Try our new research platform with insights from 80,000+ expert users

VMware Carbon Black Cloud vs VMware Carbon Black Endpoint comparison

VMware Carbon Black Cloud and VMware Carbon Black Endpoint are both solutions in the Security Incident Response category. VMware Carbon Black Cloud is ranked #6 with an average rating of 8.0, while VMware Carbon Black Endpoint is ranked #1 with an average rating of 7.7. VMware Carbon Black Cloud holds a 7.5% mindshare in IRP, compared to VMware Carbon Black Endpoint’s 8.1% mindshare. Additionally, 93% of VMware Carbon Black Cloud users are willing to recommend the solution, compared to 88% of VMware Carbon Black Endpoint users who would recommend it.
VMware Carbon Black Cloud
Read 18 VMware Carbon Black Cloud reviews
  • 190 Views
  • 148 Comparison Views
93% willing to recommend
VMware Carbon Black Endpoint
Read 63 VMware Carbon Black Endpoint reviews
  • 450 Views
  • 286 Comparison Views
88% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Sep 9, 2024

VMware Carbon Black Endpoint and VMware Carbon Black Cloud are two robust security solutions. VMware Carbon Black Cloud slightly surpasses Endpoint due to its advanced features, according to user reviews.

Features: VMware Carbon Black Endpoint offers reliable detection capabilities, comprehensive logging, and effective threat analysis. VMware Carbon Black Cloud stands out with its cloud-native architecture, automated workflows, and superior integration with other security tools.

Room for Improvement: VMware Carbon Black Endpoint needs to enhance its threat hunting capabilities and reduce false positives. VMware Carbon Black Cloud could benefit from simplifying the initial setup process and improving the accuracy of its AI-based threat detection.

Ease of Deployment and Customer Service: VMware Carbon Black Endpoint users find the deployment process straightforward and customer service responsive. VMware Carbon Black Cloud’s deployment is more complex due to extensive configuration options, but its customer service is well-regarded.

Pricing and ROI: VMware Carbon Black Endpoint is perceived as cost-effective with good ROI. VMware Carbon Black Cloud is more expensive but justified due to its comprehensive feature set and robust performance, leading to higher perceived ROI.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed VMware Carbon Black Cloud vs. VMware Carbon Black Endpoint Report (Updated: January 2025).
Buyer's Guide
VMware Carbon Black Cloud vs. VMware Carbon Black Endpoint
January 2025
Download the complete report
Helped 841,205 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
7.3
VMware Carbon Black Cloud offers cost savings, improved security, centralized protection, better efficiency, and quick ROI with automation features.
Sentiment score
7.1
Users reported significant ROI with VMware Carbon Black Endpoint, citing reduced malware and ransomware incidents, and 10% cost savings.
 

Customer Service

Sentiment score
6.6
Users typically find VMware Carbon Black Cloud support efficient, with no negative feedback reported and alternative contacts available for assistance.
Sentiment score
6.4
VMware Carbon Black Endpoint support is generally praised as effective and knowledgeable, but some report delays and issues with tiered support.
 

Scalability Issues

Sentiment score
7.6
VMware Carbon Black Cloud is highly rated for scalability, performing well in diverse environments from small to enterprise businesses.
Sentiment score
7.5
VMware Carbon Black Endpoint is highly scalable and adaptable for various enterprises, praised for ease of adding tenants and managing environments.
 

Stability Issues

Sentiment score
7.0
VMware Carbon Black Cloud became reliable after initial instability, with high user satisfaction despite minor performance issues on large deployments.
Sentiment score
7.6
VMware Carbon Black Endpoint is stable, lightweight, reliable, and highly rated, though minor issues with sensors and updates occasionally occur.
 

Room For Improvement

VMware Carbon Black Cloud needs better false positive handling, agent efficiency, support improvement, and enhanced features, training, and global support.
VMware Carbon Black Endpoint struggles with mobile support, complex UI, performance issues, inadequate reporting, and insufficient third-party integration.
 

Setup Cost

VMware Carbon Black Endpoint licensing is seen as expensive and inflexible, with prices ranging from $15 to $7,000 per node.
 

Valuable Features

VMware Carbon Black Cloud offers cost-effective, real-time security with intrusion alerts, quarantine, host isolation, data search, and threat hunting.
VMware Carbon Black Endpoint offers robust remote security with intuitive real-time detection, AI-driven threat response, and centralized cloud control.
 

Categories and Ranking

VMware Carbon Black Cloud
Ranking in Security Incident Response
6th
Ranking in Endpoint Detection and Response (EDR)
47th
Average Rating
8.4
Reviews Sentiment
7.2
Number of Reviews
18
Ranking in other categories
No ranking in other categories
VMware Carbon Black Endpoint
Ranking in Security Incident Response
1st
Ranking in Endpoint Detection and Response (EDR)
15th
Average Rating
7.8
Reviews Sentiment
7.0
Number of Reviews
63
Ranking in other categories
Endpoint Protection Platform (EPP) (21st), Ransomware Protection (5th)
 

Mindshare comparison

As of March 2025, in the Security Incident Response category, the mindshare of VMware Carbon Black Cloud is 7.5%, down from 10.0% compared to the previous year. The mindshare of VMware Carbon Black Endpoint is 8.1%, down from 21.8% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Security Incident Response
 

Q&A Highlights

NC
Nov 01, 2021
What's the difference between Carbon Black CB Response and Carbon Black CB Defense?
Neither, we have optimal results with Cynet.
See all answers
 

Featured Reviews

Tom Kar - PeerSpot reviewer
Shows promise for endpoint detection and response, with room for improvement in complexity and pricing
VMware Carbon Black Cloud is a user-friendly solution that can isolate machines from the rest of the network. When a machine is quarantined, it cannot communicate with any other machines on the network except for the Carbon Black Cloud server. This allows you to investigate the machine without the risk of malware escaping to the network. Carbon Black Cloud's server can communicate with the quarantined machine through DNS and VSCP. This allows you to collect data from the machine, such as system logs, process activity, and registry changes. This data can be used to investigate the infection and determine the next steps. CrowdStrike and Cybereason are also popular EDR solutions. They offer similar features to VMware Carbon Black Cloud but may have different strengths and weaknesses. It is important to evaluate all of your options before choosing an EDR solution. Additionally, it is complex to use, and the pricing should be improved.
Read full review
Nikunj Kamboj - PeerSpot reviewer
Integrates well with our existing SIEM tool and helps in identifying suspicious activities
The solution's integration with our existing security infrastructure is good. Whenever we have any alert in VMware Carbon Black Endpoint, we can easily that alert in our SIEM tool and check logs from the SIEM tool itself. VMware Carbon Black Endpoint is just a secondary security tool for us, and we are just monitoring the alerts from it. The solution's behavioral analytics feature helps in identifying suspicious activities pretty well. Whenever we have even a small thing, we get an alert. The solution is deployed on the cloud in our organization. Performance-wise, the solution is doing great in terms of connecting to the host directly. Performing a malware scan usually takes a lot of time, more than 24 hours. A malware scan is something that we do only on Carbon Black for the old endpoint devices and servers. It used to take sometimes three days to perform. I would recommend the solution to other users. Overall, I rate the solution an eight out of ten.
Read full review
report
See which vendors are best for you
Use our free recommendation engine to learn which Security Incident Response solutions are best for your needs.
See recommendations
841,205 professionals have used our research since 2012.
 

Answers from the Community

NC
Nov 1, 2021
Nov 1, 2021
What's the difference between Carbon Black CB Response and Carbon Black CB Defense?
Carbon Black offers two different levels of Endpoint Detection and Response. One is the VM Carbon Black Cloud Endpoint Standard (CB Defense), and the other is the Carbon Black Endpoint Detection and Response (EDR). We reviewed both and chose the CB Defense. CB Defense is a next-generation antivirus and endpoint security solution. It uses machine learning and behavioral analytics to monitor end...
See 2 answers
reviewer1065261 - PeerSpot reviewer
Oct 18, 2021
Neither, we have optimal results with Cynet.
Read full answer
LF
Nov 1, 2021
Carbon Black offers two different levels of Endpoint Detection and Response. One is the VM Carbon Black Cloud Endpoint Standard (CB Defense), and the other is the Carbon Black Endpoint Detection and Response (EDR). We reviewed both and chose the CB Defense. CB Defense is a next-generation antivirus and endpoint security solution. It uses machine learning and behavioral analytics to monitor endpoint activity and discover malicious activity. Once CB Defense detects a threat, it efficiently blocks harmful apps. It not only prevents any known threats but also prevents suspicious applications from running. One of the advantages of CB Defense is that it protects multiple types of devices (desktops, laptops, and servers). It is a solution that works well for small and large organizations. We like the ease of use and visibility of the management portal. You can see the activity on all protected endpoints. Configuring policies is simple, too. The only downside of CB Defense is that you cannot scan individual files on the endpoint. Carbon Black Endpoint Detection and Response (EDR) is geared more to security operation center teams (SOC) with hybrid or on-premises environments. Unlike CB Defense, Carbon Black EDR stores endpoint activity data. This feature helps security analysts visualize the attack kill chain. Although focused on an on-premises environment, the platform uses the VMWare Carbon Black Cloud’s threat intelligence. CB Response enables security teams to investigate an endpoint for suspicious activity. An advantage is that you can perform different types of investigations. Other advantages include seeing the process tree view of the endpoint and isolating and pulling files from a host. We also liked that you can see a timeline of changes made to a system. The defensive abilities are not as advanced as CB Defense, though. Conclusion Both solutions protect endpoints with advanced features. CB Defense is more useful for organizations. CB EDR offers deeper investigation features so that it could be a better solution for SOCs.
Read full answer
 

Top Industries

By visitors reading reviews
Computer Software Company
17%
Real Estate/Law Firm
13%
Financial Services Firm
11%
Healthcare Company
8%
Computer Software Company
15%
Financial Services Firm
11%
Government
10%
Manufacturing Company
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What to choose: an endpoint antivirus, an EDR solution or both?
I can recommend Carbon Black, an award-winning next-gen anti-virus (NGAV) and endpoint detection and response (EDR) security solution. The CB Predictive Security Cloud platform combines multiple hi...
See all answers
What's the difference between Carbon Black CB Response and Carbon Black CB Defense?
Carbon Black offers two different levels of Endpoint Detection and Response. One is the VM Carbon Black Cloud Endpoint Standard (CB Defense), and the other is the Carbon Black Endpoint Detection an...
See all answers
What do you like most about Carbon Black CB Response?
Threat hunting is the most valuable feature of VMware Carbon Black Cloud.
See all answers
What do you like most about Carbon Black CB Defense?
VMware Carbon Black Endpoint is a highly stable solution.
See all answers
What is your experience regarding pricing and costs for Carbon Black CB Defense?
The product is quite reasonable.
See all answers
What needs improvement with Carbon Black CB Defense?
The platform's alert system needs improvement in terms of its ability to manage alerts. At present, we have to manage them manually. It could be easier to use. Certain settings have limitations. Fo...
See all answers
 

Comparisons

Rapid7 InsightIDR vs VMware Carbon Black Cloud Logo
Rapid7 InsightIDR vs VMware Carbon Black Cloud
Compared 30% of the time
Splunk SOAR vs VMware Carbon Black Cloud Logo
Splunk SOAR vs VMware Carbon Black Cloud
Compared 29% of the time
Palo Alto Networks Cortex XSOAR vs VMware Carbon Black Cloud Logo
Palo Alto Networks Cortex XSOAR vs VMware Carbon Black Cloud
Compared 16% of the time
More VMware Carbon Black Cloud Competitors
CrowdStrike Falcon vs VMware Carbon Black Endpoint Logo
CrowdStrike Falcon vs VMware Carbon Black Endpoint
Compared 15% of the time
Microsoft Defender for Endpoint vs VMware Carbon Black Endpoint Logo
Microsoft Defender for Endpoint vs VMware Carbon Black Endpoint
Compared 14% of the time
SentinelOne Singularity Complete vs VMware Carbon Black Endpoint Logo
SentinelOne Singularity Complete vs VMware Carbon Black Endpoint
Compared 9% of the time
Trellix Endpoint Security vs VMware Carbon Black Endpoint Logo
Trellix Endpoint Security vs VMware Carbon Black Endpoint
Compared 9% of the time
Trend Micro Deep Security vs VMware Carbon Black Endpoint Logo
Trend Micro Deep Security vs VMware Carbon Black Endpoint
Compared 8% of the time
More VMware Carbon Black Endpoint Competitors
 

Product Reports

Buyer's Guide
VMware Carbon Black Cloud
February 2025
VMware Carbon Black Cloud reportDownload VMware Carbon Black Cloud product report
Buyer's Guide
VMware Carbon Black Endpoint
February 2025
VMware Carbon Black Endpoint reportDownload VMware Carbon Black Endpoint product report
 

Also Known As

Carbon Black CB Response
Carbon Black CB Defense, Bit9, Confer
 

Overview

Fortify Endpoint and Workload Protection Legacy approaches fall short as cybercriminals update tactics and obscure their actions. Get advanced cybersecurity fueled by behavioral analytics to spot minor fluctuations and adapt in response. Recognize New Threats Analyze attackers’ behavior patterns to detect and stop never-before-seen attacks with continuous endpoint activity data monitoring. Don’t get stuck analyzing only what’s worked in the past. Simplify Your Security Stack Streamline the response to potential incidents with a unified endpoint agent and console. Minimize downtime responding to incidents and return critical CPU cycles back to the business.
VMware

VMware Carbon Black Endpoint provides comprehensive endpoint security against ransomware, spyware, malware, and viruses, catering to both cloud and on-premise environments.

VMware Carbon Black Endpoint facilitates endpoint detection and response, threat hunting, application control, antivirus support, and protection for virtual and physical machines. Features include intelligent learning, whitelisting, and integration with other security tools, making it suitable for distributors, MSPs, and enterprises seeking advanced threat defense and real-time monitoring. With its capability to detect and stop malicious executables, it supports both offline and online environments and offers tools like command shell access for deeper investigation.

What are the key features of VMware Carbon Black Endpoint?
  • Intelligent learning: Improves detection capabilities over time.
  • Whitelisting: Allows only approved applications to run.
  • Integration with other security tools: Enhances overall security posture.
  • Centralized cloud control: Manages endpoints from a single interface.
  • Command shell access: Offers deeper investigation capabilities.
  • Dynamic grouping: Facilitates organized endpoint management.
  • Simplified policy management: Streamlines security policy implementation.
  • API for system remoting: Allows remote system access and management.
  • Twenty-four-seven support: Provides continuous assistance and response.
What are the benefits of VMware Carbon Black Endpoint?
  • Real-time monitoring: Offers constant vigilance against threats.
  • Threat hunting: Identifies and mitigates threats proactively.
  • Historical data analysis: Assists in understanding past incidents and patterns.
  • Improved endpoint protection: Enhances overall endpoint security.
  • Enhanced threat detection: Reduces exposure to advanced threats.

VMware Carbon Black Endpoint is implemented across various industries including technology, healthcare, and finance. Organizations utilize it in cloud and hybrid environments, enhancing their security frameworks with real-time monitoring, intelligent learning, and robust threat detection capabilities tailored to their specific industry needs.

VMware
 

Sample Customers

ALLETE belk
Netflix, Progress Residential, Indeed, Hologic, Gentle Giant, Samsung Research America
Buyer's Guide
VMware Carbon Black Cloud vs. VMware Carbon Black Endpoint
January 2025
Free Report: VMware Carbon Black Cloud vs. VMware Carbon Black Endpoint
Find out what your peers are saying about VMware Carbon Black Cloud vs. VMware Carbon Black Endpoint and other solutions. Updated: January 2025.
DOWNLOAD NOW
841,205 professionals have used our research since 2012.
See our VMware Carbon Black Cloud vs. VMware Carbon Black Endpoint report.
See our list of best Security Incident Response vendors and best Endpoint Detection and Response (EDR) vendors.

We monitor all Security Incident Response reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.