SentinelOne Singularity Complete vs VMware Carbon Black Endpoint comparison

SentinelOne Singularity Complete vs. VMware Carbon Black Endpoint

Download the complete report

Helped 824,053 peers since 2012

Categories and Ranking

SentinelOne Singularity Com...

Ranking in Endpoint Protection Platform (EPP)

2nd

Ranking in Endpoint Detection and Response (EDR)

3rd

Average Rating

8.8

Reviews Sentiment

7.3

Number of Reviews

191

Ranking in other categories

Anti-Malware Tools (2nd), Extended Detection and Response (XDR) (2nd)

VMware Carbon Black Endpoint

Ranking in Endpoint Protection Platform (EPP)

18th

Ranking in Endpoint Detection and Response (EDR)

15th

Average Rating

7.8

Reviews Sentiment

6.9

Number of Reviews

Ranking in other categories

Security Incident Response (1st), Ransomware Protection (4th)

Mindshare comparison

As of December 2024, in the Endpoint Protection Platform (EPP) category, the mindshare of SentinelOne Singularity Complete is 4.4%, down from 7.0% compared to the previous year. The mindshare of VMware Carbon Black Endpoint is 2.0%, down from 2.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Endpoint Protection Platform (EPP)

Q&A Highlights

Alfonso Minaya

Product Director at a tech services company with 501-1,000 employees

Mar 18, 2021

What is the biggest difference between Carbon Black CB Defense, CrowdStrike, and SentinelOne?

A short answer: Perhaps the biggest IMO is SentinelOne is the only one of these 3 that does not have to go to the cloud for any behavior protection. It allows for full execution and blocks specific patterns rather than go to the cloud sandbox. Crowdstrike has a lite version of blocking without a sandbox. Additionally, Active EDR and intuitive storyline indicating patient zero is a plus with SentinelOne (this without any consulting or threat analyst).

Reduces organizational risk, low on machine load, and helps prevent ransomware

Featured Reviews

Prince Joseph

Group Chief Information Officer at NeST Information Technologies Pvt Ltd

The most important aspect of the solution is that the load on the machine is not very high. It doesn't take up battery resources. The solution prevents ransomware and other threats. So far, it is working brilliantly. The dashboards and UI are user friendly, as is the ability to configure as needed. It seems to have a lot more capabilities. The XDR capabilities, in particular, look very strong. We're currently looking into that. If we want to do integrations with third parties, we don't have very many challenges around that. The ability to ingest and correlate across our security solutions is very useful. It's impressive. The AI engine it has is excellent. It helps us consolidate our security solutions. While it does not allow us to reduce alerts per se, it does a good job of correlating. The way it's integrated into the SIM, it's working to the expectations we have. The solution helps free up people so that they can work on other tasks. We don't have to grow our team too much now. My security team is actually quite small - about five people. We all get more time to handle other tasks. We've noted that it does help reduce mean time to respond. We can identify events easier and those that are most critical are brought to the forefront. Previously, we were in the dark. Now we have so much more visibility. It's been a huge improvement. It's effectively helped to reduce organizational risk.

Read full review

Matthew Weisler

Sole Proprietor at Core-Infosec

Great granularity for policies or applications without needing hash values

The solution is cloud based which makes it easy to use for remote devices or work-at-home situations. The solution supports full trust or signature-based approvals. You can get very granular and band out policies or applications without having to do hash values. You can band through the entire environment by execution of the name or desk IDXE. This can be achieved on the policy side because of the signature, IOC, or naming convention itself. This is very effective for pushing more blockage or removing threats across the board. The solution has a very nice API on the back end for remoting into a system and executing scripts or utilizing self automation. This is useful for monitoring several different companies in a workspace or workbook-type format. For example, I report and send out mass emails from a clickable button in an Excel workbook. The APIs all exist for each client. I push out automatic endpoint monitoring and reports every single day at a particular time, with a simple clickable button that serves as a scheduled task for fifty clients.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"I find the product very easy to maintain and troubleshoot. Their engineers are very helpful if you need additional assistance. It's one of the best products I've used. It's easy to use from my standpoint, both for troubleshooting and with the support we get from their team if necessary."

"The terminating or killing remediation process that they use is top-notch. Pretty much anything that is even remotely malicious gets blocked by it within seconds. That is important for us. We have thousands of endpoints with tens of thousands of users. It is hard to do good security for that many people without some kind of automated detection and response. That is what SentinelOne does for us. It helps us automate that process."

"The customer support for this solution is good."

"It delivers the type of security which we were hoping for, since we have a lot of different endpoint users utilizing different types of software. We have people who only use Office software, like email, Word, and PDFs. Then, we have people who use some applications that other people wrote. We also write applications in-house using people who develop software. Therefore, we have some machines using very high-end developer software for mechanical development, electronic development, and software development. Those users are used to managing their PC on their own. The centralize platform allows us to differentiate between those three groups of people. We have overall control and can oversee the security levels at all the endpoints. They have not yet been blocked in any way when performing the functions"

"SentinelOne also provides equal protection across Windows, Linux, and macOS. I have all of them and every flavor of them you could possibly imagine. They've done a great job because I still have a lot of legacy infrastructure to support. It can support legacy environments as well as newer environments, including all the latest OS's... There are cost savings not only on licensing but because I don't have to have different people managing different consoles."

"The most useful feature of all is deep visibility."

"The product can scale."

"It has a one-click button that we can use to reverse all those dodgy changes made by the virus program and bring the system quickly back to what it was. That's one of the most important features."

More SentinelOne Singularity Complete pros

"It is a stable solution...The initial setup of VMware Carbon Black Endpoint was easy."

"The biggest feature out of CarbonBlack is its ability to dive in with more depth. You can look at the entire kill chain and understand, not only if an alarm or identified incident is truly a true security issue versus a false positive, and it allows us to backtrack and figure out why it actually happened and how it got into the environment."

"There's lots of very useful documentation online to help troubleshoot and learn about the product."

"The EDR and reports were helpful in improving our organization."

"The tool is pretty stable."

"I like its protection very much. It protects and allows us to lock the environment pretty tightly. Nothing that is not approved through Carbon Black can run in the environment. There is no default. Everything goes through Carbon Black Protect, and everything has to be first approved. Every software is considered to be guilty before prove innocent."

"The initial setup was fairly easy."

"I like its reporting."

More VMware Carbon Black Endpoint pros

Cons

"There is an area of improvement is agent health monitoring, which would give us the ability to cap and manage resources used by the SentinelOne agent. We had issues with this in our environment. We reached out to SentinelOne about it, and they were very prompt in adding it into their roadmap."

"It has all the features that other leading products in the market provide. They should keep enhancing it based on the challenges in the market. I am fine with its detection capability, but they can work more on deep inspection."

"I am not a fan of the UI and feel it has room for improvement."

"DLP support would be a good addition."

"The biggest thing for me in terms of improvements is the online console. There are frequent updates, and sometimes we'll get a little agitated getting signed in."

"They could add “right click>scan” where most users were trained to do so in handling flash drives."

"The reporting needs improvement and I would like to see a more granular level of administrative privileges."

"The solution needs better reporting on new threats and malware. The reporting is present, but I can't find the information easily."

More SentinelOne Singularity Complete cons

"I would like to see the user credentials feature improved. I would also like to see more reporting features and better ways to roll the reports out."

"The product's stability could be improved."

"I would personally give the tech support a rating of seven out of ten."

"I'm not sure as to the logic of how we've decided to customize it. We've only really used it since February and therefore there may be more to do on that front. That's why it's hard to say if something is missing or if we just aren't utilizing it."

"What was rolled out to my company are mixed versions of Carbon Black CB Defense, so what I'd like to see in the next release is more synchronization, where it can detect the endpoint that's running an old version and suggest updates."

"Carbon Black needs to do a better job of proving their platform in the industry, and providing a bit more access to do industry testing with real world examples to help prove their platform."

"The node management could be much better. The one thing that they cannot do very easily is change the tenant from a backend."

"Adding an application and a device control feature would be a great help for this solution."

More VMware Carbon Black Endpoint cons

Pricing and Cost Advice

"The pricing for SentinelOne Singularity Complete is competitive."

"SentinelOne is significantly less expensive than CrowdStrike. I recently did a price comparison between CrowdStrike and SentinelOne to determine where we are going for the next three years. CrowdStrike is 200% to 300% the cost."

"The licensing is comparable to other solutions in the market. The pricing is competitive."

"I can pay, for my environment, between $30,000 and $40,000 a year, and that's a pretty good deal."

"I find the licensing cost for SentinelOne Singularity Complete fair."

"The pricing level for this service and application was very interesting for us. I don't know exactly what the price was, but apparently it was a big surprise that the SOC was also included in our pricing model."

"The larger count you have, the deeper discount you will receive in your contract."

"It was cheaper than McAfee, which was a way to convince management to go with the solution."

More SentinelOne Singularity Complete pricing and cost advice

"The license is annual. It's a standard license."

"It is more expensive, but it's worth it. There are no additional costs beyond the standard licensing fee."

"The pricing is annually based and operates through another department than mine."

"The pricing is very high."

"I am not really involved in the pricing of this product. But, from my understanding, it is OK for us."

"The licensing cost is on the more expensive side, but I thought it was worth it because they did a good job. It was one of the vendors I truly didn't have to worry about too much until this latest upgrade."

"The cost/benefit factor has great relevance in Cb Defense implementations."

"Its pricing was very good, which is one of the reasons I went to it as an alternative. It is on a yearly basis. There are no additional fees."

More VMware Carbon Black Endpoint pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Endpoint Protection Platform (EPP) solutions are best for your needs.

See recommendations

824,053 professionals have used our research since 2012.

Answers from the Community

Alfonso Minaya

Product Director at a tech services company with 501-1,000 employees

Mar 18, 2021

What is the biggest difference between Carbon Black CB Defense, CrowdStrike, and SentinelOne?

2 out of 8 answers

ShreekumarNair

Chief Executive Officer at Vincacyber

Mar 22, 2020

Do evaluate www.cynet.com and you will find that Cynet is way ahead in the way it does Continuous Breach protection and monitoring.

Read full answer

reviewer1275819

Director - Global Information Security at a manufacturing company with 10,001+ employees

Mar 25, 2020

Read full answer

See all 8 answers

Top Industries

By visitors reading reviews

Computer Software Company

19%

Manufacturing Company

Financial Services Firm

Government

Computer Software Company

15%

Financial Services Firm

10%

Government

10%

Manufacturing Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

Cortex XDR by Palo Alto vs. Sentinel One

Cortex XDR by Palo Alto vs. SentinelOne SentinelOne offers very detailed specifics with regard to risks or attacks. The ability to reverse damage caused by ransomware with minimal interruptions to...

Which is better - SentinelOne or Darktrace?

Which solution is better depends on which is more suitable specifically for your company. Darktrace, for example, is meant for smaller to medium-sized businesses. It is also a good option for organ...

What do you like most about SentinelOne?

The AI solution makes it easy for customers to detect and manage policies, as well as documents that help customers manage their platform.

What to choose: an endpoint antivirus, an EDR solution or both?

I can recommend Carbon Black, an award-winning next-gen anti-virus (NGAV) and endpoint detection and response (EDR) security solution. The CB Predictive Security Cloud platform combines multiple hi...

What's the difference between Carbon Black CB Response and Carbon Black CB Defense?

Carbon Black offers two different levels of Endpoint Detection and Response. One is the VM Carbon Black Cloud Endpoint Standard (CB Defense), and the other is the Carbon Black Endpoint Detection an...

What do you like most about Carbon Black CB Defense?

VMware Carbon Black Endpoint is a highly stable solution.

Darktrace vs SentinelOne Singularity Complete

Comparisons

Compared 8% of the time

Datto Endpoint Detection and Response (EDR) vs SentinelOne Singularity Complete

Compared 7% of the time

Microsoft Defender for Endpoint vs SentinelOne Singularity Complete

Compared 7% of the time

CrowdStrike Falcon vs SentinelOne Singularity Complete

Compared 6% of the time

Wazuh vs SentinelOne Singularity Complete

Compared 2% of the time

More SentinelOne Singularity Complete Competitors

CrowdStrike Falcon vs VMware Carbon Black Endpoint

Compared 16% of the time

Microsoft Defender for Endpoint vs VMware Carbon Black Endpoint

Compared 14% of the time

Trellix Endpoint Security vs VMware Carbon Black Endpoint

Compared 8% of the time

Trend Micro Deep Security vs VMware Carbon Black Endpoint

Compared 7% of the time

Symantec Endpoint Security vs VMware Carbon Black Endpoint

Compared 6% of the time

More VMware Carbon Black Endpoint Competitors

Product Reports

SentinelOne Singularity Complete

Download SentinelOne Singularity Complete product report

VMware Carbon Black Endpoint

Download VMware Carbon Black Endpoint product report

Also Known As

Sentinel Labs, SentinelOne Singularity

Carbon Black CB Defense, Bit9, Confer

Learn More

SentinelOne

VMware

Overview

SentinelOne Singularity Complete provides AI-driven threat detection and response with features like ransomware protection and rollback, offering endpoint protection with minimal system impact and deep forensic analysis.

SentinelOne Singularity Complete combines machine learning and artificial intelligence to offer robust endpoint protection. It delivers real-time insights and advanced threat detection through seamless integration with third-party tools, allowing for efficient endpoint management. With an emphasis on user-friendliness, it ensures reduced false positives. Room for improvement includes better integration options, enhanced reporting, and more precise analytics to tackle false positives. Users seek improved interoperability with systems and comprehensive support for legacy systems.

What are the key features of SentinelOne Singularity Complete?

Rollback Feature: Enables restoration of affected systems to a healthy state after an attack.
Ransomware Protection: Advanced mechanisms to prevent and mitigate ransomware threats.
Machine Learning and AI: Utilizes cutting-edge technology for precise threat detection and response.
Seamless Integration: Works well with third-party tools for enhanced endpoint protection.
Real-Time Protection: Proactively defends against advanced threats with minimal delays.

What benefits and ROI should users consider?

Reduced False Positives: Accurate threat detection limits operational disruptions.
Efficient Endpoint Protection: Ensures security with low system impact.
User-Friendly Experience: Simplified management and ease of use aid productivity.
Deep Forensic Analysis: Assists in effective threat investigation and response.
Cost-Effective Security: Positions as a worthwhile alternative to traditional antivirus solutions.

Organizations from industries like finance, healthcare, and technology deploy SentinelOne Singularity Complete to safeguard endpoints such as PCs, servers, and virtual machines. Equipped with EDR, it effectively replaces traditional antivirus systems and integrates with cloud technology for real-time security insights.

VMware Carbon Black Endpoint provides comprehensive endpoint security against ransomware, spyware, malware, and viruses, catering to both cloud and on-premise environments.

VMware Carbon Black Endpoint facilitates endpoint detection and response, threat hunting, application control, antivirus support, and protection for virtual and physical machines. Features include intelligent learning, whitelisting, and integration with other security tools, making it suitable for distributors, MSPs, and enterprises seeking advanced threat defense and real-time monitoring. With its capability to detect and stop malicious executables, it supports both offline and online environments and offers tools like command shell access for deeper investigation.

What are the key features of VMware Carbon Black Endpoint?

Intelligent learning: Improves detection capabilities over time.
Whitelisting: Allows only approved applications to run.
Integration with other security tools: Enhances overall security posture.
Centralized cloud control: Manages endpoints from a single interface.
Command shell access: Offers deeper investigation capabilities.
Dynamic grouping: Facilitates organized endpoint management.
Simplified policy management: Streamlines security policy implementation.
API for system remoting: Allows remote system access and management.
Twenty-four-seven support: Provides continuous assistance and response.

What are the benefits of VMware Carbon Black Endpoint?

Real-time monitoring: Offers constant vigilance against threats.
Threat hunting: Identifies and mitigates threats proactively.
Historical data analysis: Assists in understanding past incidents and patterns.
Improved endpoint protection: Enhances overall endpoint security.
Enhanced threat detection: Reduces exposure to advanced threats.

VMware Carbon Black Endpoint is implemented across various industries including technology, healthcare, and finance. Organizations utilize it in cloud and hybrid environments, enhancing their security frameworks with real-time monitoring, intelligent learning, and robust threat detection capabilities tailored to their specific industry needs.

Sample Customers

Havas, Flex, Estee Lauder, McKesson, Norfolk Southern, JetBlue, Norwegian airlines, TGI Friday, AVX, Fim Bank

Netflix, Progress Residential, Indeed, Hologic, Gentle Giant, Samsung Research America

SentinelOne Singularity Complete vs. VMware Carbon Black Endpoint