Try our new research platform with insights from 80,000+ expert users

Trellix Endpoint Detection and Response (EDR) vs VMware Carbon Black Endpoint comparison

Trellix and VMware are both solutions in the Endpoint Detection and Response (EDR) category. Trellix is ranked #24 with an average rating of 7.7, while VMware is ranked #15 with an average rating of 7.7. Trellix holds a 0.9% mindshare in EDR, compared to VMware’s 2.5% mindshare. Additionally, 88% of Trellix users are willing to recommend the solution, compared to 88% of VMware users who would recommend it.
Trellix Endpoint Detection ...
Read 22 Trellix Endpoint Detection and Response (EDR) reviews
  • 1,762 Views
  • 1,018 Comparison Views
88% willing to recommend
VMware Carbon Black Endpoint
Read 63 VMware Carbon Black Endpoint reviews
  • 6,743 Views
  • 4,546 Comparison Views
88% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Sep 9, 2024

VMware Carbon Black Endpoint and Trellix Endpoint Detection and Response (EDR) are prominent players in the cybersecurity space. Based on user reviews, VMware Carbon Black Endpoint seems to have better support and competitive pricing, but Trellix EDR is noted for superior features and overall performance, making it worth the higher cost according to users.

Features: VMware Carbon Black Endpoint provides real-time threat detection, automated responses, and effective threat hunting capabilities. Trellix EDR stands out with advanced threat intelligence, robust integration capabilities, and a comprehensive feature set that users find more efficient.

Room for Improvement: VMware Carbon Black Endpoint users suggest enhancements in reporting tools, bug fixes, and UI improvements. Trellix EDR users desire a more streamlined configuration process, improved documentation, and faster issue resolution.

Ease of Deployment and Customer Service: VMware Carbon Black Endpoint garners positive feedback for its straightforward deployment model and responsive customer support. Trellix EDR is seen as more complex to deploy but benefits from a highly acclaimed customer service team.

Pricing and ROI: VMware Carbon Black Endpoint is praised for its competitive pricing and good ROI. Trellix EDR is considered more expensive but is justified by the advanced features and better performance, leading users to feel that their investment is well-spent despite higher costs.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Trellix Endpoint Detection and Response (EDR) vs. VMware Carbon Black Endpoint Report (Updated: December 2024).
Buyer's Guide
Trellix Endpoint Detection and Response (EDR) vs. VMware Carbon Black Endpoint
December 2024
Download the complete report
Helped 824,067 peers since 2012
 

Categories and Ranking

Trellix Endpoint Detection ...
Ranking in Endpoint Detection and Response (EDR)
24th
Average Rating
7.4
Reviews Sentiment
7.6
Number of Reviews
22
Ranking in other categories
No ranking in other categories
VMware Carbon Black Endpoint
Ranking in Endpoint Detection and Response (EDR)
15th
Average Rating
7.8
Reviews Sentiment
6.9
Number of Reviews
63
Ranking in other categories
Endpoint Protection Platform (EPP) (18th), Security Incident Response (1st), Ransomware Protection (4th)
 

Mindshare comparison

As of December 2024, in the Endpoint Detection and Response (EDR) category, the mindshare of Trellix Endpoint Detection and Response (EDR) is 0.9%, up from 0.6% compared to the previous year. The mindshare of VMware Carbon Black Endpoint is 2.5%, down from 3.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Endpoint Detection and Response (EDR)
 

Featured Reviews

Juan Muriel - PeerSpot reviewer
Completely automated, affordable, and provides good technical functionalities
The antivirus and DLP features are valuable. Now, we have a campaign to encrypt all the drives of the company. We have a solution for network access control from Fortinet. When Trellix detects some threats, the device is isolated in a quarantine zone for examination. We integrate Trellix Endpoint Detection and Response with other solutions to perform such isolations. We also use products for log monitoring and correlation and create use cases for automatic response.
Read full review
Matthew Weisler - PeerSpot reviewer
Great granularity for policies or applications without needing hash values
The solution is cloud based which makes it easy to use for remote devices or work-at-home situations. The solution supports full trust or signature-based approvals. You can get very granular and band out policies or applications without having to do hash values. You can band through the entire environment by execution of the name or desk IDXE. This can be achieved on the policy side because of the signature, IOC, or naming convention itself. This is very effective for pushing more blockage or removing threats across the board. The solution has a very nice API on the back end for remoting into a system and executing scripts or utilizing self automation. This is useful for monitoring several different companies in a workspace or workbook-type format. For example, I report and send out mass emails from a clickable button in an Excel workbook. The APIs all exist for each client. I push out automatic endpoint monitoring and reports every single day at a particular time, with a simple clickable button that serves as a scheduled task for fifty clients.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Trellix Endpoint Detection and Response (EDR) offers endpoint protection and helps collect information while also allowing users to investigate malicious files in an IT environment...It is a stable solution...It is a scalable solution."
"Trellix has a user-friendly interface."
"It is a scalable solution and very easy to use."
"What we're using the most and what we found valuable in McAfee MVISION Endpoint Detection and Response are Web Control, Advanced Threat Protection, and Threat Prevention features."
"Blocking browser navigation is a feature of the solution with which we have experienced success."
"The most valuable feature I found in McAfee MVISION Endpoint Detection and Response is the guided analytics or guided EDR investigation."
"The product provides a one-click recovery of encrypted files."
"It relies on external systems for detection and then asks the endpoint to handle blocking. However, the most crucial feature is its investigative capabilities. With real-time search and other functionalities, it enables comprehensive detection and response."
More Trellix Endpoint Detection and Response (EDR) pros
"There's lots of very useful documentation online to help troubleshoot and learn about the product."
"The best feature of this solution is that we have a live response, which is really tailored to our needs."
"Once the solution is installed and configured correctly it does not require a lot of hands-on attention until you need upgrading."
"I like the historical features, interface, and integration."
"The solution has a library where we can have multiple threat intels onboarded. We just have to subscribe to a particular site intel and they'll provide us with all of the truncated details so that we can create IOCs and alerts on the basis of those IOCs."
"The tool is pretty stable."
"Behavioral Monitoring stops known malicious events before they even begin."
"The product is pretty strong in terms of security and their features are very good in that respect."
More VMware Carbon Black Endpoint pros
 

Cons

"The solution lacks the ability to integrate with external platforms. In future releases of the solution, I would like to see the solution increase its integration capabilities with external platforms."
"The solution's downside stems from the fact that Trellix Endpoint Detection and Response (EDR) and McAfee MVISION Endpoint are not combined into a single solution, so from an improvement perspective, they need to be combined into a single solution."
"Trellix needs to focus on gaining traction with partners and building trust among users."
"Trellix does not support Linux and Mac."
"The alert feature of McAfee MVISION Endpoint Detection and Response needs improvement because for you to get the alerts, you have to log on to the portal. What my company needs is a tool that sends you alerts. For example, if it detects a threat on your machine, it should send you an alert. My company gets the alerts instead from the antivirus software rather than the EDR. If you want to see the alerts on McAfee MVISION Endpoint Detection and Response, you have to connect to the system manually. Another area for improvement in the tool is the reporting. My company needs weekly and monthly reports about the alerts, but you can't extract reports from McAfee MVISION Endpoint Detection and Response, so a decision was made to move to another EDR solution, particularly Microsoft Defender for Endpoint, next month. My company tested Microsoft Defender for Endpoint via a POC for one to three months. The resource usage of McAfee MVISION Endpoint Detection and Response is also an area for improvement because it consumes a lot of memory. For example, during the on-demand scan, you can't work because of the high CPU usage. You need to schedule the scans. McAfee MVISION Endpoint Detection and Response has a lot of modules, but my company doesn't use all modules."
"The endpoints and utilization are too high, which impacts the production activity."
"The console has a lot of bugs, and it creates many issues."
"The technical support must be improved."
More Trellix Endpoint Detection and Response (EDR) cons
"The pricing could be more reasonable."
"I would personally give the tech support a rating of seven out of ten."
"The feature set for the firewall needs improvement."
"There is room for improvement in the support and service team."
"But here, we hardly can take any kind of a report out of Carbon Black, so I think that should be something that should be more user-friendly."
"It is difficult to extract reports for ongoing scans"
"The GUI and reporting should be addressed and the product's administration features need fine tuning."
"Report generation can be improved."
More VMware Carbon Black Endpoint cons
 

Pricing and Cost Advice

"Pricing is a problem in South Africa. It could be cheaper here. The rand-to-dollar exchange rate makes it expensive for us. A 25 dollar endpoint cost becomes quite significant when converted to rand."
"Pricing for McAfee MVISION Endpoint Detection and Response is not that expensive, but it's not something that a startup could buy. Pricing for it is for midsized businesses. There's an additional payment if you want data retention for more than thirty days. They gave us data retention for thirty days. Then if you want longer data retention, they have the paid option for a three-month data retention period and for a one-year data retention period."
"The pricing is always high."
"The price is reasonable."
"On a scale of one to ten, where one is low and ten is high, I rate the solution's pricing an eight out of ten."
"The cost is okay, compared to other products."
"The licensing costs attached to the solution are very easy to manage. There is a need to make yearly payments towards the licensing costs."
"The product’s pricing is reasonable."
More Trellix Endpoint Detection and Response (EDR) pricing and cost advice
"The pricing is annually based and operates through another department than mine."
"The license is annual. It's a standard license."
"​The cost/benefit factor has great relevance in Cb Defense implementations​."
"In terms of licensing costs, Carbon Black CB Defense was all associated with CROW and the services my company is using with them, so it came all-inclusive."
"The product is quite reasonable."
"The pricing [is] more or less the same as other similar solutions."
"It is more expensive, but it's worth it. There are no additional costs beyond the standard licensing fee."
"Carbon Black provides competitive pricing."
More VMware Carbon Black Endpoint pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Endpoint Detection and Response (EDR) solutions are best for your needs.
See recommendations
824,067 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
14%
Financial Services Firm
12%
Manufacturing Company
11%
Government
10%
Computer Software Company
15%
Financial Services Firm
10%
Government
10%
Manufacturing Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about McAfee MVISION Endpoint Detection and Response?
Trellix has a user-friendly interface.
See all answers
What is your experience regarding pricing and costs for McAfee MVISION Endpoint Detection and Response?
Pricing is a problem in South Africa. It could be cheaper here. The rand-to-dollar exchange rate makes it expensive for us. A 25 dollar endpoint cost becomes quite significant when converted to rand.
See all answers
What needs improvement with McAfee MVISION Endpoint Detection and Response?
When it comes to some unknown fileless attacks, the tool is not able to detect them properly, making it an area where improvements are required. The tool's support needs to improve in the areas of ...
See all answers
What to choose: an endpoint antivirus, an EDR solution or both?
I can recommend Carbon Black, an award-winning next-gen anti-virus (NGAV) and endpoint detection and response (EDR) security solution. The CB Predictive Security Cloud platform combines multiple hi...
See all answers
What's the difference between Carbon Black CB Response and Carbon Black CB Defense?
Carbon Black offers two different levels of Endpoint Detection and Response. One is the VM Carbon Black Cloud Endpoint Standard (CB Defense), and the other is the Carbon Black Endpoint Detection an...
See all answers
What do you like most about Carbon Black CB Defense?
VMware Carbon Black Endpoint is a highly stable solution.
See all answers
 

Comparisons

Trellix Endpoint Security (ENS) vs Trellix Endpoint Detection and Response (EDR) Logo
Trellix Endpoint Security (ENS) vs Trellix Endpoint Detection and Response (EDR)
Compared 51% of the time
CrowdStrike Falcon vs Trellix Endpoint Detection and Response (EDR) Logo
CrowdStrike Falcon vs Trellix Endpoint Detection and Response (EDR)
Compared 11% of the time
Microsoft Defender for Endpoint vs Trellix Endpoint Detection and Response (EDR) Logo
Microsoft Defender for Endpoint vs Trellix Endpoint Detection and Response (EDR)
Compared 9% of the time
Trellix Active Response vs Trellix Endpoint Detection and Response (EDR) Logo
Trellix Active Response vs Trellix Endpoint Detection and Response (EDR)
Compared 5% of the time
More Trellix Endpoint Detection and Response (EDR) Competitors
CrowdStrike Falcon vs VMware Carbon Black Endpoint Logo
CrowdStrike Falcon vs VMware Carbon Black Endpoint
Compared 16% of the time
Microsoft Defender for Endpoint vs VMware Carbon Black Endpoint Logo
Microsoft Defender for Endpoint vs VMware Carbon Black Endpoint
Compared 14% of the time
SentinelOne Singularity Complete vs VMware Carbon Black Endpoint Logo
SentinelOne Singularity Complete vs VMware Carbon Black Endpoint
Compared 8% of the time
Trellix Endpoint Security vs VMware Carbon Black Endpoint Logo
Trellix Endpoint Security vs VMware Carbon Black Endpoint
Compared 8% of the time
Trend Micro Deep Security vs VMware Carbon Black Endpoint Logo
Trend Micro Deep Security vs VMware Carbon Black Endpoint
Compared 7% of the time
More VMware Carbon Black Endpoint Competitors
 

Product Reports

Buyer's Guide
Trellix Endpoint Detection and Response (EDR)
November 2024
Trellix Endpoint Detection and Response (EDR) reportDownload Trellix Endpoint Detection and Response (EDR) product report
Buyer's Guide
VMware Carbon Black Endpoint
November 2024
VMware Carbon Black Endpoint reportDownload VMware Carbon Black Endpoint product report
 

Also Known As

McAfee MVISION EDR, MVISION EDR, MVISION Endpoint Detection and Response
Carbon Black CB Defense, Bit9, Confer
 

Learn More

Trellix
VMware
 

Overview

Reduce Alert Noise

Reduce the time to detect and respond to threats. Trellix EDR helps security analysts quickly prioritize threats and minimize potential disruption.

Do More with Existing Resources

Guided investigation automatically asks and answers questions while gathering, summarizing, and visualizing evidence from multiple sources—reducing the need for more SOC resources.

Low-Maintenance Cloud Solution

Cloud-based deployment and analytics enables your skilled security analysts to focus on strategic defense, instead of tool maintenance. Benefit from implementing the right solution for you.

VMware Carbon Black Endpoint provides comprehensive endpoint security against ransomware, spyware, malware, and viruses, catering to both cloud and on-premise environments.

VMware Carbon Black Endpoint facilitates endpoint detection and response, threat hunting, application control, antivirus support, and protection for virtual and physical machines. Features include intelligent learning, whitelisting, and integration with other security tools, making it suitable for distributors, MSPs, and enterprises seeking advanced threat defense and real-time monitoring. With its capability to detect and stop malicious executables, it supports both offline and online environments and offers tools like command shell access for deeper investigation.

What are the key features of VMware Carbon Black Endpoint?
  • Intelligent learning: Improves detection capabilities over time.
  • Whitelisting: Allows only approved applications to run.
  • Integration with other security tools: Enhances overall security posture.
  • Centralized cloud control: Manages endpoints from a single interface.
  • Command shell access: Offers deeper investigation capabilities.
  • Dynamic grouping: Facilitates organized endpoint management.
  • Simplified policy management: Streamlines security policy implementation.
  • API for system remoting: Allows remote system access and management.
  • Twenty-four-seven support: Provides continuous assistance and response.
What are the benefits of VMware Carbon Black Endpoint?
  • Real-time monitoring: Offers constant vigilance against threats.
  • Threat hunting: Identifies and mitigates threats proactively.
  • Historical data analysis: Assists in understanding past incidents and patterns.
  • Improved endpoint protection: Enhances overall endpoint security.
  • Enhanced threat detection: Reduces exposure to advanced threats.

VMware Carbon Black Endpoint is implemented across various industries including technology, healthcare, and finance. Organizations utilize it in cloud and hybrid environments, enhancing their security frameworks with real-time monitoring, intelligent learning, and robust threat detection capabilities tailored to their specific industry needs.

 

Sample Customers

Sutherland Global Services
Netflix, Progress Residential, Indeed, Hologic, Gentle Giant, Samsung Research America
Buyer's Guide
Trellix Endpoint Detection and Response (EDR) vs. VMware Carbon Black Endpoint
December 2024
Free Report: Trellix Endpoint Detection and Response (EDR) vs. VMware Carbon Black Endpoint
Find out what your peers are saying about Trellix Endpoint Detection and Response (EDR) vs. VMware Carbon Black Endpoint and other solutions. Updated: December 2024.
DOWNLOAD NOW
824,067 professionals have used our research since 2012.
See our Trellix Endpoint Detection and Response (EDR) vs. VMware Carbon Black Endpoint report.
See our list of best Endpoint Detection and Response (EDR) vendors.

We monitor all Endpoint Detection and Response (EDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.