Try our new research platform with insights from 80,000+ expert users

Fortinet FortiSandbox vs Trellix Advanced Threat Defense comparison

Fortinet and Trellix are both solutions in the Advanced Threat Protection (ATP) category. Fortinet is ranked #4 with an average rating of 8.1, while Trellix is ranked #22 with an average rating of 9.0. Fortinet holds a 10.7% mindshare in ATP, compared to Trellix’s 1.7% mindshare. Additionally, 94% of Fortinet users are willing to recommend the solution, compared to 83% of Trellix users who would recommend it.
Fortinet FortiSandbox
Read 38 Fortinet FortiSandbox reviews
  • 2,225 Views
  • 1,394 Comparison Views
94% willing to recommend
Trellix Advanced Threat Def...
Read 8 Trellix Advanced Threat Defense reviews
  • 391 Views
  • 251 Comparison Views
83% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Dec 1, 2024

Fortinet FortiSandbox and Trellix Advanced Threat Defense are competing products in the cybersecurity domain. Trellix Advanced Threat Defense seems to have the upper hand due to its advanced features and perceived value.

Features: Fortinet FortiSandbox offers dynamic analysis, seamless integration with Fortinet Security Fabric, and effective threat detection. Trellix Advanced Threat Defense includes machine-learning algorithms, proactive threat intelligence, and advanced analytics, providing strong zero-day threat protection.

Room for Improvement: Fortinet FortiSandbox could enhance setup procedures, increase user-friendliness, and improve its customization options. Trellix Advanced Threat Defense could work on reducing its complexity, expanding integration capabilities, and enhancing flexibility in analytics.

Ease of Deployment and Customer Service: Trellix Advanced Threat Defense offers a streamlined deployment model, ensuring easy integration with existing systems and reliable customer service. Fortinet FortiSandbox might require more extensive installation steps and has varied user support experiences.

Pricing and ROI: Fortinet FortiSandbox is known for its cost-effective setup and appealing ROI, attracting budget-conscious buyers. Trellix Advanced Threat Defense, although higher in initial cost, ensures long-term ROI through its robust features, offering greater perceived value for comprehensive security needs.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Fortinet FortiSandbox vs. Trellix Advanced Threat Defense Report (Updated: March 2025).
Buyer's Guide
Fortinet FortiSandbox vs. Trellix Advanced Threat Defense
March 2025
Download the complete report
Helped 845,040 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Fortinet FortiSandbox
Ranking in Advanced Threat Protection (ATP)
4th
Average Rating
8.2
Reviews Sentiment
7.1
Number of Reviews
38
Ranking in other categories
Threat Deception Platforms (7th)
Trellix Advanced Threat Def...
Ranking in Advanced Threat Protection (ATP)
22nd
Average Rating
7.8
Reviews Sentiment
6.6
Number of Reviews
8
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of April 2025, in the Advanced Threat Protection (ATP) category, the mindshare of Fortinet FortiSandbox is 10.7%, up from 8.4% compared to the previous year. The mindshare of Trellix Advanced Threat Defense is 1.7%, up from 1.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Advanced Threat Protection (ATP)
 

Featured Reviews

Kiarash Heydari - PeerSpot reviewer
Light and powerful solution design; useful to have
My impression is that the initial setup process is quite straightforward. If you know what you're using it for, the initial setup can be quite easy and the solution is not that hard to use. When it comes to the steps taken for the implementation, you would select the OS you're using and when the files are sent to the appliance you check, and in the appliance configuration, it must be like the visual governance environment. You must set up the OS you have so that appliance can scan or analyze your file. To maintain this solution, you must always have at least one all-around person tuning this solution.
Read full review
HS
Easy to set up and use with a nice interface
The scalability could be better. We'd like them to be better at dealing with script threats. In sandboxing, the time to respond is slower than we would like. We'd like them to be able to process faster. For example, Fortinet, they are doing 18,000 files per hour. For Wildfire, it is elastic. It can support as many files as you get. McAfee doesn't react like that. It does not support interfaces with HTTPS.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The most valuable feature was the EDR, endpoint detection and response."
"The solution extracts an attached file before reaching the user and notifies the user if there's something malicious in the attachment received along with an email."
"The most valuable features of Fortinet FortiSandbox are the analysis options, artificial intelligence, and the many interfaces it provides."
"Overall, it works fine. Its interface is also fine."
"It is an easily scalable solution."
"The initial setup is straightforward."
"Performance is a valuable feature."
"The most valuable feature is the protection and the way it works, the technology is what I like the most."
More Fortinet FortiSandbox pros
"Provides good exfiltration, and is an all-in-one product."
"The most valuable features are the administration console and its detection and response module."
"I recommend this solution because of its ease of use."
"It is very scalable."
"It is stable and reliable."
"Its greatest strength is the DXL client which can rapidly disseminate attack information to all clients via the McAfee Agent instead of going through the ePO server."
"It stops in excess of twenty-five malware events per month, all of which could be critical to the business."
 

Cons

"At least once a week we have a false alarm. This needs to be adjusted so that we get fewer of these occurrences."
"It would be better if it had support for Mac and Linux."
"It would be better if we could integrate FortiSandbox with endpoint security solutions."
"The use cases in Fortinet FortiSandbox are not good. It is difficult to upload a custom VM for Fortinet FortiSandbox. The integration of Fortinet FortiSandbox with other Fortinet or FortiGate firewalls is not good. VMs are already installed in the hardware and are working fine, but we tried to approve the custom VM many times but did not succeed."
"If you were to compare prices between vendors and manufacturers, you would see that the lowest equipment in the Sandbox line is quite expensive for a new customer."
"In future releases, I would like to see more automation capabilities."
"I don't know if it is viable to do an improvement like this. When there are passwords in the password-protected files, it can't scan them or do things like this. I don't know if an algorithm or something else could make it better. Nowadays, many legitimate office documents have passwords."
"It should be easier to import custom virtual machines. Some of the VMs that are in FortiSandbox don't have the applications that we have in our environment. We need to import a VM with specific applications that we use in our environment. Have all the licenses because this is a real environment. You need a license for the Windows client you run on it. It's possible to import custom VMs, but it's a pain to do it. I would like a tool that simplifies the process."
More Fortinet FortiSandbox cons
"The initial setup was industry standard complex. It takes awhile and has a lot of planning involved. It could be simplified with product redesign."
"Lacks remote capabilities not dependent on the internet."
"I would like to see future versions of the solution incorporate artificial intelligence technology."
"There could be a tool that automatically updates all-new Microsoft IPs, which are available for free to connect to the client."
"This solution needs to be made "cloud ready"."
"We'd like them to be better at dealing with script threats."
"Make the ATD system a part of the whole product and take the whole thing onto the cloud. While it is there already, it is not to the same level as the on-premise version."
 

Pricing and Cost Advice

"There is a license to use this solution."
"The solution is not expensive at all."
"It is an expensive solution."
"There are no costs in addition to the standard licensing fees."
"The price of Fortinet FortiSandbox is expensive."
"The solution is unavailable at a lower cost and can be difficult to deploy."
"The solution is affordable."
"Altogether, it is about €10,000 for the Sandbox and Email Gateway."
More Fortinet FortiSandbox pricing and cost advice
"The product is expensive, but it is better than the rest of them in the industry."
"Our licensing fees for this solution are approximately one million dollars per year."
report
See which vendors are best for you
Use our free recommendation engine to learn which Advanced Threat Protection (ATP) solutions are best for your needs.
See recommendations
845,040 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Government
13%
Computer Software Company
11%
Financial Services Firm
10%
Manufacturing Company
7%
Financial Services Firm
17%
Government
15%
Computer Software Company
13%
Manufacturing Company
13%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about Fortinet FortiSandbox?
The real-time analysis capability of FortiSandbox is beneficial for email analysis.
See all answers
What is your experience regarding pricing and costs for Fortinet FortiSandbox?
I think it's affordable. For the six to seven months of usage, the cost has been reasonable.
See all answers
What needs improvement with Fortinet FortiSandbox?
We sometimes face a delay in email scanning due to not having multiple virtual machines. Improvements could be made in dynamic scanning, scanning all email components such as URLs and attachments, ...
See all answers
What do you like most about McAfee Advanced Threat Defense?
I recommend this solution because of its ease of use.
See all answers
What needs improvement with McAfee Advanced Threat Defense?
There could be a tool that automatically updates all-new Microsoft IPs, which are available for free to connect to the client.
See all answers
What is your primary use case for McAfee Advanced Threat Defense?
We use the solution for client management and security. We used the whole suite for client Firewall, antivirus, and everything provided by Trellix.
See all answers
 

Comparisons

Palo Alto Networks WildFire vs Fortinet FortiSandbox Logo
Palo Alto Networks WildFire vs Fortinet FortiSandbox
Compared 42% of the time
Check Point SandBlast Network vs Fortinet FortiSandbox Logo
Check Point SandBlast Network vs Fortinet FortiSandbox
Compared 15% of the time
Trellix Network Detection and Response vs Fortinet FortiSandbox Logo
Trellix Network Detection and Response vs Fortinet FortiSandbox
Compared 11% of the time
Microsoft Defender for Office 365 vs Fortinet FortiSandbox Logo
Microsoft Defender for Office 365 vs Fortinet FortiSandbox
Compared 7% of the time
Symantec Advanced Threat Protection vs Fortinet FortiSandbox Logo
Symantec Advanced Threat Protection vs Fortinet FortiSandbox
Compared 2% of the time
More Fortinet FortiSandbox Competitors
Microsoft Defender for Identity vs Trellix Advanced Threat Defense Logo
Microsoft Defender for Identity vs Trellix Advanced Threat Defense
Compared 55% of the time
More Trellix Advanced Threat Defense Competitors
 

Product Reports

Buyer's Guide
Fortinet FortiSandbox
March 2025
Fortinet FortiSandbox reportDownload Fortinet FortiSandbox product report
Buyer's Guide
Advanced Threat Protection (ATP)
March 2025
Trellix Advanced Threat Defense reportDownload Trellix Advanced Threat Defense product report
 

Also Known As

FortiSandbox
McAfee Advanced Threat Defense
 

Overview

Fortinet FortiSandbox is a behavior-based threat detection solution that prevents and detects malicious code in files transferred within the organization. It is integrated with FortiGate firewalls and FortiMail for threat protection and can be used for monitoring and reporting. The solution inspects files in a virtual environment with different types of virtual machines and can block or quarantine files based on their score. 

The most valuable features include dynamic behavior analysis, manual scan features, easy management and configuration, fast scanning, scalability, customization, and ICAP protocol. The solution is cost-effective and faster than other sandbox solutions, with a good user interface.

Fortinet

Powerful advanced threat detection

Uncover Hidden Threats

Combine in-depth static code analysis, dynamic analysis (malware sandboxing), and machine learning to increase zero-day threat and ransomware detection.

Threat Intelligence Sharing

Immediately share threat intelligence across your entire infrastructure—including multi-vendor ecosystems—to reduce time from threat encounter to containment.

Enable Investigation

Validate threats and access critical indicators of compromise (IoCs) needed for investigation and threat hunting.

Trellix
 

Sample Customers

Lush, Barnabas Health, Options, Riverside Healthcare, Hillsbourough County Schools, Columbia Public Schools, Schiller AG
The Radicati Group, Florida International University, MGM Resorts International, County Durham andDarlington NHS Foundation Trust
Buyer's Guide
Fortinet FortiSandbox vs. Trellix Advanced Threat Defense
March 2025
Free Report: Fortinet FortiSandbox vs. Trellix Advanced Threat Defense
Find out what your peers are saying about Fortinet FortiSandbox vs. Trellix Advanced Threat Defense and other solutions. Updated: March 2025.
DOWNLOAD NOW
845,040 professionals have used our research since 2012.
See our Fortinet FortiSandbox vs. Trellix Advanced Threat Defense report.
See our list of best Advanced Threat Protection (ATP) vendors.

We monitor all Advanced Threat Protection (ATP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.