning
- Is a cloud solution
- Offers protection from known threats.
- Offers advanced threat protection
- ATP Technology: AI+ML on the Agent blocks threats before they execute. Also has sandbox capability
- Predictive / Proactive
- Offers memory defense and script control
- Is cloud/server dependent
- Requires constant Internet connectivity, cannot work offline
- Footprint: 1-2 % CPU/ 40MB
- Requires Scanning
- Requires Human Intervention
- Servers are required
- Offers Endpoint Detection and Response (EDR), Endpoint Protection Platform (EPP), Threat Intelligence
- Easy to use
- 2FA
- Does not require hourly updates
- Does not require traditional AV

Does not offer:
- Application Control
- Web Reputation Control
- Web Category Protection
- Host Firewall
- Port Control System
- Full Disk Encryption
- File-Based Encryption
- Removable Media Encryption

Carbon Black:
- Detection & Response
- Cloud or On-Premise architecture
- Requires constant hash lookup. If not connected, there will be no protection from known threats.
- Offers advanced threat prevention
- ATP Technology: Hash-based, behavior-based
- Reactive
- Offers memory defense and script control
- Application control: CB protection Product
- Cannot work offline (only cached hashes)
- Cloud / Server Dependent
- Requires constant Internet connectivity, cannot work offline
- Footprint: Large - high utilization + network utilization
- Does not require scanning.
- Requires constant requires hourly updates.
- Requires Traditional AV
- Requires Human Intervention, behavioral rules & malware signatures.
- Requires Multiple servers if on-premise.
- Endpoint Detection and Response (EDR), Endpoint Protection Platform (EPP), Threat Intelligence
- Is not easy to use.

Does not offer:
- Web Reputation Control
- Web Category Protection
- Host Firewall
- Port Control System
- Full Disk Encryption
- File-Based Encryption
- Removable Media Encryption

Few additional pointers:
1) There are commercials aspects and CB is costlier than CrowdStrike
2) CB is little heavy on the endpoint as compared to CrowdStrike
3) CrowdStrike is coming up with EDR agents for mobiles as well ( Beta is out and GA is expected in June-July 2019). This could be the game changer

author avatarJimPoehlman

Depends on your sec-engineering staff size, the number of agents, integration with other tools. I would start by listing your use cases and break down what you mean by "better for my needs". Too many variables.

author avatarSteve Newby

Why are you just looking at those solutions? You should also consider Microsoft Defender ATP ( which is no longer just limited to monitoring Windows and which Gartner has stated as being influential in this market.

author avatarSiddharth Narayanan

Since both are an EDR solution, I would suggest analyzing which provides end to end mitigation. I know CB has 3 modules for the detailed analysis but not sure on the CrowdStrike.

Average Words per Review
Avg. Rating
Average Words per Review
Avg. Rating
Top Comparisons
Compared 12% of the time.
Compared 22% of the time.
Also Known As
Bit9, Confer
Carbon Black
Video Not Available

CB Defense is an industry-leading next-generation antivirus (NGAV) and endpoint detection and response (EDR) solution. CB Defense is delivered through the CB Predictive Security Cloud, an endpoint protection platform that consolidates security in the cloud using a single agent, console and data set. CB Defense is certified to replace AV and designed to deliver the best endpoint security with the least amount of administrative effort. It protects against the full spectrum of modern cyber attacks, including the ability to detect and prevent both known and unknown attacks. CB Defense leverages the powerful capabilities of the CB Predictive Security Cloud, applying our unique streaming analytics to unfiltered endpoint data in order to predict, detect, prevent, respond to and remediate cyber threats. In addition, CB Defense provides a suite of response and remediation tools, including Live Response, which allows security personnel to perform remote live investigations, intervene with ongoing attacks and instantly remediate endpoint threats. For peace of mind, CB Defense customers can also leverage CB ThreatSight, Carbon Black’s managed threat alert service, to validate alerts and uncover new threats.

Falcon sensor (small and light) and cloud (big and powerful) work seamlessly to deliver real-time protection and visibility -- yes, even when the sensor is not connected to the internet. The simplicity of CrowdStrike’s architecture finally gives you the freedom to replace and retire the complicated, performance-robbing security layers that clutter your environment.

This architecture lies at the heart of Falcon, CrowdStrike’s pioneering cloud-delivered endpoint protection platform. It both delivers and unifies next-generation antivirus, endpoint detection and response (EDR), managed threat hunting, security hygiene and threat intelligence. Using its purpose-built cloud native architecture, the Falcon Platform collects and analyzes more than 30 billion endpoint events per day from millions of sensors deployed across 176 countries.

Learn more about Carbon Black CB Defense
Learn more about CrowdStrike
Sample Customers
Netflix, Progress Residential, Indeed, Hologic, Gentle Giant, Samsung Research AmericaRackspace Inc.
Top Industries
Construction Company25%
Financial Services Firm13%
Security Firm13%
Software R&D Company35%
Manufacturing Company7%
Media Company7%
Comms Service Provider6%
Software R&D Company28%
Manufacturing Company8%
Comms Service Provider8%
Financial Services Firm7%
Company Size
Small Business36%
Midsize Enterprise9%
Large Enterprise55%
Small Business26%
Midsize Enterprise20%
Large Enterprise54%
Small Business31%
Midsize Enterprise8%
Large Enterprise62%
Find out what your peers are saying about Carbon Black CB Defense vs. CrowdStrike and other solutions. Updated: November 2019.
382,196 professionals have used our research since 2012.
We monitor all Endpoint Protection for Business reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
Sign Up with Email