Try our new research platform with insights from 80,000+ expert users

NetWitness NDR vs VMware Carbon Black Endpoint comparison

NetWitness and VMware are both solutions in the Endpoint Protection Platform (EPP) category. NetWitness is ranked #59, while VMware is ranked #18 with an average rating of 7.7. NetWitness holds a 0.2% mindshare in EPP, compared to VMware’s 2.0% mindshare. Additionally, 87% of NetWitness users are willing to recommend the solution, compared to 88% of VMware users who would recommend it.
NetWitness NDR
Read 15 NetWitness NDR reviews
  • 717 Views
  • 546 Comparison Views
87% willing to recommend
VMware Carbon Black Endpoint
Read 63 VMware Carbon Black Endpoint reviews
  • 8,623 Views
  • 5,732 Comparison Views
88% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Sep 9, 2024

VMware Carbon Black Endpoint and NetWitness NDR are leading solutions in endpoint detection and response and network detection and response, respectively. VMware Carbon Black Endpoint is often preferred for its comprehensive threat detection capabilities, while NetWitness NDR stands out for its superior network visibility and data insights.

Features: VMware Carbon Black Endpoint offers real-time threat monitoring, extensive endpoint control, and rapid threat detection and response capabilities. NetWitness NDR provides in-depth network traffic analysis, robust incident response, and detailed network insights.

Room for Improvement: VMware Carbon Black Endpoint could benefit from better integration with other security tools, enhancements in system performance, and a more intuitive user interface. NetWitness NDR needs improvements in scalability, advanced analytics capabilities, and easier setup procedures.

Ease of Deployment and Customer Service: VMware Carbon Black Endpoint is noted for its straightforward deployment and strong customer support services. NetWitness NDR, while offering flexible deployment options, receives feedback for needing more responsive customer service and simpler installation processes.

Pricing and ROI: VMware Carbon Black Endpoint is viewed as competitively priced, with users reporting satisfactory ROI due to its robust features. NetWitness NDR, despite its higher cost, is considered to offer good ROI because of its advanced network detection capabilities, justifying the investment for its comprehensive insights.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed NetWitness NDR vs. VMware Carbon Black Endpoint Report (Updated: November 2024).
Buyer's Guide
NetWitness NDR vs. VMware Carbon Black Endpoint
November 2024
Download the complete report
Helped 816,406 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Customer Service

Sentiment score
8.0
NetWitness NDR's customer service is generally efficient and highly regarded, though some users report occasional slow response times.
No sentiment score available
VMware Carbon Black Endpoint support is generally praised as effective and knowledgeable, but some report delays and issues with tiered support.
 

Room For Improvement

Sentiment score
4.6
NetWitness NDR requires improvements in UI, scalability, detectability, integration, session times, pricing, training, and features, making it complex and slow.
No sentiment score available
VMware Carbon Black Endpoint struggles with mobile support, complex UI, performance issues, inadequate reporting, and insufficient third-party integration.
 

Scalability Issues

Sentiment score
6.7
NetWitness NDR is scalable for large enterprises, though some users report issues with scalability and agent migration.
No sentiment score available
VMware Carbon Black Endpoint is highly scalable and adaptable for various enterprises, praised for ease of adding tenants and managing environments.
 

Stability Issues

Sentiment score
7.9
NetWitness NDR is generally reliable, providing real-time data and stability, though minor technical issues are occasionally reported.
Sentiment score
7.5
VMware Carbon Black Endpoint is stable, lightweight, reliable, and highly rated, though minor issues with sensors and updates occasionally occur.
 

Valuable Features

Sentiment score
7.8
NetWitness NDR offers high detection rates, real-time malware response, third-party integration, and a user-friendly, interoperable interface with advanced analytics.
Sentiment score
8.8
VMware Carbon Black Endpoint offers robust remote security with intuitive real-time detection, AI-driven threat response, and centralized cloud control.
 

Setup Cost

No sentiment score available
Sentiment score
3.0
VMware Carbon Black Endpoint licensing is seen as expensive and inflexible, with prices ranging from $15 to $7,000 per node.
 

Categories and Ranking

NetWitness NDR
Ranking in Endpoint Protection Platform (EPP)
59th
Ranking in Endpoint Detection and Response (EDR)
59th
Average Rating
8.0
Reviews Sentiment
6.5
Number of Reviews
15
Ranking in other categories
Threat Intelligence Platforms (33rd), Security Orchestration Automation and Response (SOAR) (27th), Network Detection and Response (NDR) (18th), Extended Detection and Response (XDR) (34th)
VMware Carbon Black Endpoint
Ranking in Endpoint Protection Platform (EPP)
18th
Ranking in Endpoint Detection and Response (EDR)
15th
Average Rating
7.8
Reviews Sentiment
6.9
Number of Reviews
63
Ranking in other categories
Security Incident Response (1st), Ransomware Protection (4th)
 

Mindshare comparison

As of November 2024, in the Endpoint Protection Platform (EPP) category, the mindshare of NetWitness NDR is 0.2%, up from 0.2% compared to the previous year. The mindshare of VMware Carbon Black Endpoint is 2.0%, down from 2.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Endpoint Protection Platform (EPP)
 

Featured Reviews

SupravatMaji - PeerSpot reviewer
Beneficial single unified dashboard, good native application integration, and high availability
My advice to those wanting to implement RSA NetWitness Network is they have to first do a little due diligence, such as the exact requirement based on their needs. That will give them a direction for their investment because otherwise, the bill of material or bill of quantity (BOQ) may be higher side. It is important to do good due intelligence on the environment, see the exact requirement, and then go ahead with the solution. The solution is perfectly stable. I rate RSA NetWitness Network a nine out of ten.
Read full review
Durai Singh - PeerSpot reviewer
The solution is expensive, support is poor, and it takes time to understand the product
I have worked with traditional antivirus solutions like Symantec, McAfee, Trend Micro, Kaspersky, Sophos, and F-Secure. Broadcom acquired Symantec, and Trellix acquired McAfee. The market is disturbed as other solutions are acquiring the traditional leaders. Getting support is becoming a challenge. Carbon Black provides endpoint detection and response. CrowdStrike provides vulnerability assessment and application testing features. It gives additional threat prevention to the customer. So, I prefer CrowdStrike over Carbon Black. Carbon Black and CrowdStrike provide very good market strategies.
Read full review
report
See which vendors are best for you
Use our free recommendation engine to learn which Endpoint Protection Platform (EPP) solutions are best for your needs.
See recommendations
816,406 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
17%
Computer Software Company
16%
Manufacturing Company
9%
Government
8%
Computer Software Company
15%
Financial Services Firm
10%
Government
10%
Manufacturing Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Ask a question
Earn 20 points
What to choose: an endpoint antivirus, an EDR solution or both?
I can recommend Carbon Black, an award-winning next-gen anti-virus (NGAV) and endpoint detection and response (EDR) security solution. The CB Predictive Security Cloud platform combines multiple hi...
See all answers
What's the difference between Carbon Black CB Response and Carbon Black CB Defense?
Carbon Black offers two different levels of Endpoint Detection and Response. One is the VM Carbon Black Cloud Endpoint Standard (CB Defense), and the other is the Carbon Black Endpoint Detection an...
See all answers
What do you like most about Carbon Black CB Defense?
VMware Carbon Black Endpoint is a highly stable solution.
See all answers
 

Comparisons

Darktrace vs NetWitness NDR Logo
Darktrace vs NetWitness NDR
Compared 12% of the time
Vectra AI vs NetWitness NDR Logo
Vectra AI vs NetWitness NDR
Compared 12% of the time
Fidelis Elevate vs NetWitness NDR Logo
Fidelis Elevate vs NetWitness NDR
Compared 10% of the time
CrowdStrike Falcon vs NetWitness NDR Logo
CrowdStrike Falcon vs NetWitness NDR
Compared 9% of the time
SentinelOne Singularity Complete vs NetWitness NDR Logo
SentinelOne Singularity Complete vs NetWitness NDR
Compared 8% of the time
More NetWitness NDR Competitors
CrowdStrike Falcon vs VMware Carbon Black Endpoint Logo
CrowdStrike Falcon vs VMware Carbon Black Endpoint
Compared 17% of the time
Microsoft Defender for Endpoint vs VMware Carbon Black Endpoint Logo
Microsoft Defender for Endpoint vs VMware Carbon Black Endpoint
Compared 14% of the time
SentinelOne Singularity Complete vs VMware Carbon Black Endpoint Logo
SentinelOne Singularity Complete vs VMware Carbon Black Endpoint
Compared 8% of the time
Trellix Endpoint Security vs VMware Carbon Black Endpoint Logo
Trellix Endpoint Security vs VMware Carbon Black Endpoint
Compared 7% of the time
Trend Micro Deep Security vs VMware Carbon Black Endpoint Logo
Trend Micro Deep Security vs VMware Carbon Black Endpoint
Compared 7% of the time
More VMware Carbon Black Endpoint Competitors
 

Product Reports

Buyer's Guide
NetWitness NDR
November 2024
NetWitness NDR reportDownload NetWitness NDR product report
Buyer's Guide
VMware Carbon Black Endpoint
October 2024
VMware Carbon Black Endpoint reportDownload VMware Carbon Black Endpoint product report
 

Also Known As

RSA ECAT, NetWitness Network
Carbon Black CB Defense, Bit9, Confer
 

Learn More

Video not available
NetWitness
VMware
 

Overview

Using a centralized combination of network and endpoint analysis, behavioral analysis, data science techniques and threat intelligence, NetWitness NDR helps analysts detect and resolve known and unknown attacks while automating and orchestrating the incident response lifecycle. With these capabilities on one platform, security teams can collapse disparate tools and data into a powerful, blazingly fast user interface.

VMware Carbon Black Endpoint provides comprehensive endpoint security against ransomware, spyware, malware, and viruses, catering to both cloud and on-premise environments.

VMware Carbon Black Endpoint facilitates endpoint detection and response, threat hunting, application control, antivirus support, and protection for virtual and physical machines. Features include intelligent learning, whitelisting, and integration with other security tools, making it suitable for distributors, MSPs, and enterprises seeking advanced threat defense and real-time monitoring. With its capability to detect and stop malicious executables, it supports both offline and online environments and offers tools like command shell access for deeper investigation.

What are the key features of VMware Carbon Black Endpoint?
  • Intelligent learning: Improves detection capabilities over time.
  • Whitelisting: Allows only approved applications to run.
  • Integration with other security tools: Enhances overall security posture.
  • Centralized cloud control: Manages endpoints from a single interface.
  • Command shell access: Offers deeper investigation capabilities.
  • Dynamic grouping: Facilitates organized endpoint management.
  • Simplified policy management: Streamlines security policy implementation.
  • API for system remoting: Allows remote system access and management.
  • Twenty-four-seven support: Provides continuous assistance and response.
What are the benefits of VMware Carbon Black Endpoint?
  • Real-time monitoring: Offers constant vigilance against threats.
  • Threat hunting: Identifies and mitigates threats proactively.
  • Historical data analysis: Assists in understanding past incidents and patterns.
  • Improved endpoint protection: Enhances overall endpoint security.
  • Enhanced threat detection: Reduces exposure to advanced threats.

VMware Carbon Black Endpoint is implemented across various industries including technology, healthcare, and finance. Organizations utilize it in cloud and hybrid environments, enhancing their security frameworks with real-time monitoring, intelligent learning, and robust threat detection capabilities tailored to their specific industry needs.

 

Sample Customers

ADP, Ameritas, Partners Healthcare
Netflix, Progress Residential, Indeed, Hologic, Gentle Giant, Samsung Research America
Buyer's Guide
NetWitness NDR vs. VMware Carbon Black Endpoint
November 2024
Free Report: NetWitness NDR vs. VMware Carbon Black Endpoint
Find out what your peers are saying about NetWitness NDR vs. VMware Carbon Black Endpoint and other solutions. Updated: November 2024.
DOWNLOAD NOW
816,406 professionals have used our research since 2012.
See our NetWitness NDR vs. VMware Carbon Black Endpoint report.
See our list of best Endpoint Protection Platform (EPP) vendors and best Endpoint Detection and Response (EDR) vendors.

We monitor all Endpoint Protection Platform (EPP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.