Microsoft Defender for Endpoint vs VMware Carbon Black Endpoint comparison

Cancel
You must select at least 2 products to compare!
Comparison Buyer's Guide
Executive Summary
Updated on Apr 4, 2022

We performed a comparison between Carbon Black CB Defense and Microsoft Defender for Endpoint based on our users’ reviews in four categories. After reading all of the collected data, you can find our conclusion below.

  • Ease of Deployment: Most Carbon Black CB Defense users tell us the solution is very easy to set up and deploy. For many situations, full deployment is completed in less than an hour. Microsoft Defender for Endpoint users feel that although the solution is not complex to deploy, it is also not one they consider “easy.” Average deployment takes from a few hours to days or weeks depending on the system configuration.
  • Features: Carbon Black CB Defense users really like the dynamic grouping, which allows you to group endpoints based on setup criteria. Carbon Black CB Defense has great intelligent learning and outstanding security. If an application has not been approved through Carbon Black, it can not run in the environment - everything has to be approved first. Carbon Black CB Defense users would like to see defense provided for mobile devices and better control over containers. Users also feel the time it takes for an application to be whitelisted should be faster, in addition to making some improvements to the feature set for the firewall.

    Microsoft Defender for Endpoint users appreciate the Attack Surface Reduction controls, the Exploit Prevention Controls, and the Automated Investigation and Response, which do a great job and greatly reduce the SOC workloads. Microsoft Defender for Endpoint has a ransomware solution built into it, which is a very unique option. Users would like to see a more refined console and an improved GUI. Reporting could also be more detailed and onboarding a bit faster.
  • Pricing: Users consistently felt that both solutions were costly.
  • Service and Support: Carbon Black CB Defense users are very satisfied with the service that they receive, many rating it as excellent. Microsoft Defender for Endpoint users mostly feel service needs to be improved, rating it from poor to adequate.

Comparison Results: Based on the above comparison, Carbon Black CB Defense finishes ahead of Microsoft Defender Endpoint. Carbon Black CB Defense is very easy to deploy, is extremely scalable, and offers outstanding security protection. Users indicate that they feel the processor-based definitions is one of the features that make this solution most effective in keeping environments secure.

To learn more, read our detailed Microsoft Defender for Endpoint vs. VMware Carbon Black Endpoint Report (Updated: September 2023).
734,678 professionals have used our research since 2012.
Featured Review
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"The setup is pretty simple.""Fortinet FortiEDR made our clients feel secure and more at ease, knowing that they had an EDR solution that would close the gap in their security posture.""Fortinet is very user-friendly for customers.""The product detects and blocks threats and is more proactive than firewalls.""The main thing is that I feel safe. Because the processes that have been used to get a handle on the attackers are much better than other competitors""The stability is very good.""Forensics is a valuable feature of Fortinet FortiEDR.""Fortinet FortiEDR's scalability is quite good, and you can add licenses to the solution."

More Fortinet FortiEDR Pros →

"Real-time detection and cloud-based delivery of detections are highly efficient.""The performance of Microsoft Defender for Endpoint has been good.""The most valuable feature of Microsoft Defender for Endpoint is that it is embedded into the Windows system. Additionally, the performance is good and simple to maintain.""The visibility into threats that the solution provides is pretty awesome... This is something that makes me think, "Wow, okay. If I had my own organization, I would probably get this too." It stops the threat before an employee gets phished or something gets downloaded to their computer.""Defender provides useful alerts and groups them. It sends an alert to your portal if it detects any malicious activity, and you can group multiple alerts to form an incident.""It captures data through machine learning, which is built-in on the back-end. It also provides built-in analytics and a threat intelligence feature. It is a one-stop solution that doesn't require an antivirus because it comes prebuilt into Windows 10.""Defender is stable enough and is competitive with the other products in the market.""Microsoft Defender for Endpoint's most valuable feature is its ease of use."

More Microsoft Defender for Endpoint Pros →

"It uses machine learning and behavioral analytics for advanced threat detection and response.""The initial setup was fairly easy.""The solution has a library where we can have multiple threat intels onboarded. We just have to subscribe to a particular site intel and they'll provide us with all of the truncated details so that we can create IOCs and alerts on the basis of those IOCs.""I found it very valuable as a whole. It is good at detecting anything and has kept us very safe. It is also very easy to use.""It is a scalable solution...The initial setup was straightforward.""I found the offline scanning to be particularly useful.""The product's most valuable feature is its ability to be fully integrated with the VMware environment.""The best feature of this solution is that we have a live response, which is really tailored to our needs."

More VMware Carbon Black Endpoint Pros →

Cons
"The solution's installation from a central installation server could be improved because the engineers had a little bit of trouble getting it installed from a central location.""FortiEDR can be improved by providing more detailed reporting.""We'd like to see more one-to-one product presentations for the distribution channels.""The solution should address emerging threats like SQL injection.""Cannot be used on mobile devices with a secure connection.""Integration with Azure and SaaS provisioning tools could improve Fortinet FortiEDR.""We find the solution to be a bit expensive.""The dashboard isn't easy to access and manage."

More Fortinet FortiEDR Cons →

"One thing that was lacking in Defender was web filtering. Its web filtering wasn't as comprehensive. Sophos was a little bit better than Defender for blocking URLs or installing programs.""The dashboard customization could be improved.""Our team's knowledge of the solution needs to be improved, and Microsoft could do a better job conveying the necessary information to users. We could proactively use the tool more and explore capabilities we are not yet utilizing.""Some of the integrations that Defender should include involve the use of the web app.""The time it takes to implement policies has room for improvement.""In terms of the architecture of the management infrastructure, we found that other technologies are more simple. Microsoft Defender could be simpler too.""I would just like them to have more consistency, and that's a comment that's across the board with Microsoft. They change things a lot.""The solution has minimal customization options, especially compared to Mandiant, so we want to see more scope for customization. A single portal for customization would also be a welcome addition."

More Microsoft Defender for Endpoint Cons →

"There's some disparity between the on-premise and the cloud type of application.""I am not sure whether Carbon Black CB Defense can be considered as a stable solution or not.""The solution would be more effective if there was a way to block automatically based on behavior.""What was rolled out to my company are mixed versions of Carbon Black CB Defense, so what I'd like to see in the next release is more synchronization, where it can detect the endpoint that's running an old version and suggest updates.""The local technical support is very poor, but the support from headquarters is very nice.""The product's stability could be improved.""A search bar in the investigation page and some AI-related tasks like outgoing alerts, or recent tactics that are being used in the market, must be embedded in the tool so that it's easier to find alerts.""There is room for improvement in the support and service team."

More VMware Carbon Black Endpoint Cons →

Pricing and Cost Advice
  • "The price is comprable to other endpoint security solutions."
  • "The pricing is typical for enterprises and fairly priced."
  • "I'm not familiar with pricing, but it looks a bit costly compared to other vendors I think."
  • "The pricing is good."
  • "I would rate the solution's pricing an eight out of ten."
  • "The hardware costs about €100,000 and about €20,000 annually for access."
  • "Fortinet FortiEDR has a yearly subscription."
  • "It's not cheap, but it's not expensive either."
  • More Fortinet FortiEDR Pricing and Cost Advice →

  • "I don't know the standalone costs. It is my understanding that the M365 E5 is $56 a month or something close to that pricing. That would be for the full suite. Just Defender might be $8 a month. I can't say for sure."
  • "The solution comes free with Microsoft Windows 10."
  • "When customers haven't deployed the solution and don't have licenses, it can be expensive to start from scratch."
  • "I do not have to purchase antivirus solutions anymore because Microsoft Defender for Endpoint is integrated into Windows and comes free."
  • "It came with Windows."
  • "We pay a yearly license for Microsoft Defender. We also have a support contract with them."
  • "The solution is free with Windows."
  • "You do not need to pay any additional costs for antivirus and anti-malware solutions for endpoint protection."
  • More Microsoft Defender for Endpoint Pricing and Cost Advice →

  • "The license is annual. It's a standard license."
  • "Its pricing was very good, which is one of the reasons I went to it as an alternative. It is on a yearly basis. There are no additional fees."
  • "This is a really expensive product and we pay licensing fees on a yearly basis."
  • "It is more expensive, but it's worth it. There are no additional costs beyond the standard licensing fee."
  • "The licensing cost is on the more expensive side, but I thought it was worth it because they did a good job. It was one of the vendors I truly didn't have to worry about too much until this latest upgrade."
  • "In terms of licensing costs, Carbon Black CB Defense was all associated with CROW and the services my company is using with them, so it came all-inclusive."
  • "The pricing is annually based and operates through another department than mine."
  • "CB Defense is available on a yearly subscription and is priced by the number of endpoints."
  • More VMware Carbon Black Endpoint Pricing and Cost Advice →

    report
    Use our free recommendation engine to learn which EPP (Endpoint Protection for Business) solutions are best for your needs.
    734,678 professionals have used our research since 2012.
    Questions from the Community
    Top Answer:I suggest Fortinet’s FortiEDR over FortiClient for several reasons. For starters, FortiEDR guarantees solid protection… more »
    Top Answer:Fortinet FortiEDR made our clients feel secure and more at ease, knowing that they had an EDR solution that would close… more »
    Top Answer:The price is on the higher side. It's in the upper quadrant. The hardware costs about €100,000 and about €20,000… more »
    Top Answer:Microsoft Defender for Endpoint is a cloud-delivered endpoint security solution. The tool reduces the attack surface… more »
    Top Answer:We use Symantec because we do not use MS Enterprise products, but in my opinion, Microsoft Defender is a superior… more »
    Top Answer:The CrowdStrike solution delivers a lot of information about incidents. It has a very light sensor that will never push… more »
    Top Answer:I can recommend Carbon Black, an award-winning next-gen anti-virus (NGAV) and endpoint detection and response (EDR)… more »
    Top Answer:Carbon Black offers two different levels of Endpoint Detection and Response. One is the VM Carbon Black Cloud Endpoint… more »
    Top Answer:SentinelOne is hands down my recommended solution. SentinelOne has not been breached and offers upto $1,000,000… more »
    Comparisons
    Also Known As
    enSilo, FortiEDR
    Microsoft Defender ATP, Microsoft Defender Advanced Threat Protection, MS Defender for Endpoint, Microsoft Defender Antivirus
    Carbon Black CB Defense, Bit9, Confer
    Learn More
    Overview

    Fortinet FortiEDR is a real-time endpoint protection, detection, and automated response solution. Its primary purpose is to detect advanced threats to stop breaches and ransomware damage. It is designed to do so in real time, even on an already compromised device, allowing you to respond and remediate incidents automatically so your data can remain protected.

    Fortinet FortiEDR Features

    Fortinet FortiEDR has many valuable key features, including:

    • Easily customizable
    • Real-time proactive risk mitigation & IoT security
    • Pre-infection protection
    • Post-infection protection
    • Track applications and ratings
    • Reduce the attack surface with risk-based proactive policies
    • Achieve analysis of entire log history
    • Optional managed detection and response (MDR) service

    Fortinet FortiEDR Benefits

    Some of the key benefits of using Fortinet FortiEDR include:

    • Protection: Fortinet FortiEDR provides proactive, real-time, automated endpoint protection with the orchestrated incident response across platforms. It stops the breach with real-time postinfection blocking to protect data from exfiltration and ransomware encryption.

    • Single unified console: Fortinet FortiEDR has a single unified console with an intuitive interface, which makes management easier. The solution automates mundane endpoint security tasks so your employees don’t need to do it.

    • Cost savings: With Fortinet FortiEDR you can eliminate post-breach operational expenses and breach damage costs.

    • Flexibility: Fortinet FortiEDR can be deployed on premises or on a secure cloud instance. With Fortinet FortiEDR, endpoints are protected both on- and off-line.

    • Scalability: Because Fortinet can be deployed quickly and has a small footprint, it is easy to scale up to protect hundreds of thousand endpoints.

    Reviews from Real Users

    Below are some reviews and helpful feedback written by Fortinet FortiEDR users.

    An Owner at a security firm says, "The features that I have found most valuable are the ability to customize it and to reduce its size. It lets you run in a very small window in terms of memory and resources on legacy cash registers. The customer has literally about 800 cash registers. That was the use case for Fortinet FortiEDR - to get that down into a tiny space. The only way to do that was to use this product because it had that ability to unbundle services that were a surplus.”

    Chandan M., Chief Technical Officer at Provision Technologies LLP, mentions, “The ease of deployment and configuration is valuable. It's very easy compared to other vendors like Sophos. Sophos' configuration is complex. Fortinet is a lot easier to understand. You don't need a lot of admin knowledge to do the configuration.” He also adds, “The security is also very good and the firewall response is good.”

    Harpreet S., Information Technology Support Specialist at Chemtrade Logistics, explains, "It notifies us if there's any suspicious file on any PC. If any execution or similar kind of thing is happening, it just alerts us. It doesn't only alert. It also blocks the execution until we allow it. We check whether the execution is legitimate or not, and then approve it or keep it blocked. This gives us a little bit of control over this mechanism. Fortinet FortiEDR is also very straightforward and easy to maintain."

    DeAndre V., Senior Network Administrator at a financial services firm, states, “The dashboard is easy to follow and use. The deployment and uninstalling were easy. I like the detailed information about the path of a file that might be suspicious. Being able to check that out was easy to follow. Exceptions are easy to create and the interface is easy to follow with a nice appearance.

    Microsoft Defender for Endpoint is a comprehensive security solution that provides advanced threat protection for organizations. It offers real-time protection against various types of cyber threats, including malware, viruses, ransomware, and phishing attacks.

    With its powerful machine-learning capabilities, it can detect and block sophisticated attacks before they can cause any harm. The solution also includes endpoint detection and response (EDR) capabilities, allowing organizations to quickly investigate and respond to security incidents. It provides detailed insights into the attack timeline, enabling security teams to understand the scope and impact of an incident.

    Microsoft Defender for Endpoint also offers proactive threat hunting, allowing organizations to proactively search for and identify potential threats within their network. It integrates seamlessly with other Microsoft security solutions, such as Microsoft 365 Defender, to provide a unified and holistic security approach. With its centralized management console, organizations can easily deploy, configure, and monitor the security solution across their entire network.

    Microsoft Defender for Endpoint is a robust and scalable security solution that helps organizations protect their endpoints and data from evolving cyber threats.

    Modernize Your Endpoint Protection

    Legacy approaches to prevention leave organizations exposed. Get an endpoint platform that helps you strengthen and unify security tools to see more and stop more.

    Simplify Your Security Stack

    By simplifying endpoint security capabilities with one endpoint agent and console, you can minimize downtime, respond to incidents and return critical CPU cycles back to the business.

    Operate with Confidence

    Modern environments are increasingly complex. VMware Carbon Black is a single source of truth that provides an intuitive understanding of your environment, enabling confident decisions.

    Offer
    Learn more about Fortinet FortiEDR
    Learn more about Microsoft Defender for Endpoint
    Learn more about VMware Carbon Black Endpoint
    Sample Customers
    Financial, Healthcare, Legal, Technology, Enterprise, Manufacturing ... 
    Petrofrac, Metro CSG, Christus Health
    Netflix, Progress Residential, Indeed, Hologic, Gentle Giant, Samsung Research America
    Top Industries
    REVIEWERS
    Financial Services Firm24%
    Comms Service Provider12%
    Media Company6%
    Educational Organization6%
    VISITORS READING REVIEWS
    Computer Software Company17%
    Government8%
    Manufacturing Company7%
    Financial Services Firm7%
    REVIEWERS
    Financial Services Firm20%
    Computer Software Company16%
    Comms Service Provider8%
    Energy/Utilities Company7%
    VISITORS READING REVIEWS
    Educational Organization20%
    Computer Software Company13%
    Government8%
    Financial Services Firm7%
    REVIEWERS
    Manufacturing Company22%
    Computer Software Company15%
    Financial Services Firm10%
    Construction Company10%
    VISITORS READING REVIEWS
    Computer Software Company15%
    Government9%
    Financial Services Firm9%
    Manufacturing Company7%
    Company Size
    REVIEWERS
    Small Business37%
    Midsize Enterprise22%
    Large Enterprise41%
    VISITORS READING REVIEWS
    Small Business31%
    Midsize Enterprise19%
    Large Enterprise50%
    REVIEWERS
    Small Business40%
    Midsize Enterprise17%
    Large Enterprise43%
    VISITORS READING REVIEWS
    Small Business22%
    Midsize Enterprise31%
    Large Enterprise47%
    REVIEWERS
    Small Business39%
    Midsize Enterprise16%
    Large Enterprise44%
    VISITORS READING REVIEWS
    Small Business27%
    Midsize Enterprise19%
    Large Enterprise55%
    Buyer's Guide
    Microsoft Defender for Endpoint vs. VMware Carbon Black Endpoint
    September 2023
    Find out what your peers are saying about Microsoft Defender for Endpoint vs. VMware Carbon Black Endpoint and other solutions. Updated: September 2023.
    734,678 professionals have used our research since 2012.

    Microsoft Defender for Endpoint is ranked 1st in EPP (Endpoint Protection for Business) with 96 reviews while VMware Carbon Black Endpoint is ranked 13th in EPP (Endpoint Protection for Business) with 26 reviews. Microsoft Defender for Endpoint is rated 8.2, while VMware Carbon Black Endpoint is rated 7.8. The top reviewer of Microsoft Defender for Endpoint writes "You can access all your security data and telemetry from a single pane of glass". On the other hand, the top reviewer of VMware Carbon Black Endpoint writes "The manage, detect, and response feature enables Carbon Black to continuously check logs and advise us on how to improve some of the policies". Microsoft Defender for Endpoint is most compared with Intercept X Endpoint, Symantec Endpoint Security, CrowdStrike Falcon and SentinelOne Singularity Complete, whereas VMware Carbon Black Endpoint is most compared with CrowdStrike Falcon, Trend Micro Deep Security, SentinelOne Singularity Complete, Secureworks Red Cloak Threat Detection and Response and VMware Carbon Black Cloud. See our Microsoft Defender for Endpoint vs. VMware Carbon Black Endpoint report.

    See our list of best EPP (Endpoint Protection for Business) vendors and best EDR (Endpoint Detection and Response) vendors.

    We monitor all EPP (Endpoint Protection for Business) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.