What do you like most about Carbon Black CB Defense?

VMware Carbon Black Endpoint is a highly stable solution.

The most valuable feature of the solution stems from the fact that it is one of the best EDR tools in the market.

Carbon Black has very good market strategies.

The product enables device controls, helping us protect the devices and prevent data leakages.

The most valuable feature of the solution stems from the support it provides.

For Carbon Black Endpoint, the possibility of integration with different other software's log servers is the important thing. Having just one point of view is more interesting so you don't need to go to different places to see all the information.

It is a stable solution...The initial setup of VMware Carbon Black Endpoint was easy.

The product's most valuable feature is its ability to be fully integrated with the VMware environment.

I rate Carbon Black CB Defense an eight out of ten for the ease of its initial setup.

It has the best live response feature.

It uses machine learning and behavioral analytics for advanced threat detection and response.

Carbon Black CB Defense has helped improve my organization by allowing us to have better data so that we can do correlation and get visibility into the alerts.

The initial setup was fairly easy.

The whole purpose of the product, like application control, is very good, and also if you need to update some policies, it works well and instantly.

The solution has a library where we can have multiple threat intels onboarded. We just have to subscribe to a particular site intel and they'll provide us with all of the truncated details so that we can create IOCs and alerts on the basis of those IOCs.

The feature I found most valuable in Carbon Black CB Defense is the ongoing monitoring feature that works by emailing updates about any detections found.

The best feature of this solution is that we have a live response, which is really tailored to our needs.

We have another piece of that infrastructure that does what they call threat emulation. It's like sandboxing where it takes files that it doesn't know about, puts them in a VM-type environment, and it kicks them off to see if there's any malware or tendencies that might look like malware, that kind of thing.

One of the most valuable features is that it will block vulnerable sites. If there was a connection between one of our devices to a known malware site, it will block it.

The new feature that we're deploying, the new offering from Carbon Black, is MDR, which stands for manage, detect, and response. It's the most valuable feature because Carbon Black will be continuously checking the logs, and they will be advising us on how to improve some of the policies as well as review the logs. If there are any nefarious agents or things happening on the end points, they will know.

I found it very valuable as a whole. It is good at detecting anything and has kept us very safe. It is also very easy to use.

It is a very complete platform.

CB Defense is more powerful, and you can take more actions than others. Its security features and signatures are constantly updated, so it is more effective than other security solutions.

The product is pretty strong in terms of security and their features are very good in that respect.

The initial setup is very easy.

We can access computers remotely if we need to.

Some of the valuable features I have found are the online documentation of the solution is well organized and thorough. I like the simplicity of bypass and the visualization of the active components.

Technical support is excellent.

I like its protection very much. It protects and allows us to lock the environment pretty tightly. Nothing that is not approved through Carbon Black can run in the environment. There is no default. Everything goes through Carbon Black Protect, and everything has to be first approved. Every software is considered to be guilty before prove innocent.

There's lots of very useful documentation online to help troubleshoot and learn about the product.

The EDR and reports were helpful in improving our organization.

It is stable and easy to set up.

The initial setup is pretty straightforward.

I like its reporting.

The threat analysis functionality is good.

I like the historical features, interface, and integration.

It has intelligent learning behind it and we have been very successful in preventing attacks.

What I like the most about it is the dynamic grouping, where you get to group endpoints based on setup criteria. That's pretty cool. I like the simplified policy management and simplified white-listing process.

The triage feature that shows you the whole chain of the malware is useful.

You can deploy it through the cloud so that even if your stuff is outside of your controlled environment, you are still under control, based on the policies you create. The policies are controlled through the cloud. For example, if I don't allow anyone to do a certain activity or to install a particular app, and a consultant or a partner who is not part of our environment is doing so, it will stop them as well.

The most valuable feature is that it detects and stops malicious executables.

The offline networking is the most important feature. Some of our users are engineers that work offsite, and they can still be on the solution, which is also great.

The biggest feature out of CarbonBlack is its ability to dive in with more depth. You can look at the entire kill chain and understand, not only if an alarm or identified incident is truly a true security issue versus a false positive, and it allows us to backtrack and figure out why it actually happened and how it got into the environment.

The data analysis is the most valuable because of the whitelist database. It is different than standard IDS solutions.

Carbon Black Defense has a higher detection ratio because it's cloud-based and it also does a lookup to virus total.

It actually does some heuristics, and some behavioral analysis.