Try our new research platform with insights from 80,000+ expert users

Check Point SandBlast Network vs Trellix Advanced Threat Defense comparison

Check Point Software Technologies and Trellix are both solutions in the Advanced Threat Protection (ATP) category. Check Point Software Technologies is ranked #5 with an average rating of 8.7, while Trellix is ranked #22 with an average rating of 9.0. Check Point Software Technologies holds a 3.1% mindshare in ATP, compared to Trellix’s 1.9% mindshare. Additionally, 93% of Check Point Software Technologies users are willing to recommend the solution, compared to 76% of Trellix users who would recommend it.
Check Point SandBlast Network
Read 44 Check Point SandBlast Network reviews
  • 1,335 Views
  • 1,228 Comparison Views
93% willing to recommend
Trellix Advanced Threat Def...
Read 9 Trellix Advanced Threat Defense reviews
  • 559 Views
  • 525 Comparison Views
76% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Dec 1, 2024

Check Point SandBlast Network and Trellix Advanced Threat Defense are key players in cybersecurity, each providing distinct capabilities in threat detection. While Trellix seems to have the upper hand due to its advanced features, Check Point enjoys better feedback regarding pricing and support.

Features: Check Point SandBlast Network is known for powerful threat emulation, effective zero-day threat mitigation, and seamless integration across diverse network environments. Trellix Advanced Threat Defense distinguishes itself with robust behavioral analytics, comprehensive anomaly detection, and advanced machine learning capabilities, providing greater threat visibility.

Room for Improvement: Check Point could improve by enhancing its feature depth in behavioral analytics, providing more robust anomaly detection, and expanding its machine learning capabilities. Trellix, on the other hand, might benefit from simplifying deployment processes, optimizing the integration across varied environments, and reducing upfront costs to improve cost-effectiveness.

Ease of Deployment and Customer Service: Check Point SandBlast Network is easier to deploy, requiring minimal configuration and relying on a responsive customer service team. Trellix Advanced Threat Defense demands more complex deployment but compensates with superior support services, assisting users throughout their setup process.

Pricing and ROI: Check Point SandBlast Network offers competitive pricing and strong ROI due to its ease of use and simple deployment. Trellix Advanced Threat Defense, with potentially higher initial costs, provides significant ROI through its extensive feature set and enhanced threat management capabilities, making it a worthwhile investment for feature-focused users.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Check Point SandBlast Network vs. Trellix Advanced Threat Defense Report (Updated: December 2025).
Buyer's Guide
Check Point SandBlast Network vs. Trellix Advanced Threat Defense
December 2025
Download the complete report
Helped 879,422 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Check Point SandBlast Network
Ranking in Advanced Threat Protection (ATP)
5th
Average Rating
8.4
Reviews Sentiment
7.2
Number of Reviews
44
Ranking in other categories
No ranking in other categories
Trellix Advanced Threat Def...
Ranking in Advanced Threat Protection (ATP)
22nd
Average Rating
7.8
Reviews Sentiment
5.6
Number of Reviews
9
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of January 2026, in the Advanced Threat Protection (ATP) category, the mindshare of Check Point SandBlast Network is 3.1%, down from 4.6% compared to the previous year. The mindshare of Trellix Advanced Threat Defense is 1.9%, up from 1.0% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Advanced Threat Protection (ATP) Market Share Distribution
ProductMarket Share (%)
Check Point SandBlast Network3.1%
Trellix Advanced Threat Defense1.9%
Other95.0%
Advanced Threat Protection (ATP)
 

Featured Reviews

MW
Mayur Wadekar
Technical Specialist at Softcell Technologies Limited
Comprehensive security solution mitigates advanced threats
Improvements for Check Point SandBlast Network can be seen in dashboard usability; the threat emulation logs and analysis reports could be made more intuitive and visually appealing. Enhancing the system for granular tuning to reduce false positives and allowing benign files to bypass checks more simply for non-expert users would be beneficial. Additionally, faster emulation times could be achieved by increasing file scanning speed through hardware productivity enhancements. A specific instance where file scanning speed posed an issue was when the time taken depended on the file size. Scanning can take less than a minute or up to 2 minutes for larger files. Enhancing the file scanning time would be a significant improvement to the system.
Read full review
PP
Philippe Panardie
RSSI at SDIS49
Ensuring long-term reliability while seeking internal email management enhancements
Prisma is a commercial name of the firewall now, but we don't work with the cloud product. Only our company is using it and we do not recommend it to customers. For us, it's transparent because it's a cloud product, so we don't really know the version as it's always updated. We have not had any problem, but it's difficult to report on what's going on because some days they can wash out perhaps 100 mails, and then it's difficult to say how many attacks you have reached. The right email has been washed out and then nobody has complained. We do not use the Threat Visualization feature; as we are in MX, the mail is washed out before it is in the mail inbox of the user, thus avoiding any problem requiring a reservation. In fact, there is no integration with existing security frameworks. The only problem we can have is that as we have no API interface, there is no inspection of internal mail. I rate Trellix Advanced Threat Defense a nine out of ten.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Securing the environment through the sandboxing feature of Check Point SandBlast Network helps my team catch threats before they reach users, and it gives us more confidence in opening files from outside sources, improving our daily workflow."
"Check Point SandBlast Network has positively impacted our organization by reducing incidents, improving user confidence, and saving time since implementing it. With around 2,000 users in our organization, after deploying threat emulation for network security, we haven't seen any incidents, including zero-day or ransomware attacks."
"You do not need to risk your network by using the in-line sandbox."
"The Check Point SandBlast Network uses caching and static analysis to actually reduce the time it takes to scan and isolate the same file for incoming data compromises."
"In terms of the scalability, it's expandable across the cloud."
"Check Point SandBlast Network stops unknown malware and zero-day attacks, and we rely on it to prevent zero-day threats before they enter our enterprise network to protect our productivity, so it has to sanitize files that are delivered immediately to our users in our organization."
"SandBlast Network enhances security by providing advanced threat prevention."
"SandBlast updates the threat signatures frequently."
More Check Point SandBlast Network pros
"It is stable and reliable."
"The fact that in 10 years, we have had no problem is the most valuable feature for us; it's really a washing machine, but the only problem we face is that it's difficult to report on this product."
"The most valuable features are the administration console and its detection and response module."
"Its greatest strength is the DXL client which can rapidly disseminate attack information to all clients via the McAfee Agent instead of going through the ePO server."
"It is very scalable."
"Provides good exfiltration, and is an all-in-one product."
"It stops in excess of twenty-five malware events per month, all of which could be critical to the business."
"I recommend this solution because of its ease of use."
 

Cons

"There should be some customized price reductions in the offered packages."
"The technical support could use some work, but it's okay. It's a little bit of a tedious process to get through."
"We would like to see this solution reach mobile devices more efficiently, through apps or more specific products."
"There should be some improvement in the solution's stability and scalability."
"The Threat Emulation software blade significantly affects the performance of the NGFWs, we have a significant increase in the CPU and memory consumption."
"Check Point SandBlast Network can improve the integration with third-party vendors, such as EDR or CRM products. For example, IBM Curator."
"The cost is a little bit high-end, and you need to get precise performance metrics in order to get the correct size. Improvements are required in both areas of the tool."
"There have been a couple of things that we've tried where we read through the documentation, and we were really looking for some help in implementing, and technical support wanted me to try it first, then call them if it breaks. It would be nicer if they would hold my hand a bit more. It makes me nervous in production, as I don't have a lab."
More Check Point SandBlast Network cons
"The initial setup was industry standard complex. It takes awhile and has a lot of planning involved. It could be simplified with product redesign."
"I would like to see future versions of the solution incorporate artificial intelligence technology."
"The only problem we can have is that as we have no API interface, there is no inspection of internal mail."
"There could be a tool that automatically updates all-new Microsoft IPs, which are available for free to connect to the client."
"We'd like them to be better at dealing with script threats."
"This solution needs to be made "cloud ready"."
"Lacks remote capabilities not dependent on the internet."
"Make the ATD system a part of the whole product and take the whole thing onto the cloud. While it is there already, it is not to the same level as the on-premise version."
 

Pricing and Cost Advice

"The cost of Check Point SandBlast Network is annually, and there is only a standard license."
"We would like to try the Threat Extraction blade, but you need to buy a license. Check Point is expensive. I would like to buy things, but I would need the funding."
"The product's cost is high."
"Choosing the correct set of licenses is essential because, without the additional software blade licenses, the Check Point gateways are just a stateful firewall."
"We have seen ROI."
"I think the overall cost for introducing Check Point with SandBlast was reasonable and competitive in the market."
"The pricing is quite effective, not excessively high. On a scale of one to ten, where ten is the highest price, I rate the pricing a nine."
"The cost is not significantly high and it can be negotiated during any purchase of NGFW."
"The product is expensive, but it is better than the rest of them in the industry."
"Our licensing fees for this solution are approximately one million dollars per year."
report
See which vendors are best for you
Use our free recommendation engine to learn which Advanced Threat Protection (ATP) solutions are best for your needs.
See recommendations
879,422 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
12%
Financial Services Firm
9%
Outsourcing Company
7%
Energy/Utilities Company
6%
Government
14%
Comms Service Provider
13%
Performing Arts
11%
University
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business31
Midsize Enterprise8
Large Enterprise13
By reviewers
Company SizeCount
Small Business3
Midsize Enterprise4
Large Enterprise5
 

Questions from the Community

What is your experience regarding pricing and costs for Check Point SandBlast Network?
My experience with pricing and setup cost is that pricing was a bit high, but the setup cost was initially justified.
See all answers
What needs improvement with Check Point SandBlast Network?
I feel that Check Point SandBlast Network could be improved with slight delays in cleaning the file delivery. Additionally, I think it requires proper tuning to avoid unnecessary notifications.
See all answers
What is your primary use case for Check Point SandBlast Network?
My main use case for Check Point SandBlast Network is advanced threat protection, especially for scanning emails, attachments, web downloads, and incoming files through a sandbox environment. A qui...
See all answers
What do you like most about McAfee Advanced Threat Defense?
I recommend this solution because of its ease of use.
See all answers
What needs improvement with McAfee Advanced Threat Defense?
I would like to see an API interface for internal email and control of outgoing email to make it closer to 10. It's necessary; today we have an MX interface, and it would be interesting to have an ...
See all answers
What is your primary use case for McAfee Advanced Threat Defense?
We are working with Palo Alto products, specifically firewalls. We are only using Palo Alto Firewalls and not Cortex. With FireEye and Trellix, we only work with ETP now because the NDR function wh...
See all answers
 

Comparisons

Palo Alto Networks WildFire vs Check Point SandBlast Network Logo
Palo Alto Networks WildFire vs Check Point SandBlast Network
Compared 45% of the time
Fortinet FortiSandbox vs Check Point SandBlast Network Logo
Fortinet FortiSandbox vs Check Point SandBlast Network
Compared 28% of the time
Trellix Network Detection and Response vs Check Point SandBlast Network Logo
Trellix Network Detection and Response vs Check Point SandBlast Network
Compared 10% of the time
Cisco Secure Network Analytics vs Check Point SandBlast Network Logo
Cisco Secure Network Analytics vs Check Point SandBlast Network
Compared 9% of the time
Microsoft Defender for Office 365 vs Check Point SandBlast Network Logo
Microsoft Defender for Office 365 vs Check Point SandBlast Network
Compared 7% of the time
More Check Point SandBlast Network Competitors
Fortinet FortiSandbox vs Trellix Advanced Threat Defense Logo
Fortinet FortiSandbox vs Trellix Advanced Threat Defense
Compared 30% of the time
Check Point Infinity vs Trellix Advanced Threat Defense Logo
Check Point Infinity vs Trellix Advanced Threat Defense
Compared 22% of the time
Microsoft Defender for Identity vs Trellix Advanced Threat Defense Logo
Microsoft Defender for Identity vs Trellix Advanced Threat Defense
Compared 20% of the time
Microsoft Defender for Office 365 vs Trellix Advanced Threat Defense Logo
Microsoft Defender for Office 365 vs Trellix Advanced Threat Defense
Compared 15% of the time
Palo Alto Networks WildFire vs Trellix Advanced Threat Defense Logo
Palo Alto Networks WildFire vs Trellix Advanced Threat Defense
Compared 13% of the time
More Trellix Advanced Threat Defense Competitors
 

Product Reports

Buyer's Guide
Check Point SandBlast Network
December 2025
Check Point SandBlast Network reportDownload Check Point SandBlast Network product report
Buyer's Guide
Trellix Advanced Threat Defense
December 2025
Trellix Advanced Threat Defense reportDownload Trellix Advanced Threat Defense product report
 

Also Known As

No data available
McAfee Advanced Threat Defense
 

Overview

Check Point’s evasion-resistant technology maximizes zero-day protection without compromising business productivity. For the first time, businesses can reduce the risk of unknown attacks by implementing a prevent-first approach. Learn More about Check Point Sandblast

Check Point Software Technologies

Powerful advanced threat detection

Uncover Hidden Threats

Combine in-depth static code analysis, dynamic analysis (malware sandboxing), and machine learning to increase zero-day threat and ransomware detection.

Threat Intelligence Sharing

Immediately share threat intelligence across your entire infrastructure—including multi-vendor ecosystems—to reduce time from threat encounter to containment.

Enable Investigation

Validate threats and access critical indicators of compromise (IoCs) needed for investigation and threat hunting.

Trellix
 

Sample Customers

Edenred, State Transport Leasing Company (STLC), Edel AG, Laurenty, Conseil Départemental du Val de Marne, Koch Media
The Radicati Group, Florida International University, MGM Resorts International, County Durham andDarlington NHS Foundation Trust
Buyer's Guide
Check Point SandBlast Network vs. Trellix Advanced Threat Defense
December 2025
Free Report: Check Point SandBlast Network vs. Trellix Advanced Threat Defense
Find out what your peers are saying about Check Point SandBlast Network vs. Trellix Advanced Threat Defense and other solutions. Updated: December 2025.
DOWNLOAD NOW
879,422 professionals have used our research since 2012.
See our Check Point SandBlast Network vs. Trellix Advanced Threat Defense report.
See our list of best Advanced Threat Protection (ATP) vendors.

We monitor all Advanced Threat Protection (ATP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.