We performed a comparison between Darktrace and Trellix Endpoint Security (ENS) based on real PeerSpot user reviews.
Find out what your peers are saying about Microsoft, Cisco, TitanHQ and others in Email Security."There are several features that I consider valuable."
"The most valuable feature is protection against malicious links, fishing, and impersonation. You can train people to be aware of these threats, but they're not always careful. When they're using their phones between meetings, they click on a link, and it's game over."
"Defender enables us to secure all 365-related activity from a single place. It gives us visibility into everything happening in Outlook, protecting us against phishing and other email-based threats. Defender helps us detect any suspicious behaviors."
"The technical support is good and quick to resolve issues."
"At the moment we are satisfied with this product. It's a stable, scalable, and resilient solution for us."
"Our customers are satisfied with Defender for 365 because Microsoft products are easy to use and customize to meet the client's needs. Everything is in one place, so we can adjust policies as needed for phishing, DLP, ATP, or any other security features that our clients want to apply."
"It also gives the vulnerability status according to the versions you have selected. Let's say you have Google Chrome. It mentions the versions it has, and it updates. Within two hours of an update, it is reflected in the dashboard. That's really nice to have."
"I would say that 90% of the spam and phishing attack emails get blocked right off the bat."
"The ability to detect activity on the network is very useful to us. Even if it's not necessarily an illegal activity, if it is abnormal activity, it is able to detect it and notify us."
"I have found the automation and AI features to be valuable. If someone were to come in to the office at midnight and log in, Darktrace would flag it."
"We have found the product to be stable and issue-free."
"We liked their approach to identifying intrusions or network anomalies using AI."
"Provides great network protection."
"It is a stable solution without downtime."
"The ability to see what we have not seen before is most valuable. It is very interesting to find out the most vulnerable devices in our network."
"The solution is stable. We've never had any problems with it."
"The most valuable feature of this solution is its simplicity."
"The threat scanning is excellent. It uses predictive technology and I can utilize attack data to help us fine-tune our systems and network infrastructure. This protects us against current and future attacks."
"If the network has seen something, we can use that to put a block to all the endpoints."
"The most valuable feature of the solution is its dashboard."
"The features we have found most valuable have been containment as well as the ability to triage agent activities."
"It is scalable and stable and the initial setup is the easiest part of using the product."
"MVISION Endpoint is so much easier and so much simpler for the lay security personnel to handle."
"I have not received any complaints about the performance."
"We need to be able to whitelist data at the backend."
"Too many false positives and lacks an accurate capability to detect malicious SharePoint sites."
"The product must provide better malware detection."
"We noticed that from time to time, Microsoft's stability does have problems. Sometimes the service goes up and down. Sometimes they change without prior notice."
"The visibility for the weaknesses in the system and unauthorized access can be improved."
"There is room for improvement in terms of reporting."
"About eight months ago, we started to measure the quantity of phishing and spam that we have been receiving, and it has been increasing a lot. That means that protection for our email is not as good as we were expecting."
"Microsoft should provide more documentation for users so they can self-educate. I would like to see more documentation for advanced security features."
"The solution would benefit from automation. Currently, you have to know what you are searching for."
"In the next version, I'd like to see penetration testing."
"One thing I would like is for Darktrace to flag SMB traffic more accurately. Currently, it only flags that SMB traffic has occurred, but it doesn't specify which file was being transferred. This makes it difficult to investigate incidents involving SMB traffic, as we don't have concrete evidence of what was being sent."
"Upper management wasn't sold on the value proposition."
"The main portal needs improvement as it is difficult to use."
"Darktrace is a closed technology, meaning we know very little about how it works, including the architecture, which is significant. As a result, when we implement the system and find we're getting many false positives, we have minimal insight into why it's happening and what we can do to fix it. We don't know how the solution is configured, the criteria for threats to be determined, or the product's inner workings. We understand that they have to ensure privacy and their copyright, but we want to see some documentation or public research into the security Darktrace provides."
"I did not use the AI features because they should make it more user-friendly which would be a benefit. Additionally, the solution could integrate with more SIEM or SOAR tools."
"It's a very complex platform."
"The email protection isn't efficient enough, and I'd like to see DLP features in the next release."
"Most of these types of solutions including others, such as Carbon Black and FortiEDR, all have the same features. However, Carbon Black is the leader when it comes to being robust and user-friendly and this solution should improve in those areas to stay more competitive."
"Upgrading to new versions isn't easy and it can take a long time. Also, other solutions' tamper protection features are better than FireEye's. Clients should have access to our local information, but they shouldn't change settings on the system itself."
"I would like to see simple processing and reporting online."
"Impacts performance of the servers quite negatively."
"You do not have access to all the features when you use the Trellix web interface. For example, you cannot do device or drive encryption from the web interface. Also, when we're working with customers, it's sometimes challenging to get sales support. Delays mean we might lose an opportunity. Lastly, Trellix lacks some documentation about custom features."
"One suggestion is they should reduce the constant notifications. Whenever I open my laptop, there are too many notifications from McAfee, and it gets annoying."
"The central monitoring dashboard needs improvement."
More Microsoft Defender for Office 365 Pricing and Cost Advice →
More Trellix Endpoint Security (ENS) Pricing and Cost Advice →
Darktrace is ranked 11th in Email Security with 65 reviews while Trellix Endpoint Security (ENS) is ranked 19th in Endpoint Protection Platform (EPP) with 49 reviews. Darktrace is rated 8.2, while Trellix Endpoint Security (ENS) is rated 7.6. The top reviewer of Darktrace writes "Great autonomous support, offers an easy setup, and has responsive support". On the other hand, the top reviewer of Trellix Endpoint Security (ENS) writes "Reliable with good independent modules and a straightforward setup". Darktrace is most compared with CrowdStrike Falcon, Vectra AI, SentinelOne Singularity Complete, Cortex XDR by Palo Alto Networks and Cisco Secure Network Analytics, whereas Trellix Endpoint Security (ENS) is most compared with Trellix Endpoint Security, Microsoft Defender for Endpoint, CrowdStrike Falcon, Trellix Endpoint Detection and Response (EDR) and VMware Carbon Black Endpoint.
We monitor all Email Security reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.