Try our new research platform with insights from 80,000+ expert users

Trellix Endpoint Detection and Response (EDR) vs VMware Carbon Black Endpoint comparison

Trellix and Broadcom are both solutions in the Endpoint Detection and Response (EDR) category. Trellix is ranked #24 with an average rating of 7.1, while Broadcom is ranked #30 with an average rating of 7.5. Trellix holds a 1.1% mindshare in EDR, compared to Broadcom’s 1.8% mindshare. Additionally, 85% of Trellix users are willing to recommend the solution, compared to 89% of Broadcom users who would recommend it.
Trellix Endpoint Detection ...
Read 24 Trellix Endpoint Detection and Response (EDR) reviews
  • 1,992 Views
  • 1,972 Comparison Views
85% willing to recommend
VMware Carbon Black Endpoint
Read 64 VMware Carbon Black Endpoint reviews
  • 4,954 Views
  • 3,319 Comparison Views
89% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Sep 9, 2024

VMware Carbon Black Endpoint and Trellix Endpoint Detection and Response (EDR) are prominent players in the cybersecurity space. Based on user reviews, VMware Carbon Black Endpoint seems to have better support and competitive pricing, but Trellix EDR is noted for superior features and overall performance, making it worth the higher cost according to users.

Features: VMware Carbon Black Endpoint provides real-time threat detection, automated responses, and effective threat hunting capabilities. Trellix EDR stands out with advanced threat intelligence, robust integration capabilities, and a comprehensive feature set that users find more efficient.

Room for Improvement: VMware Carbon Black Endpoint users suggest enhancements in reporting tools, bug fixes, and UI improvements. Trellix EDR users desire a more streamlined configuration process, improved documentation, and faster issue resolution.

Ease of Deployment and Customer Service: VMware Carbon Black Endpoint garners positive feedback for its straightforward deployment model and responsive customer support. Trellix EDR is seen as more complex to deploy but benefits from a highly acclaimed customer service team.

Pricing and ROI: VMware Carbon Black Endpoint is praised for its competitive pricing and good ROI. Trellix EDR is considered more expensive but is justified by the advanced features and better performance, leading users to feel that their investment is well-spent despite higher costs.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Trellix Endpoint Detection and Response (EDR) vs. VMware Carbon Black Endpoint Report (Updated: December 2025).
Buyer's Guide
Trellix Endpoint Detection and Response (EDR) vs. VMware Carbon Black Endpoint
December 2025
Download the complete report
Helped 880,481 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
6.2
Trellix EDR enhances visibility, resolves issues rapidly, prevents breaches, and boosts credibility, despite varied perceptions on cost-effectiveness.
Sentiment score
5.6
VMware Carbon Black Endpoint offers strong protection, reducing malware and saving 10% in costs, showing significant value within six months.
 

Customer Service

Sentiment score
7.3
Trellix EDR receives mixed reviews for support, citing helpful staff but issues with response times and communication barriers.
Sentiment score
6.3
VMware Carbon Black's support is knowledgeable yet occasionally slow, with variability in global and local assistance quality.
I have contracted support and also have an operating control so I can get various types of support.
CESARCASTRO
Committee Of IT Cybersececurity at a energy/utilities company with 51-200 employees
For more quotes and insights, download the Trellix Endpoint Detection and Response (EDR) report
Regarding the technical support of Broadcom, they are responsive and helpful.
reviewer2689206
Senior VP, Technology & Leading Technology Office at a outsourcing company with 1,001-5,000 employees
For more quotes and insights, download the VMware Carbon Black Endpoint report
 

Scalability Issues

Sentiment score
7.3
Trellix EDR is scalable for various enterprises, offering centralized management but may experience occasional slowdowns and support needs.
Sentiment score
7.1
VMware Carbon Black Endpoint is praised for scalability and ease of deployment, despite some challenges with report generation.
 

Stability Issues

Sentiment score
7.9
Trellix EDR is stable and reliable, with performance improvements and resolved issues in recent updates, facing minimal deployment challenges.
Sentiment score
7.5
VMware Carbon Black Endpoint is generally stable and efficient, with minor integration issues and occasional latency quickly addressed.
 

Room For Improvement

Trellix EDR struggles with high resource use, slow speed, poor integration, UI issues, and limited features and compatibility.
VMware Carbon Black Endpoint needs better integration, user interface, system compatibility, pricing, support, and enhanced features for improved client satisfaction.
I am seeing, for workflows, some sort of ethical hacking to test our environment.
CESARCASTRO
Committee Of IT Cybersececurity at a energy/utilities company with 51-200 employees
Trellix Endpoint Detection and Response (EDR) is interesting and is a very good entry point that has been evolving through the last years.
CESARCASTRO
Committee Of IT Cybersececurity at a energy/utilities company with 51-200 employees
For more quotes and insights, download the Trellix Endpoint Detection and Response (EDR) report
No quotes available
For more quotes and insights, download the VMware Carbon Black Endpoint report
 

Setup Cost

Trellix EDR is priced reasonably, but advanced features and international factors can make it expensive for enterprise buyers.
VMware Carbon Black's pricing is high and inflexible, with users preferring user-based over endpoint-based licensing options.
 

Valuable Features

Trellix EDR provides advanced threat protection, real-time monitoring, and user-friendly management with integration of EDR and antivirus.
VMware Carbon Black Endpoint offers advanced threat detection, cloud management, machine learning, and centralized control for efficient incident management.
All the tree of data that we have, which may be a lot of information to argue whether it is going to be a threat or not, can be analyzed.
CESARCASTRO
Committee Of IT Cybersececurity at a energy/utilities company with 51-200 employees
I have spent efforts on training our managers and others - what can software do if the knowledge base is low?
CESARCASTRO
Committee Of IT Cybersececurity at a energy/utilities company with 51-200 employees
For more quotes and insights, download the Trellix Endpoint Detection and Response (EDR) report
I assess VMware Carbon Black Endpoint's machine learning capabilities in detecting unknown threats as fantastic.
reviewer2689206
Senior VP, Technology & Leading Technology Office at a outsourcing company with 1,001-5,000 employees
For more quotes and insights, download the VMware Carbon Black Endpoint report
 

Categories and Ranking

Trellix Endpoint Detection ...
Ranking in Endpoint Detection and Response (EDR)
24th
Average Rating
7.4
Reviews Sentiment
7.1
Number of Reviews
24
Ranking in other categories
No ranking in other categories
VMware Carbon Black Endpoint
Ranking in Endpoint Detection and Response (EDR)
30th
Average Rating
7.8
Reviews Sentiment
6.7
Number of Reviews
64
Ranking in other categories
Endpoint Protection Platform (EPP) (37th), Security Incident Response (6th), Ransomware Protection (8th)
 

Mindshare comparison

As of January 2026, in the Endpoint Detection and Response (EDR) category, the mindshare of Trellix Endpoint Detection and Response (EDR) is 1.1%, up from 0.7% compared to the previous year. The mindshare of VMware Carbon Black Endpoint is 1.8%, down from 2.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Endpoint Detection and Response (EDR) Market Share Distribution
ProductMarket Share (%)
Trellix Endpoint Detection and Response (EDR)1.1%
VMware Carbon Black Endpoint1.8%
Other97.1%
Endpoint Detection and Response (EDR)
 

Featured Reviews

CESARCASTRO - PeerSpot reviewer
CESARCASTRO
Committee Of IT Cybersececurity at a energy/utilities company with 51-200 employees
Cross-site threat hunting has improved visibility and supports proactive incident response
I believe this is a product in evolution. I do not think it is a final tool to conduct forensics or information forensics of the incidents or information incidents that could arise in our network infrastructure. Trellix Endpoint Detection and Response (EDR) is interesting and is a very good entry point that has been evolving through the last years. In the next two months, I have a new contract, and we are pointing out to have an XDR solution with NDR and EDR together. I do not have enough time to do it because I am the manager. However, my coworkers do not understand it yet. I have a contract with a third-party company that is making reports around that, but also they do not have enough experience or enough utility of this. It would be interesting if I have a notification system from EDR. For example, if I am the manager, it would be interesting to have a warning, alarm, or something around that which could call me to get into the system and the dashboard to see what is happening. For example, if it is a high-level threat. However, most of them are just advisory or warnings. I do not enter the tool frequently. I guess I access it once every three months.
Read full review
reviewer2689206 - PeerSpot reviewer
reviewer2689206
Senior VP, Technology & Leading Technology Office at a outsourcing company with 1,001-5,000 employees
Behavior analytics has strengthened threat prediction yet still needs to improve overall standing
Regarding the real-time monitoring feature with VMware Carbon Black Endpoint, it is helpful in addressing unseen threats. I find the behavior analysis feature beneficial. I assess VMware Carbon Black Endpoint's machine learning capabilities in detecting unknown threats as fantastic. The behavior and analytics feature employs machine learning, and these are features which make the product and give that distinguishing, differentiating factor. The intelligent threat hunting capabilities have impacted my customers' cybersecurity efforts by giving them the edge to be prepared well in advance. Whenever this feature provides prediction, you know what action to take. You are aware of a possible attack and what kind of attack it may be, so you are much better prepared.
Read full review
report
See which vendors are best for you
Use our free recommendation engine to learn which Endpoint Detection and Response (EDR) solutions are best for your needs.
See recommendations
880,481 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
12%
Government
10%
Computer Software Company
9%
Manufacturing Company
8%
Financial Services Firm
12%
Government
9%
Computer Software Company
9%
Manufacturing Company
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business13
Midsize Enterprise3
Large Enterprise10
By reviewers
Company SizeCount
Small Business31
Midsize Enterprise9
Large Enterprise31
 

Questions from the Community

What do you like most about McAfee MVISION Endpoint Detection and Response?
Trellix has a user-friendly interface.
See all answers
What is your experience regarding pricing and costs for McAfee MVISION Endpoint Detection and Response?
I haven't had any really great problems with pricing in the past two or three years.
See all answers
What needs improvement with McAfee MVISION Endpoint Detection and Response?
This year, I am going to improve some tools to be installed or maybe acquire some services to better manage our web services and work with my coworkers. Application fiber also needs attention. Nowa...
See all answers
What to choose: an endpoint antivirus, an EDR solution or both?
I can recommend Carbon Black, an award-winning next-gen anti-virus (NGAV) and endpoint detection and response (EDR) security solution. The CB Predictive Security Cloud platform combines multiple hi...
See all answers
What's the difference between Carbon Black CB Response and Carbon Black CB Defense?
Carbon Black offers two different levels of Endpoint Detection and Response. One is the VM Carbon Black Cloud Endpoint Standard (CB Defense), and the other is the Carbon Black Endpoint Detection an...
See all answers
What do you like most about Carbon Black CB Defense?
VMware Carbon Black Endpoint is a highly stable solution.
See all answers
 

Comparisons

Trellix Endpoint Security Platform vs Trellix Endpoint Detection and Response (EDR) Logo
Trellix Endpoint Security Platform vs Trellix Endpoint Detection and Response (EDR)
Compared 32% of the time
CrowdStrike Falcon vs Trellix Endpoint Detection and Response (EDR) Logo
CrowdStrike Falcon vs Trellix Endpoint Detection and Response (EDR)
Compared 15% of the time
SentinelOne Singularity Complete vs Trellix Endpoint Detection and Response (EDR) Logo
SentinelOne Singularity Complete vs Trellix Endpoint Detection and Response (EDR)
Compared 9% of the time
Trend Vision One vs Trellix Endpoint Detection and Response (EDR) Logo
Trend Vision One vs Trellix Endpoint Detection and Response (EDR)
Compared 9% of the time
Sangfor Endpoint Secure vs Trellix Endpoint Detection and Response (EDR) Logo
Sangfor Endpoint Secure vs Trellix Endpoint Detection and Response (EDR)
Compared 2% of the time
More Trellix Endpoint Detection and Response (EDR) Competitors
CrowdStrike Falcon vs VMware Carbon Black Endpoint Logo
CrowdStrike Falcon vs VMware Carbon Black Endpoint
Compared 18% of the time
Microsoft Defender for Endpoint vs VMware Carbon Black Endpoint Logo
Microsoft Defender for Endpoint vs VMware Carbon Black Endpoint
Compared 9% of the time
SentinelOne Singularity Complete vs VMware Carbon Black Endpoint Logo
SentinelOne Singularity Complete vs VMware Carbon Black Endpoint
Compared 6% of the time
Trellix Endpoint Security Platform vs VMware Carbon Black Endpoint Logo
Trellix Endpoint Security Platform vs VMware Carbon Black Endpoint
Compared 5% of the time
Cortex XDR by Palo Alto Networks vs VMware Carbon Black Endpoint Logo
Cortex XDR by Palo Alto Networks vs VMware Carbon Black Endpoint
Compared 5% of the time
More VMware Carbon Black Endpoint Competitors
 

Product Reports

Buyer's Guide
Trellix Endpoint Detection and Response (EDR)
December 2025
Trellix Endpoint Detection and Response (EDR) reportDownload Trellix Endpoint Detection and Response (EDR) product report
Buyer's Guide
VMware Carbon Black Endpoint
December 2025
VMware Carbon Black Endpoint reportDownload VMware Carbon Black Endpoint product report
 

Also Known As

McAfee MVISION EDR, MVISION EDR, MVISION Endpoint Detection and Response
Carbon Black CB Defense, Bit9, Confer
 

Overview

Reduce Alert Noise

Reduce the time to detect and respond to threats. Trellix EDR helps security analysts quickly prioritize threats and minimize potential disruption.

Do More with Existing Resources

Guided investigation automatically asks and answers questions while gathering, summarizing, and visualizing evidence from multiple sources—reducing the need for more SOC resources.

Low-Maintenance Cloud Solution

Cloud-based deployment and analytics enables your skilled security analysts to focus on strategic defense, instead of tool maintenance. Benefit from implementing the right solution for you.

Trellix

VMware Carbon Black Endpoint enhances endpoint security with its robust EDR, threat detection, and live response features. The cloud-based architecture supports remote management and easy setup while behavioral monitoring and dynamic grouping minimize security risks.

VMware Carbon Black Endpoint is designed for those seeking comprehensive endpoint protection. With its cloud-based deployment, organizations experience streamlined remote control and simplified rollout processes. Its behavioral monitoring, incident response capabilities, and firewall integration deliver advanced security measures. Although it addresses many security challenges, areas like manual alert management, on-demand scanning, and integration with systems like AlienVault USM require refinement. Improved UI, EDR components, and flexible pricing models would enhance user satisfaction. On-premise deployment infrastructure and compatibility issues with some operating systems need attention. Enhanced reporting, container security, and multi-tenancy support are also essential for fulfilling industry needs. AI-driven analysis and threat isolation empower companies by fostering proactive management.

What are the key features of VMware Carbon Black Endpoint?

  • EDR Capabilities: Offers comprehensive endpoint detection and response to identify and mitigate threats.
  • Live Response: Enables real-time threat response actions for rapid containment and remediation.
  • Threat Detection: Uses advanced AI to identify and isolate potential security risks effectively.
  • Cloud-Based Architecture: Facilitates remote management and easy deployment of security measures.
  • Behavioral Monitoring: Continuously analyzes application behavior to detect anomalies and threats.
  • Dynamic Grouping: Organizes devices for improved management and targeted security policies.
  • Firewall Integration: Enhances security by integrating existing firewall solutions for a layered defense approach.
  • Whitelisting and Policy Management: Streamlines security configurations by managing allowed applications and user access policies.

What benefits should users look for when evaluating VMware Carbon Black Endpoint?

  • Ease of Setup: Simplifies initial deployment and management processes.
  • Scalability: Supports organizational growth by easily adapting to expanding security needs.
  • Detailed Process Monitoring: Provides deep visibility into application processes to identify threats efficiently.
  • Threat Isolation: Promotes proactive threat management, helping minimize the impact of security breaches.

VMware Carbon Black Endpoint finds extensive application in industries focused on stringent security requirements. Managed security service providers leverage its capabilities to deliver comprehensive protection to multiple clients worldwide. Organizations use it primarily for antivirus protection and incident management, integrating it with their existing security frameworks to strengthen endpoint visibility and real-time threat prevention. Its advanced detection and application control features make it a preferred choice in industries that prioritize robust security measures. However, it requires improvements in terms of system compatibility and customization flexibility to better serve diverse industry environments.

Broadcom
 

Sample Customers

Sutherland Global Services
Netflix, Progress Residential, Indeed, Hologic, Gentle Giant, Samsung Research America
Buyer's Guide
Trellix Endpoint Detection and Response (EDR) vs. VMware Carbon Black Endpoint
December 2025
Free Report: Trellix Endpoint Detection and Response (EDR) vs. VMware Carbon Black Endpoint
Find out what your peers are saying about Trellix Endpoint Detection and Response (EDR) vs. VMware Carbon Black Endpoint and other solutions. Updated: December 2025.
DOWNLOAD NOW
880,481 professionals have used our research since 2012.
See our Trellix Endpoint Detection and Response (EDR) vs. VMware Carbon Black Endpoint report.
See our list of best Endpoint Detection and Response (EDR) vendors.

We monitor all Endpoint Detection and Response (EDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.