VMware Carbon Black Endpoint Reviews

We are a distributor of Carbon Black in Asia. Generally our customers are looking for endpoint features such as EDR (endpoint detection and response). Their existing solutions are usually from another vendor that has provided a normal antivirus solution. They are looking for endpoint protection and detection and response.

• The triage feature that shows you the whole kill chain of the attack/malware is useful. It shows how the malware get into the endpoints and show what it has been done
• The solution is easy to use and easy to deploy as it is cloud solution, no appliance is needed to deploy on premise

When you view the triage, it will show you everything within a given time frame, and not only the attack that caused the alert, which is what I want to see. It shows you all the events during that time, and that can be quite confusing. If they could focus on the alert and the event that the user wants to see, that would be better.

There is also room for improvement on the reporting side, because it doesn't have reports. Many of our customers would prefer some kind of exportable report, like a summary. Carbon Black should have this feature.

We haven't encountered any bugs.

I have not needed to contact their technical support yet.

The setup and configuration are very straightforward. The time it takes depends on the number of endpoints. For one endpoint, it takes a few minutes, tops.

Although I'm more on the technical side and not involved in the pricing, it's more or less the same as other similar solutions.

I would recommend this product to other people.

The first case was in a financial institution with offices in several states which needed to increase the ability to detect and respond to threats.

Provides visibility into the chain of attack and threats that use valid operating system processes to execute attacks.

The go live, because it is possible to answer incidents while they are still occurring and minimize the effects.

Needs improvement in the area of infrastructure for on-premise installation.

No issues.

No issues.

Technical support is high level.

No previous solution was used.

No problem with the initial setup because it is a cloud platform.

The cost/benefit factor has great relevance in Cb Defense implementations.

We did not evaluate any other solution. We are partners of Carbon Black.

It is a product which will bring enough information and effectiveness in the detection and response to advanced threats.

The offline networking is the most important feature. Some of our users are engineers that work offsite, and they can still be on the solution, which is also great.

The endpoint machines need improvement.

The solution needs to be more effective for the end-user.

It would be helpful to understand how to do some queries, but we’re still testing the solution right now, so everything is very new and we’re still learning the system.

I’ve never had to reach out to technical support.

The initial setup was very straightforward.

We did a POC with the solution. We’re still in the process of testing it, so we’re still learning the system.

I would rate the solution eight out of ten.

We are an MSP, and we deployed this solution for a banking client. We use it to help us defend against advanced persistent threats.

I like its reporting.

Its compatibility can be improved. It did crash a server during deployment, which is not something that I want to happen.

Its deployment should also be easier. The whole deployment cycle needs to be simplified. It is an enterprise solution, and to set it up right now, you have to be an expert.

I have been working with Carbon Black CB Defense for six months.

After the initial system crash, I haven't had any issues.

It will be very scalable.

I haven't contacted them.

The initial setup was complex because we needed to set up a server, deploy it to the server, and push it up from there. We had the on-premises server setup. Its cloud version may be easier.

It took one week to fully deploy it. The strategy was just to rip and replace the solution that we had before.

I would advise making sure that it won't cause problems with your servers. Whenever possible, it is good to fully test a product before deploying it.

I would rate this solution an eight out of ten. It needs better ease of use and deployment.

CB Defense is a threat identification and protection solution. In general, it's more often deployed on the cloud than on-prem. The customer decides. 

CB Defense is more powerful, and you can take more actions than others. Its security features and signatures are constantly updated, so it is more effective than other security solutions. We can integrate with XCDR. Carbon Black EDR integrates with Carbon Black EDE. But you don't need to integrate CB Defense with other external security solutions.

Integration is difficult, but CB Defense is more powerful than others. It is difficult to implement but easy to pick up many detections.

I've used CB Defense for a couple of years.

CB Defense is stable.

Carbon Black support is easy to access and helpful.

The installation is straightforward, but it requires two to four members of our team to implement it, and deployment takes a couple of hours. You need admins to install it because it involves setting permissions and requires documentation.

All EVV requires licenses for the appliances as well as the security features. 

I rate CB Defense nine out of 10. It's different, so it stands out among all the others. Carbon Black is more costly but also more powerful and effective, so I recommend it.

We use this solution as an endpoint solution for protection.

It has improved our protection to have less false-positives. We have a greater ability to find malware notifications. It has improved between 30-35% more than prior to our use of the solution.

Data analysis is the most valuable feature because of the whitelist database. It is different than standard IDS solutions.

The UI interface needs improvement. The management needs further work in future versions.

It is a stable product.

We are not a very big company, so scalability is not very relevant to us.

Our experience with tech support is very positive.

We had experience with this product in our team prior to our setup, so it was simple for us. We had it up in a week. It may be less easy for non-technical people. 

I am not really involved in the pricing of this product. From my understanding, the price is okay for us.

We did consider other products but we chose this solution.

I would advise Carbon Black to work on the automation and make it a bit easier for the solution.

We manage service providers. We provide this solution to other clients and companies that need it, and we are using the latest version.

It is stable and easy to set up.

The application control can be improved. It should also have an automatic update of the agents.

I have been using this solution for six months.

It is stable.

It is scalable.

Technical support is very effective. I am satisfied with them.

The initial setup is easy. It is not something difficult.

I would recommend this solution. We are going to keep providing this product. 

I would rate Carbon Black CB Defense a six out of ten.