We performed a comparison between Carbon Black CB Defense and Microsoft Defender for Endpoint based on our users’ reviews in four categories. After reading all of the collected data, you can find our conclusion below.
Comparison Results: Based on the above comparison, Carbon Black CB Defense finishes ahead of Microsoft Defender Endpoint. Carbon Black CB Defense is very easy to deploy, is extremely scalable, and offers outstanding security protection. Users indicate that they feel the processor-based definitions is one of the features that make this solution most effective in keeping environments secure.
"The setup is pretty simple."
"Fortinet FortiEDR made our clients feel secure and more at ease, knowing that they had an EDR solution that would close the gap in their security posture."
"Fortinet is very user-friendly for customers."
"The product detects and blocks threats and is more proactive than firewalls."
"The main thing is that I feel safe. Because the processes that have been used to get a handle on the attackers are much better than other competitors"
"The stability is very good."
"Forensics is a valuable feature of Fortinet FortiEDR."
"Fortinet FortiEDR's scalability is quite good, and you can add licenses to the solution."
"Real-time detection and cloud-based delivery of detections are highly efficient."
"The performance of Microsoft Defender for Endpoint has been good."
"The most valuable feature of Microsoft Defender for Endpoint is that it is embedded into the Windows system. Additionally, the performance is good and simple to maintain."
"The visibility into threats that the solution provides is pretty awesome... This is something that makes me think, "Wow, okay. If I had my own organization, I would probably get this too." It stops the threat before an employee gets phished or something gets downloaded to their computer."
"Defender provides useful alerts and groups them. It sends an alert to your portal if it detects any malicious activity, and you can group multiple alerts to form an incident."
"It captures data through machine learning, which is built-in on the back-end. It also provides built-in analytics and a threat intelligence feature. It is a one-stop solution that doesn't require an antivirus because it comes prebuilt into Windows 10."
"Defender is stable enough and is competitive with the other products in the market."
"Microsoft Defender for Endpoint's most valuable feature is its ease of use."
"It uses machine learning and behavioral analytics for advanced threat detection and response."
"The initial setup was fairly easy."
"The solution has a library where we can have multiple threat intels onboarded. We just have to subscribe to a particular site intel and they'll provide us with all of the truncated details so that we can create IOCs and alerts on the basis of those IOCs."
"I found it very valuable as a whole. It is good at detecting anything and has kept us very safe. It is also very easy to use."
"It is a scalable solution...The initial setup was straightforward."
"I found the offline scanning to be particularly useful."
"The product's most valuable feature is its ability to be fully integrated with the VMware environment."
"The best feature of this solution is that we have a live response, which is really tailored to our needs."
"The solution's installation from a central installation server could be improved because the engineers had a little bit of trouble getting it installed from a central location."
"FortiEDR can be improved by providing more detailed reporting."
"We'd like to see more one-to-one product presentations for the distribution channels."
"The solution should address emerging threats like SQL injection."
"Cannot be used on mobile devices with a secure connection."
"Integration with Azure and SaaS provisioning tools could improve Fortinet FortiEDR."
"We find the solution to be a bit expensive."
"The dashboard isn't easy to access and manage."
"One thing that was lacking in Defender was web filtering. Its web filtering wasn't as comprehensive. Sophos was a little bit better than Defender for blocking URLs or installing programs."
"The dashboard customization could be improved."
"Our team's knowledge of the solution needs to be improved, and Microsoft could do a better job conveying the necessary information to users. We could proactively use the tool more and explore capabilities we are not yet utilizing."
"Some of the integrations that Defender should include involve the use of the web app."
"The time it takes to implement policies has room for improvement."
"In terms of the architecture of the management infrastructure, we found that other technologies are more simple. Microsoft Defender could be simpler too."
"I would just like them to have more consistency, and that's a comment that's across the board with Microsoft. They change things a lot."
"The solution has minimal customization options, especially compared to Mandiant, so we want to see more scope for customization. A single portal for customization would also be a welcome addition."
"There's some disparity between the on-premise and the cloud type of application."
"I am not sure whether Carbon Black CB Defense can be considered as a stable solution or not."
"The solution would be more effective if there was a way to block automatically based on behavior."
"What was rolled out to my company are mixed versions of Carbon Black CB Defense, so what I'd like to see in the next release is more synchronization, where it can detect the endpoint that's running an old version and suggest updates."
"The local technical support is very poor, but the support from headquarters is very nice."
"The product's stability could be improved."
"A search bar in the investigation page and some AI-related tasks like outgoing alerts, or recent tactics that are being used in the market, must be embedded in the tool so that it's easier to find alerts."
"There is room for improvement in the support and service team."
More Microsoft Defender for Endpoint Pricing and Cost Advice →
Microsoft Defender for Endpoint is ranked 1st in EPP (Endpoint Protection for Business) with 96 reviews while VMware Carbon Black Endpoint is ranked 13th in EPP (Endpoint Protection for Business) with 26 reviews. Microsoft Defender for Endpoint is rated 8.2, while VMware Carbon Black Endpoint is rated 7.8. The top reviewer of Microsoft Defender for Endpoint writes "You can access all your security data and telemetry from a single pane of glass". On the other hand, the top reviewer of VMware Carbon Black Endpoint writes "The manage, detect, and response feature enables Carbon Black to continuously check logs and advise us on how to improve some of the policies". Microsoft Defender for Endpoint is most compared with Intercept X Endpoint, Symantec Endpoint Security, CrowdStrike Falcon and SentinelOne Singularity Complete, whereas VMware Carbon Black Endpoint is most compared with CrowdStrike Falcon, Trend Micro Deep Security, SentinelOne Singularity Complete, Secureworks Red Cloak Threat Detection and Response and VMware Carbon Black Cloud. See our Microsoft Defender for Endpoint vs. VMware Carbon Black Endpoint report.
See our list of best EPP (Endpoint Protection for Business) vendors and best EDR (Endpoint Detection and Response) vendors.
We monitor all EPP (Endpoint Protection for Business) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.