Try our new research platform with insights from 80,000+ expert users

Hillstone Cloud Sandbox vs Trellix Network Detection and Response comparison

Hillstone Networks and Trellix are both solutions in the Advanced Threat Protection (ATP) category. Hillstone Networks is ranked #35, while Trellix is ranked #13 with an average rating of 8.0. Hillstone Networks holds a 0.9% mindshare in ATP, compared to Trellix’s 3.5% mindshare. Additionally, 97% of Trellix users are willing to recommend the solution.
Hillstone Cloud Sandbox
Read 1 Hillstone Cloud Sandbox review
  • 318 Views
  • 293 Comparison Views
0% willing to recommend
Trellix Network Detection a...
Read 40 Trellix Network Detection and Response reviews
  • 2,614 Views
  • 1,307 Comparison Views
97% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between Hillstone Cloud Sandbox and Trellix Network Detection and Response based on real PeerSpot user reviews.

Find out what your peers are saying about Palo Alto Networks, Microsoft, Proofpoint and others in Advanced Threat Protection (ATP).

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Advanced Threat Protection (ATP) Report (Updated: February 2026).
Buyer's Guide
Advanced Threat Protection (ATP)
February 2026
Download the complete report
Helped 883,896 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Hillstone Cloud Sandbox
Ranking in Advanced Threat Protection (ATP)
35th
Average Rating
0.0
Reviews Sentiment
7.9
Number of Reviews
1
Ranking in other categories
No ranking in other categories
Trellix Network Detection a...
Ranking in Advanced Threat Protection (ATP)
13th
Average Rating
8.4
Reviews Sentiment
7.3
Number of Reviews
40
Ranking in other categories
Network Detection and Response (NDR) (9th)
 

Mindshare comparison

As of March 2026, in the Advanced Threat Protection (ATP) category, the mindshare of Hillstone Cloud Sandbox is 0.9%, up from 0.3% compared to the previous year. The mindshare of Trellix Network Detection and Response is 3.5%, down from 3.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Advanced Threat Protection (ATP) Mindshare Distribution
ProductMindshare (%)
Trellix Network Detection and Response3.5%
Hillstone Cloud Sandbox0.9%
Other95.6%
Advanced Threat Protection (ATP)
 

Featured Reviews

Albert-Wang - PeerSpot reviewer
Albert-Wang
Technical Consultant at SiS Technologies
Dynamic file analysis enhances threat detection capabilities
Cloud sandbox allows customers to analyze email and text documents without purchasing any hardware. The system analyzes files dynamically and provides feedback on the impact of the file. Cloud sandbox manages the analysis using Hillstone on the cloud, offering a service to detect unknown threats. It's easy to integrate and offers dynamic analysis supporting many types of files.
Read full review
Jose Vargas - PeerSpot reviewer
Jose Vargas
Agente De Servicios Técnicos at a computer software company with 11-50 employees
Has improved threat detection workflows and supports seamless customer monitoring
The best features Trellix Network Detection and Response offers include very good threat detection, and I believe that it is one of the best XDR tools. For example, ePO and XDR components are very comfortable and similar to many other tools for this type of monitoring, and I have received very good feedback for this tool. What makes Trellix Network Detection and Response stand out for me compared to other tools is the way you can detect threats. It is very easy and comfortable to use, and the detection shows clearly on the screen, which is very easy to understand. Regarding the features, I think that the integration with other platforms is very comfortable with the customer because we can integrate it with any switch or firewall, and it is comfortable to add this tool. Trellix Network Detection and Response has positively impacted my organization as I have improved my knowledge about detection and response. I have already used some other tools such as CrowdStrike and Umbrella, but Trellix is one of the best that I have tested. I believe that for my organization, Trellix has helped a lot with detection and supported our customers effectively. Trellix Network Detection and Response is a great tool that integrates with a lot of security tools such as Palo Alto, which is a good firewall. If you have these types of tools, your organization would benefit greatly.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Cloud sandbox allows customers to analyze email and text documents without purchasing any hardware."
"Trellix Network Detection and Response helps increase response to attacks. One benefit is increased visibility and simplicity in maintaining it. AI analyzes and relates data based on past performance over the last five days."
"Initially, we didn't have much visibility around what is occurring at our applications lower level. For instance, if we are exposed to any malicious attacks or SQL injections. But now we've integrated FireEye with Splunk, so now we get lots of triggers based on policy content associated with FireEye. The solution has allowed for growth and improvement in our information security and security operations teams."
"It protects from signature-based attacks and signature-less attacks. The sandboxing technology, invented by FireEye, is very valuable. Our customers go for FireEye because of the sandboxing feature. When there is a threat or any malicious activity with a signature, it can be blocked by IPS. However, attacks that do not have any signatures and are very new can only be blocked by using the sandboxing feature, which is available only in FireEye. So, FireEye has both engines. It has an IPS engine and a sandbox engine, which is the best part. You can get complete network protection by using FireEye."
"It allows us to be more hands off in checking on emails and networking traffic. We can set up a bunch of different alerts and have it alert us."
"We wanted to cross-reference that activity with the network traffic just to be sure there was no lateral movement. With Trellix, we easily confirmed that there was no lateral network involvement and that nothing else was infected. It helped us correlate the events and feel confident in our containment."
"The scalability has not been a problem. We have deployed the product in very high bandwidth networks. We have never had a problem with the FireEye product causing latency issues within our networks."
"Trellix NDR provides an essential defense by automatically responding to network incidents that firewalls may not catch."
"The most valuable feature is the network security module."
More Trellix Network Detection and Response pros
 

Cons

"For implementation, if the system can improve or provide more training, it would be better."
"Management of the appliance could be greatly improved."
"I would like to see in Trellix Network Detection and Response more explanation about some details of the threat, and I wish it had more actions that you can take to contain the host or move it somewhere else."
"It is not a very secure product."
"A better depth of view, being able to see deeper into the management process, is what I'd like to see."
"It doesn't connect with the cloud, advanced machine learning is not there. A known threat can be coming into the network and we would want the cloud to look up the problem. I would also like to see them develop more file replication and machine learning."
"The Trellix solution could be improved by enhancing the Central Management Console for faster visibility, which would help in network detection response."
"It would be great if we could create granular reports based on the protocols, types of attacks, regions of attack, etc. Also we would like to easily be able to add exceptions to rules in cases of false positives."
"Technical support needs improvement as sometimes engineers are not available promptly, especially during high-severity incidents."
More Trellix Network Detection and Response cons
 

Pricing and Cost Advice

Information not available
"When you purchase FireEye Network Security NX, will need to purchase a megabit per second package. You must know your needs from day one."
"Because of what the FireEye product does, it has significantly decreased our mean time in being able to identify and detect malicious threats. The company that I work with is a very mature organization, and we have seen the meantime to analysis decrease by at least tenfold."
"The tool is a bit pricey."
"The user fee is not as high but the maintenance fee is expensive."
"We're partners with Cisco so we get a reasonable price. It's cheaper than Palo Alto in terms of licensing."
"There are some additional services that I understand the vendor provides, but our approach was to package all of the features that we were looking to use into the product."
"Pricing and licensing are reasonable compared to competitors."
"The pricing is a little high."
More Trellix Network Detection and Response pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Advanced Threat Protection (ATP) solutions are best for your needs.
See recommendations
883,896 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
No data available
Comms Service Provider
15%
Manufacturing Company
11%
Financial Services Firm
11%
Government
9%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
By reviewers
Company SizeCount
Small Business20
Midsize Enterprise8
Large Enterprise19
 

Questions from the Community

What is your experience regarding pricing and costs for Hillstone Cloud Sandbox?
The pricing is competitive.
See all answers
What needs improvement with Hillstone Cloud Sandbox?
For implementation, if the system can improve or provide more training, it would be better. Additionally, for scalability, the performance does not have challenges, as users generally don't upload ...
See all answers
What is your primary use case for Hillstone Cloud Sandbox?
Cloud them both is a very feature and it is used to detect unknown threats by analyzing files. Customers typically use Hillstone on the cloud to do the analysis.
See all answers
What do you like most about FireEye Network Security?
We wanted to cross-reference that activity with the network traffic just to be sure there was no lateral movement. With Trellix, we easily confirmed that there was no lateral network involvement an...
See all answers
What is your experience regarding pricing and costs for FireEye Network Security?
My experience with pricing, setup cost, and licensing for Trellix Network Detection and Response is very great.
See all answers
What needs improvement with FireEye Network Security?
I would like to see in Trellix Network Detection and Response more explanation about some details of the threat, and I wish it had more actions that you can take to contain the host or move it some...
See all answers
 

Comparisons

Palo Alto Networks WildFire vs Hillstone Cloud Sandbox Logo
Palo Alto Networks WildFire vs Hillstone Cloud Sandbox
Compared 33% of the time
Check Point SandBlast Network vs Hillstone Cloud Sandbox Logo
Check Point SandBlast Network vs Hillstone Cloud Sandbox
Compared 26% of the time
More Hillstone Cloud Sandbox Competitors
Fortinet FortiSandbox vs Trellix Network Detection and Response Logo
Fortinet FortiSandbox vs Trellix Network Detection and Response
Compared 6% of the time
Palo Alto Networks WildFire vs Trellix Network Detection and Response Logo
Palo Alto Networks WildFire vs Trellix Network Detection and Response
Compared 5% of the time
Darktrace vs Trellix Network Detection and Response Logo
Darktrace vs Trellix Network Detection and Response
Compared 5% of the time
Zabbix vs Trellix Network Detection and Response Logo
Zabbix vs Trellix Network Detection and Response
Compared 3% of the time
ExtraHop Reveal(x) vs Trellix Network Detection and Response Logo
ExtraHop Reveal(x) vs Trellix Network Detection and Response
Compared 3% of the time
More Trellix Network Detection and Response Competitors
 

Product Reports

Buyer's Guide
Advanced Threat Protection (ATP)
February 2026
Hillstone Cloud Sandbox reportDownload Hillstone Cloud Sandbox product report
Buyer's Guide
Trellix Network Detection and Response
February 2026
Trellix Network Detection and Response reportDownload Trellix Network Detection and Response product report
 

Also Known As

No data available
FireEye Network Security, FireEye
 

Overview

To address advanced malware, the Hillstone Cloud Sandbox delivers a unique, advanced threat detection platform that can emulate the execution environment and analyze all activities related to malicious files, identify advanced threats and collaborate with existing solutions to provide rapid remediation.

The Hillstone Cloud Sandbox is comprised of three modules: Static Analysis, Behavioral Analysis and Cloud Intelligence. The three modules work together to ensure the efficiency and efficacy of malicious files detection.

Hillstone Networks

Detect the undetectable and stop evasive attacks. Trellix Network Detection and Response (NDR) helps your team focus on real attacks, contain intrusions with speed and intelligence, and eliminate your cybersecurity weak points.

Trellix
 

Sample Customers

Information Not Available
FFRDC, Finansbank, Japan Advanced Institute of Science and Technology, Investis, Kelsey-Seybold Clinic, Bank of Thailand, City of Miramar, Citizens National Bank, D-Wave Systems
Buyer's Guide
Advanced Threat Protection (ATP)
February 2026
Download Free Report
Find out what your peers are saying about Palo Alto Networks, Microsoft, Proofpoint and others in Advanced Threat Protection (ATP). Updated: February 2026.
DOWNLOAD NOW
883,896 professionals have used our research since 2012.
See our list of best Advanced Threat Protection (ATP) vendors.

We monitor all Advanced Threat Protection (ATP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.