We performed a comparison between D3 Security, VMware Carbon Black Cloud, and VMware Carbon Black Endpoint based on real PeerSpot user reviews.
Find out what your peers are saying about VMware, ServiceNow, IBM and others in Security Incident Response."It is an out-of-the-box automated integration with our 20 departments. We perform L1 LiveOps automatically through the portal."
"Carbon Black Cb Response excels at providing context to indicators when responding to incidents. It allows responders to understand the entire scope of an incident and quickly contain it to minimize impact and disruption."
"The market information they gather from the community is really good. Their configuration capabilities are good."
"Setting up and managing the setup for this solution is okay. It is stable, scalable, and it runs just fine. No issues with technical support."
"It is nice when you're in a situation where you think someone's device is compromised and that there's some malware getting into your fleet."
"The ability to isolate an endpoint with only the host name and a click of a button is a major time saver."
"Carbon Black insures the probability that any ransomware will be stopped before spreading."
"We also took full advantage of its incident response reporting capabilities to act as a “black box” for our infrastructure around strings of suspicious activity. The reporting and incident response capabilities were incredibly helpful during active security concerns."
"Threat hunting is the most valuable feature of VMware Carbon Black Cloud."
"It uses machine learning and behavioral analytics for advanced threat detection and response."
"The software uses very few resources; it is almost invisible to the end user."
"The most valuable feature of the solution stems from the fact that it is one of the best EDR tools in the market."
"The most valuable asset is the time-lining capability for any breach activity."
"The offline networking is the most important feature. Some of our users are engineers that work offsite, and they can still be on the solution, which is also great."
"The product allows us to focus on endpoint and antivirus protection."
"Some of the valuable features I have found are the online documentation of the solution is well organized and thorough. I like the simplicity of bypass and the visualization of the active components."
"I found it very valuable as a whole. It is good at detecting anything and has kept us very safe. It is also very easy to use."
"Reporting needs improvement. MTTR and MTTD metrics aren't directly available in playbooks and require manual effort to achieve."
"The biggest issue I encountered was one where old logs were not being overwritten as expected so the system drive kept filling up from time to time. However, support was usually quite responsive and happy to jump on a remote session to take a look at it for us. That log bug has probably been resolved with an update by now."
"The dashboard should be more user-friendly."
"Technical support for the solution should be improved because there is a scarcity of support teams in the Middle East."
"They need to improve the batch console. It needs more capabilities. We are limited by the ones it provides..."
"Setup is incredibly complex and poorly documented. Every time an upgrade was needed we would need to engage Professional Services for troubleshooting help. Certificates and web services proved to be the most significant sticking points. Since the product runs on a Linux platform, perhaps having staff with more Linux experience could have alleviated some difficulty."
"The cloud console has a lot of bugs and issues in the analysis part."
"Additionally, it is complex to use, and the pricing should be improved."
"We are subscribed to FS-ISAC threat indicator, but have been unsuccessful in adding it to our alliance feeds."
"In our company, we also wanted to have network detection, like a host-based IDS on VMware Carbon Black Endpoint, but we did not get it."
"The device control feature could also be compatible with the user’s profile as well."
"I would like to see the user credentials feature improved. I would also like to see more reporting features and better ways to roll the reports out."
"In my company, we face issues sometimes when there is a need to write custom rules or we want to write for some rules that are different from the standard rules provided by the solution."
"What was rolled out to my company are mixed versions of Carbon Black CB Defense, so what I'd like to see in the next release is more synchronization, where it can detect the endpoint that's running an old version and suggest updates."
"The tech support communicates, but it's just not with movement."
"This solution works well but needs lots of tuning and optimization."
"I haven't run into anything that needs improvement. The website interface can be a little bit better, but it's still good as compared to most others."