Try our new research platform with insights from 80,000+ expert users

Check Point SandBlast Network vs Trellix Network Detection and Response comparison

Check Point Software Technologies and Trellix are both solutions in the Advanced Threat Protection (ATP) category. Check Point Software Technologies is ranked #7 with an average rating of 8.6, while Trellix is ranked #13 with an average rating of 7.6. Check Point Software Technologies holds a 4.0% mindshare in ATP, compared to Trellix’s 5.2% mindshare. Additionally, 93% of Check Point Software Technologies users are willing to recommend the solution, compared to 97% of Trellix users who would recommend it.
Check Point SandBlast Network
Read 43 Check Point SandBlast Network reviews
  • 1,051 Views
  • 967 Comparison Views
93% willing to recommend
Trellix Network Detection a...
Read 39 Trellix Network Detection and Response reviews
  • 2,006 Views
  • 943 Comparison Views
97% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Dec 1, 2024

Trellix Network Detection and Response and Check Point SandBlast Network are competing solutions in the network detection and response category. Trellix has an edge due to advanced threat detection features and strong incident response capabilities, while Check Point is noted for its versatile threat handling and AI/ML integration.

Features: Trellix NDR offers advanced malware detection, zero-day threat capabilities, MVX for virtualized execution, and sandboxing technologies. Incident response and deep threat insights are notable. Check Point SandBlast excels in handling various file types, combining signature-based and zero-day threat prevention with robust Threat Extraction and Emulation features.

Room for Improvement: Trellix could improve integration, reporting options, and reduce false positives. Enhanced user customization and cloud integration are needed. Check Point SandBlast requires better support responsiveness, pricing clarity, and more intuitive configuration. Both products need adaptation to changing cyber environments and improved interoperability.

Ease of Deployment and Customer Service: Trellix NDR is primarily on-premises with high customer service ratings for responsiveness. Check Point SandBlast offers hybrid and cloud options with slightly lower service ratings due to support delays and deployment complexity.

Pricing and ROI: Trellix NDR is seen as expensive but justifies cost with effective breach prevention and substantial ROI. Check Point SandBlast, also with a higher cost for advanced features, is competitively priced, offering favorable ROI through comprehensive threat management.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Check Point SandBlast Network vs. Trellix Network Detection and Response Report (Updated: September 2025).
Buyer's Guide
Check Point SandBlast Network vs. Trellix Network Detection and Response
September 2025
Download the complete report
Helped 872,029 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
6.7
The platform enhances protection and awareness, achieving 80% ROI by reducing incidents and ensuring business continuity for organizations.
Sentiment score
8.5
Trellix Network Detection and Response exceeded expectations by improving threat prevention and detection, boosting productivity and reducing response times.
Protecting around 2,000 users from cyber threats, including ransomware, has positively impacted the organization's growth by reducing disruptions and business loss.
I have seen a return on investment since using Check Point SandBlast Network, as it has improved the efficiency of incident handling and saved costs.
Check Point SandBlast Network has saved our money because we don't need to be concerned about security or invest in any sandboxing.
For more quotes and insights, download the Check Point SandBlast Network report
No quotes available
For more quotes and insights, download the Trellix Network Detection and Response report
MW
JR
Mohit Shah - PeerSpot reviewer
 

Customer Service

Sentiment score
6.1
Check Point SandBlast Network support is knowledgeable and appreciated, but users desire faster responses and clearer documentation.
Sentiment score
6.8
Trellix's support is praised for responsiveness, but improvements in expertise and incident response promptness are suggested by some.
I did get the best from Check Point SandBlast Network's support team; they were very helpful while troubleshooting any kind of issues we faced.
The customer support for Check Point SandBlast Network is great, as the security team has extensive knowledge and provides proper solutions.
In troubleshooting, they are very helpful and knowledgeable.
For more quotes and insights, download the Check Point SandBlast Network report
Technical support needs improvement as sometimes engineers are not available promptly, especially during high-severity incidents.
For more quotes and insights, download the Trellix Network Detection and Response report
JR
SiddhanthSomkuwar - PeerSpot reviewerMohit Shah - PeerSpot reviewerAbdullah Al Hadi - PeerSpot reviewer
 

Scalability Issues

Sentiment score
7.8
Check Point SandBlast Network is praised for scalability and integration, but faces challenges with specific hardware and resource requirements.
Sentiment score
7.8
Trellix Network Detection and Response scales effectively in various industries, performing well in large enterprises without latency issues.
The scalability of Check Point SandBlast Network meets our organization's needs as we grow.
It is scalable but requires growing the box itself because it is a resource-intensive solution.
The scalability of Check Point SandBlast Network is very nice.
For more quotes and insights, download the Check Point SandBlast Network report
No quotes available
For more quotes and insights, download the Trellix Network Detection and Response report
MW
Abnet Tsegaye Belay - PeerSpot reviewerreviewer2751732 - PeerSpot reviewer
 

Stability Issues

Sentiment score
7.9
Check Point SandBlast Network is highly stable with minor performance issues, effective support, and seamless integration highlighted by users.
Sentiment score
7.7
Trellix Network Detection and Response is stable and reliable, with consistent performance and high user satisfaction despite occasional minor issues.
When configured correctly with adequate resources, it functions properly.
Check Point SandBlast Network is stable in my experience, providing proper security to our organization.
For more quotes and insights, download the Check Point SandBlast Network report
No quotes available
For more quotes and insights, download the Trellix Network Detection and Response report
 

Room For Improvement

Check Point SandBlast Network faces integration issues, performance concerns, usability challenges, and needs for custom solutions and better support.
Trellix Network Detection needs improved customization, integration, AI capabilities, support services, and a more user-friendly interface at reduced pricing.
Simplification of granular tuning for false positive reduction and bypassing benign files would benefit non-expert users.
Sometimes when we enable a feature in our security gateway, the CPU of the device goes high, so that can be improved.
The customer support for Check Point SandBlast Network could be improved as they are sometimes late with their responses.
For more quotes and insights, download the Check Point SandBlast Network report
There should be improvements in AI intelligence, faster decision-making, and a more responsive technical support team.
For more quotes and insights, download the Trellix Network Detection and Response report
MW
Mohit Shah - PeerSpot reviewerreviewer2751732 - PeerSpot reviewerAbdullah Al Hadi - PeerSpot reviewer
 

Setup Cost

Check Point SandBlast Network pricing is viewed as high but competitive with negotiable licenses, emphasizing benefits and cost optimization.
Trellix Network Detection is costly but effective, with yearly licensing, discounts, and competitive pricing against some competitors like Palo Alto.
Pricing is a bit costly, but considering the features and security offered by Check Point SandBlast Network, it is reasonable.
For more quotes and insights, download the Check Point SandBlast Network report
No quotes available
For more quotes and insights, download the Trellix Network Detection and Response report
 

Valuable Features

Check Point SandBlast Network provides comprehensive threat protection and AI-enhanced detection, ensuring network safety and efficient security management.
Trellix excels in threat protection with AI-driven analysis, automation, and enhanced visibility, benefiting security operations and incident management.
The key features of Check Point SandBlast Network include its ability to detect zero-day attacks, provide sandboxing capabilities, and offer real-time protection with threat extraction.
The sandboxing method of Check Point SandBlast Network is more powerful than other options because it doesn't present a signature database, so it's not totally relying on the signature but also checks for real-time zero-day attacks and signatures.
The specific security feature that stands out to me in Check Point SandBlast Network is its real-time protection, which extracts, emulates, and blocks traffic if any malicious signatures are present.
For more quotes and insights, download the Check Point SandBlast Network report
Trellix NDR provides an essential defense by automatically responding to network incidents that firewalls may not catch.
For more quotes and insights, download the Trellix Network Detection and Response report
MW
JR
SiddhanthSomkuwar - PeerSpot reviewerAbdullah Al Hadi - PeerSpot reviewer
 

Categories and Ranking

Check Point SandBlast Network
Ranking in Advanced Threat Protection (ATP)
7th
Average Rating
8.4
Reviews Sentiment
7.2
Number of Reviews
43
Ranking in other categories
No ranking in other categories
Trellix Network Detection a...
Ranking in Advanced Threat Protection (ATP)
13th
Average Rating
8.4
Reviews Sentiment
7.3
Number of Reviews
39
Ranking in other categories
Network Detection and Response (NDR) (10th)
 

Mindshare comparison

As of October 2025, in the Advanced Threat Protection (ATP) category, the mindshare of Check Point SandBlast Network is 4.0%, down from 6.0% compared to the previous year. The mindshare of Trellix Network Detection and Response is 5.2%, up from 4.8% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Advanced Threat Protection (ATP) Market Share Distribution
ProductMarket Share (%)
Check Point SandBlast Network4.0%
Trellix Network Detection and Response5.2%
Other90.8%
Advanced Threat Protection (ATP)
 

Featured Reviews

Abnet Tsegaye Belay - PeerSpot reviewer
Has prevented zero-day attacks by analyzing and disarming suspicious files before delivery
Check Point SandBlast Network offers wide protocol coverage. It inspects emails through SMTP, POP3, and IMAP, web downloads through HTTP and HTTPS, and file transfers. Original files are analyzed in the sandbox while users get clean copies instantly to their inbox. It detects zero-day exploits in suspicious and normal files, and includes forensic and reporting features that provide detailed incident analysis, malware behavior reports, and indicators of compromise. The wide protocol coverage is particularly valuable because suspicious activities happen across different protocols. With Check Point SandBlast Network supporting multiple protocols, there is strong protection for our networks. Since implementing Check Point SandBlast Network, we have gained enhancement in our email and web security. It protects our files, complies with different standards, and reduces lateral movement in our networks.
Read full review
BiswabhanuPanda - PeerSpot reviewer
Offers in-depth investigation capabilities, integrates well and smoothly transitioned from a lower-capacity appliance to a higher one
The in-depth investigation capabilities are a major advantage. When the system flags something as malicious, it provides a packet capture of that activity within the environment. That helps my team quickly identify additional context that most other tools wouldn't offer – like source IP or base64 encoded data. We can also see DNS requests and other details that aren't readily available in solutions like Check Point or others that we've tried. The detection itself is solid, and their sandboxing is powerful. There's a learning curve – you need a strong grasp of OS-level changes, process forking, registry changes, and the potential impact of those. But with that knowledge, the level of information Trellix provides is far greater than what we've seen elsewhere. The real-time response capability of Trellix has been quite effective, although it's not very fast. The key is this solution's concept of 'preference zero.' They don't immediately act on a zero-day. For example, the solution has seen a piece of malware for the first time. It'll let it in, then do sandboxing. Maybe after four or five minutes, it identifies that specific file's DNX Secure Store as malicious. At that point, they update the static analysis engine, and it gets detected if anything else tries to download the same file. There is that initial 'preference zero' concept, like with Panda. You may not hold traffic in the network. That's standard in the industry; we don't do much about it. To address that, we also have endpoint solutions. We use SentinelOne in our environment, which helps us identify threats like Western Bureaus and others.
Read full review
report
See which vendors are best for you
Use our free recommendation engine to learn which Advanced Threat Protection (ATP) solutions are best for your needs.
See recommendations
872,029 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
13%
Financial Services Firm
10%
Energy/Utilities Company
7%
Comms Service Provider
6%
Financial Services Firm
13%
Comms Service Provider
12%
Manufacturing Company
11%
Government
10%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business31
Midsize Enterprise7
Large Enterprise13
By reviewers
Company SizeCount
Small Business19
Midsize Enterprise8
Large Enterprise19
 

Questions from the Community

What do you like most about Check Point SandBlast Network?
The solution can detect and prevent attacks that may be encrypted.
See all answers
What is your experience regarding pricing and costs for Check Point SandBlast Network?
I'm not in charge of costing regarding Check Point SandBlast Network, so I cannot comment on the pricing, setup cost, and licensing.
See all answers
What needs improvement with Check Point SandBlast Network?
It has some performance overhead, as sandboxing takes time and real-time delivery depends on threat extraction, requiring high performance. This represents a limitation. Additionally, some sophisti...
See all answers
What do you like most about FireEye Network Security?
We wanted to cross-reference that activity with the network traffic just to be sure there was no lateral movement. With Trellix, we easily confirmed that there was no lateral network involvement an...
See all answers
What is your experience regarding pricing and costs for FireEye Network Security?
While I do not handle pricing directly, it is known that there is a variety of customers with different licensing needs, which depends on the organization's size and policy.
See all answers
What needs improvement with FireEye Network Security?
The Trellix solution could be improved by enhancing the Central Management Console for faster visibility, which would help in network detection response. Networking often involves complexity that c...
See all answers
 

Comparisons

Palo Alto Networks WildFire vs Check Point SandBlast Network Logo
Palo Alto Networks WildFire vs Check Point SandBlast Network
Compared 49% of the time
Fortinet FortiSandbox vs Check Point SandBlast Network Logo
Fortinet FortiSandbox vs Check Point SandBlast Network
Compared 36% of the time
Microsoft Defender for Office 365 vs Check Point SandBlast Network Logo
Microsoft Defender for Office 365 vs Check Point SandBlast Network
Compared 7% of the time
More Check Point SandBlast Network Competitors
Palo Alto Networks WildFire vs Trellix Network Detection and Response Logo
Palo Alto Networks WildFire vs Trellix Network Detection and Response
Compared 13% of the time
Fortinet FortiSandbox vs Trellix Network Detection and Response Logo
Fortinet FortiSandbox vs Trellix Network Detection and Response
Compared 10% of the time
Trend Micro Deep Discovery vs Trellix Network Detection and Response Logo
Trend Micro Deep Discovery vs Trellix Network Detection and Response
Compared 7% of the time
Darktrace vs Trellix Network Detection and Response Logo
Darktrace vs Trellix Network Detection and Response
Compared 6% of the time
Zabbix vs Trellix Network Detection and Response Logo
Zabbix vs Trellix Network Detection and Response
Compared 6% of the time
More Trellix Network Detection and Response Competitors
 

Product Reports

Buyer's Guide
Check Point SandBlast Network
October 2025
Check Point SandBlast Network reportDownload Check Point SandBlast Network product report
Buyer's Guide
Trellix Network Detection and Response
October 2025
Trellix Network Detection and Response reportDownload Trellix Network Detection and Response product report
 

Also Known As

No data available
FireEye Network Security, FireEye
 

Overview

Check Point’s evasion-resistant technology maximizes zero-day protection without compromising business productivity. For the first time, businesses can reduce the risk of unknown attacks by implementing a prevent-first approach. Learn More about Check Point Sandblast

Check Point Software Technologies

Detect the undetectable and stop evasive attacks. Trellix Network Detection and Response (NDR) helps your team focus on real attacks, contain intrusions with speed and intelligence, and eliminate your cybersecurity weak points.

Trellix
 

Sample Customers

Edenred, State Transport Leasing Company (STLC), Edel AG, Laurenty, Conseil Départemental du Val de Marne, Koch Media
FFRDC, Finansbank, Japan Advanced Institute of Science and Technology, Investis, Kelsey-Seybold Clinic, Bank of Thailand, City of Miramar, Citizens National Bank, D-Wave Systems
Buyer's Guide
Check Point SandBlast Network vs. Trellix Network Detection and Response
September 2025
Free Report: Check Point SandBlast Network vs. Trellix Network Detection and Response
Find out what your peers are saying about Check Point SandBlast Network vs. Trellix Network Detection and Response and other solutions. Updated: September 2025.
DOWNLOAD NOW
872,029 professionals have used our research since 2012.
See our Check Point SandBlast Network vs. Trellix Network Detection and Response report.
See our list of best Advanced Threat Protection (ATP) vendors.

We monitor all Advanced Threat Protection (ATP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.