Fortinet FortiEDR vs Fortinet FortiSandbox comparison

The compared Fortinet FortiEDR and Fortinet FortiSandbox solutions aren't in the same category. Fortinet FortiEDR is ranked #10 in EDR , with an average rating of 8.0, and holds a 4.2% mindshare in the category. Fortinet FortiSandbox is ranked #4 in ATP , with an average rating of 8.1, and holds a 10.7% mindshare. Additionally, 82% of Fortinet FortiEDR users are willing to recommend the solution, compared to 94% of Fortinet FortiSandbox users who would recommend it.

Fortinet FortiEDR

Read 38 Fortinet FortiEDR reviews

7,711 Views
5,841 Comparison Views

82% willing to recommend

Fortinet FortiSandbox

Read 38 Fortinet FortiSandbox reviews

2,225 Views
1,394 Comparison Views

94% willing to recommend

Fortinet FortiEDR

Fortinet FortiSandbox

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Fortinet FortiEDR and Fortinet FortiSandbox based on real PeerSpot user reviews.

Find out what your peers are saying about CrowdStrike, SentinelOne, Microsoft and others in Endpoint Detection and Response (EDR).

To learn more, read our detailed Endpoint Detection and Response (EDR) Report (Updated: January 2025).

Buyer's Guide

Endpoint Detection and Response (EDR)

January 2025

Download the complete report

Helped 845,040 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Fortinet FortiEDR

Average Rating

8.0

Reviews Sentiment

7.1

Number of Reviews

Ranking in other categories

Endpoint Detection and Response (EDR) (10th)

Fortinet FortiSandbox

Average Rating

8.2

Reviews Sentiment

7.1

Number of Reviews

Ranking in other categories

Advanced Threat Protection (ATP) (4th), Threat Deception Platforms (7th)

Mindshare comparison

Fortinet FortiEDR and Fortinet FortiSandbox aren’t in the same category and serve different purposes. Fortinet FortiEDR is designed for Endpoint Detection and Response (EDR) and holds a mindshare of 4.2%, up 4.1% compared to last year.
Fortinet FortiSandbox, on the other hand, focuses on Advanced Threat Protection (ATP), holds 10.7% mindshare, up 8.4% since last year.

Endpoint Detection and Response (EDR)

Advanced Threat Protection (ATP)

Featured Reviews

Jovan Jovanovic

Security Team Lead at Comtrade Group

Collects valuable endpoint data with good analytics and helpful scalability

This is a question for the partners who implement and install it. I am not involved in the implementation process, so I cannot suggest improvements. As mentioned, this is a query for my presales team, not me. I am part of the security team lead, focusing mainly on sales. Regarding the product, Fortinet could consider reducing the minimum order quantity for EDR, currently set at 500 pieces. In smaller markets like Serbia, Bosnia, Montenegro, and Slovenia, it can be challenging to find customers with 500 endpoints. My suggestion to Fortinet would be to lower this minimum order quantity to one.

Read full review

Kiarash Heydari

Information security manager at asa com

Light and powerful solution design; useful to have

My impression is that the initial setup process is quite straightforward. If you know what you're using it for, the initial setup can be quite easy and the solution is not that hard to use. When it comes to the steps taken for the implementation, you would select the OS you're using and when the files are sent to the appliance you check, and in the appliance configuration, it must be like the visual governance environment. You must set up the OS you have so that appliance can scan or analyze your file. To maintain this solution, you must always have at least one all-around person tuning this solution.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"We have FortiEDR installed on all our systems. This protects them from any threats."

"Exceptions are easy to create and the interface is easy to follow with a nice appearance."

"The stability is very good."

"It is stable and scalable."

"It is very easy to set up. I would rate my experience with the initial setup a ten out of ten, with ten being very easy to set up."

"It's easy to configure and integrate the solution with the current network because it is used by Fortinet clients."

"Fortinet FortiEDR's firewalling, rule creation, monitoring, and inspection profiles are great."

"The data collected from the endpoint where the EDR is installed is highly valuable for me."

More Fortinet FortiEDR pros

"The solution is very good because it catches a lot of threats in emails."

"The technical support is very good."

"FortiSandbox helps us handle unknown threats. Every vendor is competing for who can detect an unknown threat the fastest. Fortinet is competitive in the market."

"The solution extracts an attached file before reaching the user and notifies the user if there's something malicious in the attachment received along with an email."

"What I find most valuable, is that it is easy to use."

"The main benefit of Fortinet FortiSandbox is that it allows organizations to detect and prevent unknown threats from entering an infrastructure."

"One of the valuable features is its ability to detect new threats."

"It is an easily scalable solution."

More Fortinet FortiSandbox pros

Cons

"We've encountered challenges during API deployment, occasionally resulting in unstable environments."

"Everything with Fortinet having to do with their cloud services. They need to invest more in their internal infrastructure that they are running in the cloud. One of the things I find with their cloud environment compared to others' is that they go cheap on the equipment. So it causes some performance degradation."

"The security should be strong for the cloud. Some applications are on-prem and some are on the cloud. Fortinet should also have strong security for the cloud. There should be more security for the cloud."

"I would like the solution to extend beyond endpoint protection and include other attack surfaces such as other network components."

"I haven't seen the use of AI in the solution."

"It takes about two business days for initial support, which is too slow in urgent situations."

"We've had a lot of false positives; things incorrectly flagged that require manual configuration to allow. Even worse, after we allow a legitimate program, it sometimes gets flagged again after an update. This has caused a lot of extra work for my team."

"The amount of usage, the number of details we get, or the number of options that can be tweaked is limited in comparison to that with other EDR solutions"

More Fortinet FortiEDR cons

"I would like to have machine learning added to the solution in a future release."

"If you were to compare prices between vendors and manufacturers, you would see that the lowest equipment in the Sandbox line is quite expensive for a new customer."

"It would be better if we could integrate FortiSandbox with endpoint security solutions."

"The use cases in Fortinet FortiSandbox are not good. It is difficult to upload a custom VM for Fortinet FortiSandbox. The integration of Fortinet FortiSandbox with other Fortinet or FortiGate firewalls is not good. VMs are already installed in the hardware and are working fine, but we tried to approve the custom VM many times but did not succeed."

"It would be better if it had support for Mac and Linux."

"The initial setup of Fortinet FortiSandbox is complex. You cannot only deploy Fortinet FortiSandbox without deploying the stack of Fortinet solutions. The implementation and integration are challenging tasks with the device and placement in the network. We needed to do POC and offloading testing."

"The initial setup is not too complex but could be easier."

"The delivery feature in my country is extremely bad."

More Fortinet FortiSandbox cons

Pricing and Cost Advice

"While the cost may have been high, we view it as a worthwhile investment due to Fortinet's reliability and long-term performance."

"The pricing is typical for enterprises and fairly priced."

"We got a good deal on licensing, so it is in the competitive range."

"It's not cheap, but it's not expensive either."

"The solution costs less than 10,000 for 100 users."

"Fortinet FortiEDR is available at a very competitive price compared to the other products in the market."

"Fortinet FortiEDR is pretty cheap compared to other EDR products because it provides three-for-one contracts."

"Offered at a high price"

More Fortinet FortiEDR pricing and cost advice

"There are no costs in addition to the standard licensing fees."

"I rate the product's pricing a five or six on a scale of one to ten, where one is low, and ten is high."

"It is an expensive solution."

"The price is competitive."

"The price of Fortinet FortiSandbox is expensive."

"The price of Fortinet FortiSandbox is not expensive."

"The license for Fortinet FortiSandbox depends on the use case."

"Fortinet FortiSandbox is a nominally priced product, so I would not say that it is a very cheap tool."

More Fortinet FortiSandbox pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Endpoint Detection and Response (EDR) solutions are best for your needs.

See recommendations

845,040 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

16%

Government

Manufacturing Company

Financial Services Firm

Government

13%

Computer Software Company

11%

Financial Services Firm

10%

Manufacturing Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What's the difference between Fortinet's FortiEDR and FortiClient?

I suggest Fortinet’s FortiEDR over FortiClient for several reasons. For starters, FortiEDR guarantees solid protection because it continually scans servers for emerging vulnerabilities, which gives...

See all answers

What do you like most about Fortinet FortiEDR?

We have FortiEDR installed on all our systems. This protects them from any threats.

See all answers

What is your experience regarding pricing and costs for Fortinet FortiEDR?

It's reasonably priced compared to other vendors' similar products.

See all answers

What do you like most about Fortinet FortiSandbox?

The real-time analysis capability of FortiSandbox is beneficial for email analysis.

See all answers

What is your experience regarding pricing and costs for Fortinet FortiSandbox?

I think it's affordable. For the six to seven months of usage, the cost has been reasonable.

See all answers

What needs improvement with Fortinet FortiSandbox?

We sometimes face a delay in email scanning due to not having multiple virtual machines. Improvements could be made in dynamic scanning, scanning all email components such as URLs and attachments, ...

See all answers

Comparisons

CrowdStrike Falcon vs Fortinet FortiEDR

Compared 17% of the time

Fortinet FortiClient vs Fortinet FortiEDR

Compared 14% of the time

Microsoft Defender for Endpoint vs Fortinet FortiEDR

Compared 9% of the time

Kaspersky Endpoint Detection and Response Expert vs Fortinet FortiEDR

Compared 8% of the time

SentinelOne Singularity Complete vs Fortinet FortiEDR

Compared 4% of the time

More Fortinet FortiEDR Competitors

Palo Alto Networks WildFire vs Fortinet FortiSandbox

Compared 42% of the time

Check Point SandBlast Network vs Fortinet FortiSandbox

Compared 15% of the time

Trellix Network Detection and Response vs Fortinet FortiSandbox

Compared 11% of the time

Microsoft Defender for Office 365 vs Fortinet FortiSandbox

Compared 7% of the time

VMRay vs Fortinet FortiSandbox

Compared 3% of the time

More Fortinet FortiSandbox Competitors

Product Reports

Buyer's Guide

Fortinet FortiEDR

March 2025

Download Fortinet FortiEDR product report

Buyer's Guide

Fortinet FortiSandbox

March 2025

Download Fortinet FortiSandbox product report

Also Known As

enSilo, FortiEDR

FortiSandbox

Overview

Fortinet FortiEDR is a real-time endpoint protection, detection, and automated response solution. Its primary purpose is to detect advanced threats to stop breaches and ransomware damage. It is designed to do so in real time, even on an already compromised device, allowing you to respond and remediate incidents automatically so your data can remain protected.

Fortinet FortiEDR Features

Fortinet FortiEDR has many valuable key features, including:

Easily customizable
Real-time proactive risk mitigation & IoT security
Pre-infection protection
Post-infection protection
Track applications and ratings
Reduce the attack surface with risk-based proactive policies
Achieve analysis of entire log history
Optional managed detection and response (MDR) service

Fortinet FortiEDR Benefits

Some of the key benefits of using Fortinet FortiEDR include:

Protection: Fortinet FortiEDR provides proactive, real-time, automated endpoint protection with the orchestrated incident response across platforms. It stops the breach with real-time postinfection blocking to protect data from exfiltration and ransomware encryption.
Single unified console: Fortinet FortiEDR has a single unified console with an intuitive interface, which makes management easier. The solution automates mundane endpoint security tasks so your employees don’t need to do it.
Cost savings: With Fortinet FortiEDR you can eliminate post-breach operational expenses and breach damage costs.
Flexibility: Fortinet FortiEDR can be deployed on premises or on a secure cloud instance. With Fortinet FortiEDR, endpoints are protected both on- and off-line.
Scalability: Because Fortinet can be deployed quickly and has a small footprint, it is easy to scale up to protect hundreds of thousand endpoints.

Reviews from Real Users

Below are some reviews and helpful feedback written by Fortinet FortiEDR users.

An Owner at a security firm says, "The features that I have found most valuable are the ability to customize it and to reduce its size. It lets you run in a very small window in terms of memory and resources on legacy cash registers. The customer has literally about 800 cash registers. That was the use case for Fortinet FortiEDR - to get that down into a tiny space. The only way to do that was to use this product because it had that ability to unbundle services that were a surplus.”

Chandan M., Chief Technical Officer at Provision Technologies LLP, mentions, “The ease of deployment and configuration is valuable. It's very easy compared to other vendors like Sophos. Sophos' configuration is complex. Fortinet is a lot easier to understand. You don't need a lot of admin knowledge to do the configuration.” He also adds, “The security is also very good and the firewall response is good.”

Harpreet S., Information Technology Support Specialist at Chemtrade Logistics, explains, "It notifies us if there's any suspicious file on any PC. If any execution or similar kind of thing is happening, it just alerts us. It doesn't only alert. It also blocks the execution until we allow it. We check whether the execution is legitimate or not, and then approve it or keep it blocked. This gives us a little bit of control over this mechanism. Fortinet FortiEDR is also very straightforward and easy to maintain."

DeAndre V., Senior Network Administrator at a financial services firm, states, “The dashboard is easy to follow and use. The deployment and uninstalling were easy. I like the detailed information about the path of a file that might be suspicious. Being able to check that out was easy to follow. Exceptions are easy to create and the interface is easy to follow with a nice appearance.

Fortinet

Fortinet FortiSandbox is a behavior-based threat detection solution that prevents and detects malicious code in files transferred within the organization. It is integrated with FortiGate firewalls and FortiMail for threat protection and can be used for monitoring and reporting. The solution inspects files in a virtual environment with different types of virtual machines and can block or quarantine files based on their score.

The most valuable features include dynamic behavior analysis, manual scan features, easy management and configuration, fast scanning, scalability, customization, and ICAP protocol. The solution is cost-effective and faster than other sandbox solutions, with a good user interface.

Fortinet

Sample Customers

Financial, Healthcare, Legal, Technology, Enterprise, Manufacturing ...

Lush, Barnabas Health, Options, Riverside Healthcare, Hillsbourough County Schools, Columbia Public Schools, Schiller AG

Buyer's Guide

Endpoint Detection and Response (EDR)

January 2025

Download Free Report

Find out what your peers are saying about CrowdStrike, SentinelOne, Microsoft and others in Endpoint Detection and Response (EDR). Updated: January 2025.

DOWNLOAD NOW

845,040 professionals have used our research since 2012.

We monitor all Endpoint Detection and Response (EDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.