No more typing reviews! Try our Samantha, our new voice AI agent.

CompassOne by Blackpoint Cyber vs VMware Carbon Black Cloud comparison

Blackpoint Cyber and Broadcom are both solutions in the Endpoint Detection and Response (EDR) category. Blackpoint Cyber is ranked #35 with an average rating of 9.5, while Broadcom is ranked #55 with an average rating of 6.0. Blackpoint Cyber holds a 0.7% mindshare in EDR, compared to Broadcom’s 0.4% mindshare. Additionally, 100% of Blackpoint Cyber users are willing to recommend the solution, compared to 93% of Broadcom users who would recommend it.
Sponsored
Cortex XDR by Palo Alto Net...
Read 108 Cortex XDR by Palo Alto Networks reviews
  • 14,649 Views
  • 8,057 Comparison Views
96% willing to recommend
CompassOne by Blackpoint Cyber
Read 5 CompassOne by Blackpoint Cyber reviews
  • 2,972 Views
  • 951 Comparison Views
100% willing to recommend
VMware Carbon Black Cloud
Read 19 VMware Carbon Black Cloud reviews
  • 1,338 Views
  • 789 Comparison Views
93% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Mar 15, 2026

VMware Carbon Black Cloud and CompassOne by Blackpoint Cyber compete in the cybersecurity solutions category. VMware Carbon Black Cloud has the upper hand in comprehensive threat detection features, while CompassOne shines in swift incident response.

Features: VMware Carbon Black Cloud provides advanced threat detection, including real-time blocking and detailed analysis, ensuring comprehensive security coverage. It offers threat hunting, process-level management, and endpoint isolation capabilities. CompassOne emphasizes rapid threat resolution and incident response speed. It integrates SOC monitoring, email monitoring, and provides actionable threat alerts.

Room for Improvement: VMware Carbon Black Cloud could improve in the areas of scalability in cloud solutions, enhancing reporting interfaces, and integrating advanced machine learning models. CompassOne needs to refine its market analysis tools, enhance scalability and integration capabilities, and develop a more user-friendly dashboard.

Ease of Deployment and Customer Service: VMware Carbon Black Cloud offers a user-friendly deployment with extensive documentation and reliable support infrastructure. CompassOne by Blackpoint Cyber focuses on quick setup with personalized customer service, providing efficient implementation with minimal disruption.

Pricing and ROI: VMware Carbon Black Cloud involves a higher initial cost but offers substantial long-term ROI due to its comprehensive features. CompassOne by Blackpoint Cyber features a cost-effective setup, emphasizing low entry barriers and catering to businesses seeking cost efficiency.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed CompassOne by Blackpoint Cyber vs. VMware Carbon Black Cloud Report (Updated: March 2026).
Buyer's Guide
CompassOne by Blackpoint Cyber vs. VMware Carbon Black Cloud
March 2026
Download the complete report
Helped 885,376 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cortex XDR by Palo Alto Net...
Sponsored
Ranking in Endpoint Detection and Response (EDR)
7th
Average Rating
8.4
Reviews Sentiment
6.8
Number of Reviews
108
Ranking in other categories
Endpoint Protection Platform (EPP) (5th), Extended Detection and Response (XDR) (6th), Ransomware Protection (2nd), AI-Powered Cybersecurity Platforms (2nd)
CompassOne by Blackpoint Cyber
Ranking in Endpoint Detection and Response (EDR)
35th
Average Rating
9.0
Reviews Sentiment
7.8
Number of Reviews
5
Ranking in other categories
Security Information and Event Management (SIEM) (40th), Vulnerability Management (44th), Application Control (10th), Managed Detection and Response (MDR) (10th)
VMware Carbon Black Cloud
Ranking in Endpoint Detection and Response (EDR)
55th
Average Rating
8.2
Reviews Sentiment
6.8
Number of Reviews
19
Ranking in other categories
Security Incident Response (8th)
 

Mindshare comparison

As of March 2026, in the Endpoint Detection and Response (EDR) category, the mindshare of Cortex XDR by Palo Alto Networks is 3.4%, down from 4.0% compared to the previous year. The mindshare of CompassOne by Blackpoint Cyber is 0.7%, up from 0.3% compared to the previous year. The mindshare of VMware Carbon Black Cloud is 0.4%, up from 0.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Endpoint Detection and Response (EDR) Mindshare Distribution
ProductMindshare (%)
Cortex XDR by Palo Alto Networks3.4%
CompassOne by Blackpoint Cyber0.7%
VMware Carbon Black Cloud0.4%
Other95.5%
Endpoint Detection and Response (EDR)
 

Featured Reviews

ABHISHEK_SINGH - PeerSpot reviewer
ABHISHEK_SINGH
Senior Process Expert at A.P. Moller - Maersk
Gained full visibility and streamlined threat detection through behavior-based insights and AI integration
Initially, we got to have a lot of false positives when we onboarded, but nowadays it's quite smooth. We have fine-tuned our security policies and allowed different levels of policies to get rid of those false positives. Currently, we are getting a fairly good amount of incidents that are not false positives or benign, but actionable items. The process is streamlined. In the initial days, the operations used to get involved in a lot of benign and other activities, but now the process is streamlined. We are leveraging the auto-detection and remediation plans. The operations teams are now more involved in other business roles as well, not just looking into the logs and fetching out what's happening there. They have fixed a lot of things. Initially, they didn't have IAC code drift detection, cloud posture management, or security posture management, but they have those now. They purchased different vendors and did a merger with that. They have now Prisma Cloud that gets integrated and now they are working with Cortex Cloud. Everything that was negative has now been addressed, and the product altogether looks to be in a very better and mature shape now. Currently, it's more or less detecting the workloads with AI-based best practices. Since most organizations are consuming AI agents and other things, we are looking forward to seeing what other feature enhancements Palo Alto can support in that.
Read full review
Gary Herbstman - PeerSpot reviewer
Gary Herbstman
Owner at Byte Solutions Inc.
Experienced reduced alert fatigue with streamlined notifications
We use Blackpoint Cyber MDR for our higher-end clients who need a higher level of control over security I appreciate that there are people behind the scenes sorting out valuable alerts from those that are not, so I only get alerts when they are real. This feature ensures that I am notified only…
Read full review
reviewer2771742 - PeerSpot reviewer
reviewer2771742
Sec consultant at a tech services company with 5,001-10,000 employees
Has supported consistent deployment across departments but needs better OS compatibility and detection performance
I am not really looking for a new solution, actually, I was preparing for an interview and wanted to have a comparison between both tools. I have not worked with any of these products before, but we had a training demonstration yesterday with Dynatrace, and I have investigated the Wiz solution better. In terms of experience, it will be my first time with CDR. I am working with something for EDR, specifically, we have an EDR, it's VMware Carbon Black Cloud. They have a hybrid environment, both on-prem and cloud. I would usually recommend this product for big companies, because it's not cheap, so only big companies would I expect to pay for that. The review rating for VMware Carbon Black Cloud is 6 out of 10.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Best solution for avoiding security breaches, malware attacks, and other kinds of security issues."
"Monitoring is most valuable."
"The most valuable features are the fact that it was running in the background and it would intercept any weird stuff, and the fact that it would send things directly to the cloud for sandboxing. It's quite practical."
"The user interface of the solution is sophisticated and straightforward."
"Palo Alto is constantly adding new features."
"It's very stable. I've never experienced downtime for the ASM console or ASM core."
"Palo Alto Networks Traps improves our security posture and lowers risk by providing next-gen methods to combat against modern threats on all the major platforms."
"The product's most valuable features are massive user and feature intelligence exploit detection."
More Cortex XDR by Palo Alto Networks pros
"On a scale from one to ten, I would rate the overall solution as a ten."
"On my end, the most valuable feature of this solution is that I can install it and forget about it. After that, their SOC team takes over and they only call me when there's a problem."
"I appreciate that there are people behind the scenes sorting out valuable alerts from those that are not, so I only get alerts when they are real."
"The solution is all encompassing and can incorporate email monitoring."
"Their SOC is phenomenal in not monitoring and responding and taking action."
"I appreciate that there are people behind the scenes sorting out valuable alerts from those that are not, so I only get alerts when they are real."
"The solution also watches over Microsoft 365 and keeps a copy of logs."
"They're highly stable in comparison with other solutions I have."
"The detection response and quarantining are very good features."
"The ability to quickly isolate a system from the network, while still being able to perform some forensics and mitigation work remotely, was of great value to us since we had many mobile and distributed systems."
"The most valuable features are its lightweight design, ensuring minimal impact on end-users, and its real-time protection."
"The most valuable feature is its ability to seek out abnormal activity and to create alerts."
"VMware Carbon Black Cloud is a user-friendly solution that can isolate machines from the rest of the network."
"With this solution, you can do so remotely; this is valuable because you don't have to bring the computer onsite to analyze it and it decreases response time by about 40 percent."
"Carbon Black is the leader in the market on many web boards."
More VMware Carbon Black Cloud pros
 

Cons

"The installation should be easier and the Palo Alto pre-sales and sales teams should have more information on the product because they don't know what they are selling."
"For working with the solution, you only really need a web browser, however, we've found that working on Chrome, for example, is horrible."
"There are some limitations on the Traps agents."
"A little bit more automation would be nice."
"Data privacy is a matter of concern. You have to be careful with data privacy, it can be sensitive and Cortex can have most of your access."
"I have run into some detection issues with Cortex XDR. It needs to be better at detection of internal attacks."
"A little bit more automation would be nice."
"I would like to see them include NDR (Network Detection Response). Then it would work well with SIEM Response."
More Cortex XDR by Palo Alto Networks cons
"Some texts seem to report items as normal too quickly."
"While I am very satisfied with the service, supporting additional platforms, particularly Linux support, would be a beneficial improvement."
"The interface could be more intuitive."
"The feature we keep asking for is a vulnerability scan."
"The interface could be more intuitive. More transparency is needed in the interface as a lot of details are hidden behind the scenes, making them difficult or impossible to access."
"The solution does not tie into other EDR products like CyberArk or CrowdStrike but that might be more useful."
"While I am very satisfied with the service, supporting additional platforms, particularly Linux support, would be a beneficial improvement."
"The solution can only handle about 500 bans or blocks."
"It's not highly available, so you have to have a core server."
"I recall we couldn't upgrade because the sensor was not compatible, and the latest VMware Carbon Black Cloud version was not compatible with the latest Red Hat version, so we couldn't actually update since it's a security tool, and it does not allow us to update."
"One of the big issues we're facing is that their solution doesn't support multi-tenants."
"They need to improve the batch console. It needs more capabilities."
"For a junior engineer, it's confusing."
"Additionally, it is complex to use, and the pricing should be improved."
"The education and awareness of customers here in Vietnam for Carbon Black CB Response is not good at the moment."
More VMware Carbon Black Cloud cons
 

Pricing and Cost Advice

"I am using the Community edition."
"It's the most expensive solution, but features-wise, it's quite strong. It's very good for protection, so the results are very good in the case of protection. I would rate it a two out of ten in terms of pricing."
"It is "expensive" and flexible."
"We didn't have to pay any additional fee for the cloud instance. It just came with the renewal, which was nice."
"Every customer has to pay for a license because it doesn't work with what you get from a managed services provider."
"When we first bought it, it was a bit expensive, but it was worth it. The licensing was straightforward."
"Cortex XDR’s pricing is very reasonable."
"The tool's price is moderate."
More Cortex XDR by Palo Alto Networks pricing and cost advice
"The pricing is in line with other products."
"The pricing is reasonable."
"VMware Carbon Black Cloud is an expensive solution."
"We had no issues purchasing through our preferred reseller and were able to get a fair price even when not purchasing direct. Carbon Black Enterprise Response didn’t break the bank, though adding on the matching antivirus and anti-malware components of the Protect product was more than we could afford, even with some discounting. Cb Response is really designed to complement Carbon Black’s Defense product. While Response can be used on its own, coupling with Defense seems like the best strategy if you can afford the price tag."
"You need to pay for the licensing of the product. The pricing is costly."
"The solution is very inexpensive so there is great cost savings to using it."
"Pricing for this solution could be made lower."
"Purchase Professional Services up front as part of the implementation package, then renew hours annually to ensure you have adequate support for upgrades and enhancements. Overbuy by at least 10% to account for infrastructure growth."
report
See which vendors are best for you
Use our free recommendation engine to learn which Endpoint Detection and Response (EDR) solutions are best for your needs.
See recommendations
885,376 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Construction Company
13%
Manufacturing Company
8%
Computer Software Company
8%
Financial Services Firm
8%
Computer Software Company
12%
Retailer
7%
Healthcare Company
7%
Outsourcing Company
7%
Financial Services Firm
8%
Comms Service Provider
8%
Construction Company
7%
Computer Software Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business44
Midsize Enterprise20
Large Enterprise47
No data available
By reviewers
Company SizeCount
Small Business5
Midsize Enterprise4
Large Enterprise8
 

Questions from the Community

Cortex XDR by Palo Alto vs. Sentinel One
Cortex XDR by Palo Alto vs. SentinelOne SentinelOne offers very detailed specifics with regard to risks or attacks. ...
See all answers
Comparing CrowdStrike Falcon to Cortex XDR (Palo Alto)
Cortex XDR by Palo Alto vs. CrowdStrike Falcon Both Cortex XDR and Crowd Strike Falcon offer cloud-based solutions th...
See all answers
How is Cortex XDR compared with Microsoft Defender?
Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface,...
See all answers
What is your experience regarding pricing and costs for Blackpoint Cyber MDR?
The pricing is great considering what we are receiving.
See all answers
What needs improvement with Blackpoint Cyber MDR?
While I am very satisfied with the service, supporting additional platforms, particularly Linux support, would be a b...
See all answers
What is your primary use case for Blackpoint Cyber MDR?
The solution serves as a baseline security offering. We have implemented it for every client that we do business with.
See all answers
What to choose: an endpoint antivirus, an EDR solution or both?
I can recommend Carbon Black, an award-winning next-gen anti-virus (NGAV) and endpoint detection and response (EDR) s...
See all answers
What's the difference between Carbon Black CB Response and Carbon Black CB Defense?
Carbon Black offers two different levels of Endpoint Detection and Response. One is the VM Carbon Black Cloud Endpoin...
See all answers
What needs improvement with Carbon Black CB Response?
I see room for improvement as I remember some problems on compatibility with some operating systems; I recall we coul...
See all answers
 

Comparisons

Microsoft Defender for Endpoint vs Cortex XDR by Palo Alto Networks Logo
Microsoft Defender for Endpoint vs Cortex XDR by Palo Alto Networks
Compared 9% of the time
SentinelOne Singularity Complete vs Cortex XDR by Palo Alto Networks Logo
SentinelOne Singularity Complete vs Cortex XDR by Palo Alto Networks
Compared 6% of the time
CrowdStrike Falcon vs Cortex XDR by Palo Alto Networks Logo
CrowdStrike Falcon vs Cortex XDR by Palo Alto Networks
Compared 4% of the time
Cortex XSIAM vs Cortex XDR by Palo Alto Networks Logo
Cortex XSIAM vs Cortex XDR by Palo Alto Networks
Compared 4% of the time
Symantec Endpoint Security vs Cortex XDR by Palo Alto Networks Logo
Symantec Endpoint Security vs Cortex XDR by Palo Alto Networks
Compared 3% of the time
More Cortex XDR by Palo Alto Networks Competitors
Huntress Managed EDR vs CompassOne by Blackpoint Cyber Logo
Huntress Managed EDR vs CompassOne by Blackpoint Cyber
Compared 16% of the time
SentinelOne Wayfinder Managed Detection & Response vs CompassOne by Blackpoint Cyber Logo
SentinelOne Wayfinder Managed Detection & Response vs CompassOne by Blackpoint Cyber
Compared 7% of the time
CrowdStrike Falcon Complete MDR vs CompassOne by Blackpoint Cyber Logo
CrowdStrike Falcon Complete MDR vs CompassOne by Blackpoint Cyber
Compared 6% of the time
Adlumin Security Operations vs CompassOne by Blackpoint Cyber Logo
Adlumin Security Operations vs CompassOne by Blackpoint Cyber
Compared 6% of the time
Arctic Wolf Managed Detection and Response vs CompassOne by Blackpoint Cyber Logo
Arctic Wolf Managed Detection and Response vs CompassOne by Blackpoint Cyber
Compared 4% of the time
More CompassOne by Blackpoint Cyber Competitors
Splunk SOAR vs VMware Carbon Black Cloud Logo
Splunk SOAR vs VMware Carbon Black Cloud
Compared 14% of the time
Palo Alto Networks Cortex XSOAR vs VMware Carbon Black Cloud Logo
Palo Alto Networks Cortex XSOAR vs VMware Carbon Black Cloud
Compared 11% of the time
VMware Carbon Black Endpoint vs VMware Carbon Black Cloud Logo
VMware Carbon Black Endpoint vs VMware Carbon Black Cloud
Compared 7% of the time
ServiceNow Security Operations vs VMware Carbon Black Cloud Logo
ServiceNow Security Operations vs VMware Carbon Black Cloud
Compared 7% of the time
Fidelis Elevate vs VMware Carbon Black Cloud Logo
Fidelis Elevate vs VMware Carbon Black Cloud
Compared 6% of the time
More VMware Carbon Black Cloud Competitors
 

Product Reports

Buyer's Guide
Cortex XDR by Palo Alto Networks
March 2026
Cortex XDR by Palo Alto Networks reportDownload Cortex XDR by Palo Alto Networks product report
Buyer's Guide
Managed Detection and Response (MDR)
February 2026
CompassOne by Blackpoint Cyber reportDownload CompassOne by Blackpoint Cyber product report
Buyer's Guide
VMware Carbon Black Cloud
March 2026
VMware Carbon Black Cloud reportDownload VMware Carbon Black Cloud product report
 

Also Known As

Cyvera, Cortex XDR, Palo Alto Networks Traps
Blackpoint Cyber Managed Detection + Response, Blackpoint Cyber Managed Detection and Response
Carbon Black CB Response
 

Overview

Cortex XDR by Palo Alto Networks provides advanced threat detection with AI-driven endpoint protection and seamless integration, ensuring multi-layered security and automatic threat response.

Cortex XDR is designed to safeguard endpoints against malware and suspicious activities. It offers advanced threat detection and response capabilities using behavioral analysis, AI, and machine learning. It seamlessly integrates with security infrastructures, providing endpoint security, firewall integration, and enhanced visibility in both cloud-based and on-premises environments.

What are the key features of Cortex XDR?
  • Advanced Threat Detection: Uses AI and machine learning for proactive threat identification.
  • Multi-layered Security: Combines various security measures for comprehensive protection.
  • Endpoint Protection: Safeguards against malware and exploits.
  • Behavioral Analysis: Monitors suspicious activity for early detection.
  • Automatic Threat Response: Automates responses to neutralize threats.
What benefits should users expect?
  • Ease of Use: Simplifies security management with intuitive design.
  • Resource Efficiency: Minimizes impact on system resources.
  • Integration Capabilities: Works well with existing security setups.
  • Reduced Analyst Workload: Automates processes to decrease manual intervention.

Organizations in diverse sectors deploy Cortex XDR to protect against malware, leveraging its advanced threat detection capabilities. Its integration with existing security infrastructures appeals to those seeking comprehensive protection in both cloud and on-premises environments, providing enhanced visibility and threat intelligence.

Palo Alto Networks

CompassOne by Blackpoint Cyber delivers comprehensive MDR capabilities, offering SLA-driven alert notifications, in-depth network discovery, and Microsoft 365 log preservation. Its SOC team efficiently manages monitoring tasks, ensuring genuine threats are prioritized and distractions minimized.

CompassOne enhances cybersecurity by offering email monitoring, app control, and effective threat identification, preventing incidents like a compromised device affecting corporate networks. While prompt in threat reporting, a need exists for detailed analysis and vulnerability scanning. Users seek integration with platforms such as CyberArk and CrowdStrike and support for Linux systems. The platform strengthens security through alert monitoring, virus prevention, account takeover prevention, and establishing a security baseline for both organizational and lab environments, with up to half of an organization's staff utilizing it and expansion plans in progress.

What are the key features of CompassOne?
  • SLA Notifications: Provides timely alerts to ensure swift threat response.
  • Network Discovery: Offers detailed insight into local networks.
  • Microsoft 365 Log Preservation: Maintains extensive records for compliance.
  • Email Monitoring and App Control: Detects and blocks suspicious activities efficiently.
  • Threat Prioritization: Minimizes distractions by focusing on genuine threats.
What benefits should users expect from CompassOne?
  • Efficient Monitoring: Relieves teams by offloading monitoring tasks to expert SOC teams.
  • Threat Mitigation: Protects against device compromise and secures networks.
  • Comprehensive Security: Extends capabilities through email and application vigilance.
  • Strategic Deployment: Adaptable for both enterprise and lab environments.

In sectors where security monitoring is crucial, CompassOne is implemented to observe computers, servers, and Office 365 environments, mitigating risks thoughtfully and efficiently. Companies engage its robust MDR functionalities to fend off viruses and account breaches while leveraging its security implementation services for a foundational security setup.

Blackpoint Cyber

Fortify Endpoint and Workload Protection

Legacy approaches fall short as cybercriminals update tactics and obscure their actions. Get advanced cybersecurity fueled by behavioral analytics to spot minor fluctuations and adapt in response.

Recognize New Threats

Analyze attackers’ behavior patterns to detect and stop never-before-seen attacks with continuous endpoint activity data monitoring. Don’t get stuck analyzing only what’s worked in the past.

Simplify Your Security Stack

Streamline the response to potential incidents with a unified endpoint agent and console. Minimize downtime responding to incidents and return critical CPU cycles back to the business.

Broadcom
 

Sample Customers

CBI Health Group, University Honda, VakifBank
CoreRecon, Peerless Tech Solutions, Lorien Health
ALLETE belk
Buyer's Guide
CompassOne by Blackpoint Cyber vs. VMware Carbon Black Cloud
March 2026
Free Report: CompassOne by Blackpoint Cyber vs. VMware Carbon Black Cloud
Find out what your peers are saying about CompassOne by Blackpoint Cyber vs. VMware Carbon Black Cloud and other solutions. Updated: March 2026.
DOWNLOAD NOW
885,376 professionals have used our research since 2012.
See our CompassOne by Blackpoint Cyber vs. VMware Carbon Black Cloud report.
See our list of best Endpoint Detection and Response (EDR) vendors.

We monitor all Endpoint Detection and Response (EDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.