Try our new research platform with insights from 80,000+ expert users

CyberArk Endpoint Privilege Manager vs VMware Carbon Black App Control comparison

CyberArk and VMware are both solutions in the Application Control category. CyberArk is ranked #5 with an average rating of 8.6, while VMware is ranked #2. CyberArk holds a 5.1% mindshare in AC, compared to VMware’s 17.6% mindshare. Additionally, 86% of CyberArk users are willing to recommend the solution, compared to 100% of VMware users who would recommend it.
CyberArk Endpoint Privilege...
Read 38 CyberArk Endpoint Privilege Manager reviews
  • 3,979 Views
  • 40 Comparison Views
86% willing to recommend
VMware Carbon Black App Con...
Read 8 VMware Carbon Black App Control reviews
  • 811 Views
  • 673 Comparison Views
100% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Jun 29, 2025

CyberArk Endpoint Privilege Manager and VMware Carbon Black App Control compete in the endpoint security space, each offering unique strengths. CyberArk has a slight edge with its focus on detailed monitoring and integration capabilities, while VMware Carbon Black stands strong with its focus on application control and endpoint visibility.

Features: CyberArk Endpoint Privilege Manager includes application whitelisting, password rotation, and Just-In-Time Access, offering comprehensive protection against unauthorized access and ransomware. This solution integrates with SIEMs for in-depth user behavior insights. VMware Carbon Black App Control provides robust application control, including visibility and reporting of endpoint activities. It protects end-of-life systems and offers strong application control capabilities.

Room for Improvement: CyberArk Endpoint Privilege Manager could improve its console interface and streamline policy management. Users have noted a need for better integration and more effective technical support. Simplifying administrative processes and reducing integration complexities are also necessary improvements. VMware Carbon Black App Control should reduce false positives, enhance support for macOS, and improve application control process efficiency.

Ease of Deployment and Customer Service: CyberArk Endpoint Privilege Manager offers flexible deployment options across hybrid cloud, on-premises, and public cloud environments, which may complicate integration but adds versatility. Technical support is generally proactive, with reports of variability in response quality. VMware Carbon Black App Control, available on private and on-premises setups, offers reliable support with a proactive approach. While responsive, the certification required for direct contact can be a hurdle.

Pricing and ROI: CyberArk Endpoint Privilege Manager is costly, with pricing based on privileged users and sessions. It shows favorable ROI through reduced security breaches and efficiency improvements but presents a higher cost barrier for smaller businesses. VMware Carbon Black App Control, despite its high price, offers competitive market pricing. Both solutions provide enhanced security and reduced administrative overhead, demonstrating significant ROI.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed CyberArk Endpoint Privilege Manager vs. VMware Carbon Black App Control Report (Updated: July 2025).
Buyer's Guide
CyberArk Endpoint Privilege Manager vs. VMware Carbon Black App Control
July 2025
Download the complete report
Helped 865,384 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

CyberArk Endpoint Privilege...
Ranking in Application Control
5th
Average Rating
8.2
Reviews Sentiment
6.8
Number of Reviews
38
Ranking in other categories
Endpoint Compliance (5th), Privileged Access Management (PAM) (3rd), Anti-Malware Tools (5th), Ransomware Protection (5th)
VMware Carbon Black App Con...
Ranking in Application Control
2nd
Average Rating
9.2
Reviews Sentiment
6.8
Number of Reviews
8
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of August 2025, in the Application Control category, the mindshare of CyberArk Endpoint Privilege Manager is 5.1%. The mindshare of VMware Carbon Black App Control is 17.6%, down from 32.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Application Control
 

Featured Reviews

Sumit Chavan - PeerSpot reviewer
Helps secure the infrastructure and control users with admin rights
There are many features that are currently missing. A customization option is required for certain policies. For instance, if we need to stop PowerShell scripting, we have to create a different policy for that. Being able to create a sub-level policy within a top-level policy would be good. Currently, no user-based policy option is available inside the EPM console. We can only create computer-based policies. The database is available, but there is a drawback in not being able to create local groups on the EPM console. We only have to depend on Active Directory. This limits infrastructure security as we depend on the Active Directory team to manage user groups. If they remove any users, we lose control. If we could create groups locally and block them or set specific policies, we would have more control. Local endpoint management is missing from the EPM site. Moreover, there is an issue with policies not running as expected when we make enhancements. We have to find multiple ways to whitelist applications or enhance policies.
Read full review
AM
We can isolate problem machines and limit their access
We use App Control to scan the network for virtual machines that have unauthorized applications. We can isolate the problem VMs and control application access.  More than two years. I rate Carbon Black App Control 10 out of 10 for stability. I rate App Control six out of 10 for scalability.…
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The most valuable features of CyberArk Endpoint Privilege Manager are password management, session management, onboarding rules, platform customization, and safety management."
"The biggest benefit of CyberArk EPM for our customers is control over privileged access for endpoints. Endpoints are often the starting point for attackers to enter and move within a network. CyberArk EPM bridges the gap between security and operations teams. Operations teams are happy because work isn't stopped due to admin rights issues, while security teams are satisfied that full admin rights aren't given to all users."
"You can use it to strip users of their local admin rights and, at the same time, elevate applications for them."
"The product is stable."
"CyberArk Endpoint Privilege Manager (EPM) 's most valuable feature is its ability to manage user application privileges and protect against ransomware attacks by controlling access to specific files and applications."
"The most valuable feature of CyberArk Endpoint Privilege Manager is its high performance, it's the best identity security platform. The security is good. It's easy to showcase the feature and capabilities and compare it with other competitors. It competes well with other solutions. Additionally, it is a complete solution."
"The product is very flexible"
"It offers great performance."
More CyberArk Endpoint Privilege Manager pros
"The visibility is valuable."
"All the functions within VMware Carbon Black App Control are valuable."
"If any malicious activity, like VAT viruses, anything RNE, ZOD malware, or something similar, comes in we know that unless we approve it, it's going to be blocked."
"The API integration is good."
"The visibility, reporting, and the ability to stop or prevent malicious or undesired applications from being installed are the most valuable features."
"I use the console to check for threats and I find it to be very user-friendly."
"We use App Control to scan the network for virtual machines that have unauthorized applications. We can isolate the problem VMs and control application access."
"The effectiveness of application whitelisting is very good."
 

Cons

"CyberArk is a pretty heavy solution."
"They need much better integration with Azure AD."
"CyberArk Endpoint Privilege Manager is not suitable for the current situation because when you compare it to OTP, OTP is the strongest password solution. You can use it as a one-time password, but you have to log into the password manager itself and if you don't change your password, it will be the weakest link in the security. In OTP, you don't have that weakest link."
"The main issues I experience are related to deployment, which requires dependency on other solutions like AD or SCCM. These tools need to be defined and synced with the client or agent and master, sometimes needing manual checks."
"Despite newer versions and functionalities, CyberArk Endpoint Privilege Manager lacks sufficient knowledgeable support staff, resulting in longer wait times for assistance."
"Compared to other tools like Linux, this solution isn't as user-friendly."
"The CyberArk team is working on a feature to identify devices without the Endpoint Privilege Manager running, which is currently missing."
"The turnaround time of the support team is an area of concern where improvements are required."
More CyberArk Endpoint Privilege Manager cons
"I rate App Control six out of 10 for scalability."
"The initial setup is somewhat complex."
"Its setup is very complex, and it requires guidance from the support team, but it is well worth the effort."
"Another issue is that even sometimes if you approve, for example, Adobe as a publisher, you say any product or anything that's from Adobe has to run. It generally runs, but especially in a large environment and with a lot of users, sometimes, due to some certification validation issues or some other issue, it might stop the process from running. Genuine processes like Adobe and Chrome can get blocked. so that needs to be improved."
"The reporting is not good and needs to be improved."
"I would like to see the addition of some more features that are in other, similar solutions."
"The solution should have overhead in keeping lists of applications that you want don't want to run."
"Carbon Black does not use the database for identifying the file, the fields, or malware."
 

Pricing and Cost Advice

"The solution's pricing is reasonable compared to other vendors' products."
"It's not at the lower end of the market. I think the price is reasonable considering the quality it delivers. It is a top-notch solution at a fair price point."
"Pricing depends on how many devices you use. Right now, on-premise, it costs us a little, but it's worth it. It seems like the cloud solution is much more expensive. We got this solution one year ago, and it's like we bought the solution, and now they are not going to support it on-premise anymore. We are in the implementation phase, and we missed this, and we already paid for the licenses. This is wasted time from my perspective, and CyberArk should be more customer-friendly."
"I rate the solution's pricing an eight out of ten since the price can be too high for smaller businesses."
"licensing for this solution is based on the number of APV (privileged users), and the number of sessions that you want to record."
"CyberArk Endpoint Privilege Manager is slightly expensive, but costs can be negotiated to become more competitive."
"The price of CyberArk Endpoint Privilege Manager is expensive."
"The price of CyberArk Endpoint Privilege Manager is expensive. The solution is priced based on the number of accounts onboarded and the number of concurrent sessions. Everyone else is included in the price, such as support."
More CyberArk Endpoint Privilege Manager pricing and cost advice
"We pay a fee for support, which is renewed annually."
"The pricing for this product is competitive and our customers who told us that often, Carbon Back is the cheaper solution."
"Its price is reasonable and what is expected for these types of products."
report
See which vendors are best for you
Use our free recommendation engine to learn which Application Control solutions are best for your needs.
See recommendations
865,384 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
14%
Financial Services Firm
14%
Manufacturing Company
11%
Government
8%
Financial Services Firm
13%
Computer Software Company
11%
Manufacturing Company
9%
Construction Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Looking for recommendations and a pros/cons template for software to detect insider threats
This is an inside-out --- outside-in --- inside-in question, as an insider can be an outsider as well. There is no short answer other than a blend of a PAM tool with Behavioral Analytics and Endpo...
See all answers
What do you like most about CyberArk Endpoint Privilege Manager?
The most valuable feature of the solution is its performance.
See all answers
What is your experience regarding pricing and costs for CyberArk Endpoint Privilege Manager?
I believe it's quite a reasonably priced solution. It's not very common to use CyberArk because it's a niche solution, but customers who are willing to control administrative accounts are willing t...
See all answers
Ask a question
Earn 20 points
 

Comparisons

CrowdStrike Falcon vs CyberArk Endpoint Privilege Manager Logo
CrowdStrike Falcon vs CyberArk Endpoint Privilege Manager
Compared 17% of the time
BeyondTrust Endpoint Privilege Management vs CyberArk Endpoint Privilege Manager Logo
BeyondTrust Endpoint Privilege Management vs CyberArk Endpoint Privilege Manager
Compared 15% of the time
Microsoft Defender for Endpoint vs CyberArk Endpoint Privilege Manager Logo
Microsoft Defender for Endpoint vs CyberArk Endpoint Privilege Manager
Compared 14% of the time
CyberArk Privileged Access Manager vs CyberArk Endpoint Privilege Manager Logo
CyberArk Privileged Access Manager vs CyberArk Endpoint Privilege Manager
Compared 10% of the time
Tanium vs CyberArk Endpoint Privilege Manager Logo
Tanium vs CyberArk Endpoint Privilege Manager
Compared 5% of the time
More CyberArk Endpoint Privilege Manager Competitors
ThreatLocker Zero Trust Endpoint Protection Platform vs VMware Carbon Black App Control Logo
ThreatLocker Zero Trust Endpoint Protection Platform vs VMware Carbon Black App Control
Compared 23% of the time
Ivanti Application Control vs VMware Carbon Black App Control Logo
Ivanti Application Control vs VMware Carbon Black App Control
Compared 18% of the time
McAfee Application Control vs VMware Carbon Black App Control Logo
McAfee Application Control vs VMware Carbon Black App Control
Compared 18% of the time
Airlock Digital Application Control vs VMware Carbon Black App Control Logo
Airlock Digital Application Control vs VMware Carbon Black App Control
Compared 11% of the time
Check Point Application Control vs VMware Carbon Black App Control Logo
Check Point Application Control vs VMware Carbon Black App Control
Compared 10% of the time
More VMware Carbon Black App Control Competitors
 

Product Reports

Buyer's Guide
CyberArk Endpoint Privilege Manager
August 2025
CyberArk Endpoint Privilege Manager reportDownload CyberArk Endpoint Privilege Manager product report
Buyer's Guide
VMware Carbon Black App Control
July 2025
VMware Carbon Black App Control reportDownload VMware Carbon Black App Control product report
 

Also Known As

Viewfinity
CB Protection, Carbon Black CB Protection
 

Overview

CyberArk Endpoint Privilege Manager, a critical and foundational endpoint control addresses the underlying weaknesses of endpoint defenses against a privileged attacker and helps enterprises defend against these attacks through removing local admin rights, enforcing least privilege, and implementing foundational endpoint security controls across all Windows, macOS and Linux endpoints from hybrid to cloud environments.

Click here for a free 30 day trial: CyberArk Endpoint Privilege Manager free trial

CyberArk

Carbon Black is a leading provider of next-generation endpoint security. Carbon Black serves more than 3,700 customers globally, including 33 of the Fortune 100. As a cybersecurity innovator, Carbon Black has a strong heritage of innovative technology leadership in multiple endpoint security categories, including application control, endpoint detection and response (EDR), and next-generation antivirus (NGAV). Leveraging its big data and analytics cloud platform - the Cb Predictive Security Cloud - Carbon Black solutions enable customers to defend against the most advanced cyber threats, including malware, ransomware, and non-malware attacks. Deployed via the cloud, on premise, or as a managed service, customers use Carbon Black solutions to lock down critical systems, hunt threats, and replace legacy antivirus.

VMware
 

Sample Customers

Information Not Available
Kaas Tailored, Core-Mark, Indeed, Hologic, Landmark Credit Union, Project Worldwide
Buyer's Guide
CyberArk Endpoint Privilege Manager vs. VMware Carbon Black App Control
July 2025
Free Report: CyberArk Endpoint Privilege Manager vs. VMware Carbon Black App Control
Find out what your peers are saying about CyberArk Endpoint Privilege Manager vs. VMware Carbon Black App Control and other solutions. Updated: July 2025.
DOWNLOAD NOW
865,384 professionals have used our research since 2012.
See our CyberArk Endpoint Privilege Manager vs. VMware Carbon Black App Control report.
See our list of best Application Control vendors.

We monitor all Application Control reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.