Try our new research platform with insights from 80,000+ expert users

Microsoft Defender XDR vs VMware Carbon Black Cloud comparison

Microsoft and Broadcom are both solutions in the Endpoint Detection and Response (EDR) category. Microsoft is ranked #5 with an average rating of 8.4, while Broadcom is ranked #42 with an average rating of 8.0. Microsoft holds a 2.9% mindshare in EDR, compared to Broadcom’s 0.2% mindshare. Additionally, 97% of Microsoft users are willing to recommend the solution, compared to 93% of Broadcom users who would recommend it.
Microsoft Defender XDR
Read 102 Microsoft Defender XDR reviews
  • 10,986 Views
  • 5,932 Comparison Views
97% willing to recommend
VMware Carbon Black Cloud
Read 18 VMware Carbon Black Cloud reviews
  • 642 Views
  • 392 Comparison Views
93% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Sep 9, 2024

VMware Carbon Black Cloud and Microsoft Defender XDR are two prominent security solutions in the market. While VMware Carbon Black Cloud is appreciated for its deployment flexibility and ease of use, Microsoft Defender XDR is often highlighted for its integrated features and overall security effectiveness.

Features: VMware Carbon Black Cloud users value its robust threat detection and response capabilities, real-time monitoring, and predictive security measures. Microsoft Defender XDR is noted for its comprehensive integration with other Microsoft products, advanced threat analytics, and automated response features. Users find Defender XDR to have a more integrated and streamlined approach.

Room for Improvement: Feedback for VMware Carbon Black Cloud indicates desires for more intuitive management tools, enhanced reporting capabilities, and usability enhancements. In contrast, Microsoft Defender XDR users have called for better cross-platform support, more detailed alert management, and broader support.

Ease of Deployment and Customer Service: VMware Carbon Black Cloud is often praised for its straightforward deployment process and reliable customer support. Microsoft Defender XDR users report a more complex initial setup but benefit from extensive documentation and strong ongoing support.

Pricing and ROI: VMware Carbon Black Cloud users find the pricing to be reasonable and justifiable by the product’s performance, with solid ROI. Microsoft Defender XDR’s pricing is perceived as higher, but users recognize the added value from its extensive feature set and tight integration with other Microsoft services. Users feel Microsoft Defender XDR offers a better long-term ROI due to its comprehensive security benefits.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Microsoft Defender XDR vs. VMware Carbon Black Cloud Report (Updated: September 2025).
Buyer's Guide
Microsoft Defender XDR vs. VMware Carbon Black Cloud
September 2025
Download the complete report
Helped 869,760 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
6.7
Microsoft Defender XDR provides high ROI by consolidating security tools, streamlining operations, and enhancing security, despite licensing costs.
Sentiment score
7.3
VMware Carbon Black Cloud offers cost savings, improved security, centralized protection, better efficiency, and quick ROI with automation features.
We can quarantine and isolate a device within minutes.
Microsoft Defender XDR has saved me at least 50% of my time.
Ever since we turned on the M5 feature set back in June, we have seen a reduced number of potentially malicious clicks and faster alerting when incidents occur.
For more quotes and insights, download the Microsoft Defender XDR report
No quotes available
For more quotes and insights, download the VMware Carbon Black Cloud report
AT
KO
reviewer2595618 - PeerSpot reviewer
 

Customer Service

Sentiment score
6.2
Microsoft Defender XDR's support is timely and responsive, yet smaller organizations experience slower, less effective assistance than larger ones.
Sentiment score
6.6
Users typically find VMware Carbon Black Cloud support efficient, with no negative feedback reported and alternative contacts available for assistance.
You get stuck in low-level support for way longer than you should, instead of them escalating the issue up the chain.
It's critical to escalate SEV B issues immediately to a domestic engineer.
Once issues are escalated to the second or third layer, the support is much better.
For more quotes and insights, download the Microsoft Defender XDR report
No quotes available
For more quotes and insights, download the VMware Carbon Black Cloud report
Darrell Carr - PeerSpot reviewerTy Ryan - PeerSpot reviewerAnkit-Joshi - PeerSpot reviewer
 

Scalability Issues

Sentiment score
7.6
Microsoft Defender XDR scales well for various organizations, efficiently supporting growth and flexibility despite some network deployment challenges.
Sentiment score
7.6
VMware Carbon Black Cloud is highly rated for scalability, performing well in diverse environments from small to enterprise businesses.
Microsoft Defender XDR shows tremendous scalability, much more so than on-premises solutions.
Microsoft Defender XDR scales pretty well.
It is suitable for enterprise-level deployment but has room for improvement.
For more quotes and insights, download the Microsoft Defender XDR report
No quotes available
For more quotes and insights, download the VMware Carbon Black Cloud report
Ty Ryan - PeerSpot reviewer
AT
SC
 

Stability Issues

Sentiment score
8.0
Microsoft Defender XDR is praised for high stability, reliable performance, minimal issues, frequent updates, and prompt issue resolution.
Sentiment score
7.0
VMware Carbon Black Cloud became reliable after initial instability, with high user satisfaction despite minor performance issues on large deployments.
The service has remained consistently online, with any issues isolated to specific components, suggesting a well-designed and modular architecture.
The services within our ecosystem have been reliable, meeting their SLAs.
It provides high-fidelity signals.
For more quotes and insights, download the Microsoft Defender XDR report
No quotes available
For more quotes and insights, download the VMware Carbon Black Cloud report
reviewer2595618 - PeerSpot reviewerTy Ryan - PeerSpot reviewer
AT
 

Room For Improvement

Microsoft Defender XDR requires enhancements in speed, integration, automation, AI, ease-of-use, and industry-specific threat intelligence.
VMware Carbon Black Cloud needs better false positive handling, agent efficiency, support improvement, and enhanced features, training, and global support.
The licensing process needs improvement and clarification.
Improvements are needed in automated response capabilities.
Some inconsistencies exist between blades, which could be improved for a more seamless user and UI experience.
For more quotes and insights, download the Microsoft Defender XDR report
No quotes available
For more quotes and insights, download the VMware Carbon Black Cloud report
reviewer2595324 - PeerSpot reviewer
SC
Ty Ryan - PeerSpot reviewer
 

Setup Cost

Microsoft Defender XDR pricing is seen as complex but fair, with high costs alleviated in bundled Microsoft 365 packages.
There are certainly savings when using Microsoft Defender XDR, which can range from 30%, 40%, and even up to 50%.
I would rate the pricing as eight out of ten, indicating it is a reasonable cost for the product.
Microsoft purposefully obfuscates this through marketing ploys to hide costs.
For more quotes and insights, download the Microsoft Defender XDR report
No quotes available
For more quotes and insights, download the VMware Carbon Black Cloud report
CB
SC
reviewer2595618 - PeerSpot reviewer
 

Valuable Features

Microsoft Defender XDR integrates tools for comprehensive security, offering threat detection, automation, identity protection, and enhanced efficiency.
VMware Carbon Black Cloud offers cost-effective, real-time security with intrusion alerts, quarantine, host isolation, data search, and threat hunting.
With Microsoft threat intelligence information, it detects various types of threats, including insider attacks, malicious content, and data exfiltration.
This allows us to secure our systems in advance and proactively improve security, rather than waiting for incidents to occur.
Once we have it on the security dashboard, we can see a real-time storyline.
For more quotes and insights, download the Microsoft Defender XDR report
No quotes available
For more quotes and insights, download the VMware Carbon Black Cloud report
SC
AR
AT
 

Categories and Ranking

Microsoft Defender XDR
Ranking in Endpoint Detection and Response (EDR)
5th
Average Rating
8.4
Reviews Sentiment
7.1
Number of Reviews
102
Ranking in other categories
Extended Detection and Response (XDR) (2nd), Microsoft Security Suite (4th)
VMware Carbon Black Cloud
Ranking in Endpoint Detection and Response (EDR)
42nd
Average Rating
8.4
Reviews Sentiment
7.2
Number of Reviews
18
Ranking in other categories
Security Incident Response (10th)
 

Mindshare comparison

As of October 2025, in the Endpoint Detection and Response (EDR) category, the mindshare of Microsoft Defender XDR is 2.9%, down from 3.7% compared to the previous year. The mindshare of VMware Carbon Black Cloud is 0.2%, up from 0.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Endpoint Detection and Response (EDR) Market Share Distribution
ProductMarket Share (%)
Microsoft Defender XDR2.9%
VMware Carbon Black Cloud0.2%
Other96.9%
Endpoint Detection and Response (EDR)
 

Featured Reviews

MohtesanShaikh - PeerSpot reviewer
Experience improves security management and simplifies threat protection
I have created automated investigations, and while they work, they operate rather slowly in the Microsoft portal. If I automate something, it takes considerable time; if I do it manually, I can complete it in a quarter of the time. The automation response being slow is the main concern; when an incident occurs or if I run a remediation, it takes significant time to complete the remediation. There are some limitations regarding the scalability of Microsoft Defender XDR with specific licensing. For SMB customers, there is only Microsoft Defender for Business, and if they want more features such as XDR features and automation investigation or incident response, they need to purchase Defender for Endpoint. We are currently using the EDR.
Read full review
Tom Kar - PeerSpot reviewer
Shows promise for endpoint detection and response, with room for improvement in complexity and pricing
VMware Carbon Black Cloud is a user-friendly solution that can isolate machines from the rest of the network. When a machine is quarantined, it cannot communicate with any other machines on the network except for the Carbon Black Cloud server. This allows you to investigate the machine without the risk of malware escaping to the network. Carbon Black Cloud's server can communicate with the quarantined machine through DNS and VSCP. This allows you to collect data from the machine, such as system logs, process activity, and registry changes. This data can be used to investigate the infection and determine the next steps. CrowdStrike and Cybereason are also popular EDR solutions. They offer similar features to VMware Carbon Black Cloud but may have different strengths and weaknesses. It is important to evaluate all of your options before choosing an EDR solution. Additionally, it is complex to use, and the pricing should be improved.
Read full review
report
See which vendors are best for you
Use our free recommendation engine to learn which Endpoint Detection and Response (EDR) solutions are best for your needs.
See recommendations
869,760 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
16%
Financial Services Firm
8%
Manufacturing Company
8%
Comms Service Provider
7%
Healthcare Company
9%
Financial Services Firm
9%
Computer Software Company
9%
Real Estate/Law Firm
9%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business46
Midsize Enterprise23
Large Enterprise37
By reviewers
Company SizeCount
Small Business5
Midsize Enterprise4
Large Enterprise7
 

Questions from the Community

What do you like most about Microsoft 365 Defender?
Microsoft Defender XDR provides strong identity protection with comprehensive insights into risky user behavior and potential indicators of compromise.
See all answers
What is your experience regarding pricing and costs for Microsoft 365 Defender?
The pricing for Microsoft Sentinel operates on a pay-as-you-go model based on data ingestion. I recall that Defender XDR pricing is based on the number of endpoints.
See all answers
What needs improvement with Microsoft 365 Defender?
I have created automated investigations, and while they work, they operate rather slowly in the Microsoft portal. If I automate something, it takes considerable time; if I do it manually, I can com...
See all answers
What to choose: an endpoint antivirus, an EDR solution or both?
I can recommend Carbon Black, an award-winning next-gen anti-virus (NGAV) and endpoint detection and response (EDR) security solution. The CB Predictive Security Cloud platform combines multiple hi...
See all answers
What's the difference between Carbon Black CB Response and Carbon Black CB Defense?
Carbon Black offers two different levels of Endpoint Detection and Response. One is the VM Carbon Black Cloud Endpoint Standard (CB Defense), and the other is the Carbon Black Endpoint Detection an...
See all answers
What do you like most about Carbon Black CB Response?
Threat hunting is the most valuable feature of VMware Carbon Black Cloud.
See all answers
 

Comparisons

CrowdStrike Falcon vs Microsoft Defender XDR Logo
CrowdStrike Falcon vs Microsoft Defender XDR
Compared 11% of the time
Wazuh vs Microsoft Defender XDR Logo
Wazuh vs Microsoft Defender XDR
Compared 9% of the time
Microsoft Defender for Cloud vs Microsoft Defender XDR Logo
Microsoft Defender for Cloud vs Microsoft Defender XDR
Compared 9% of the time
Microsoft Defender for Endpoint vs Microsoft Defender XDR Logo
Microsoft Defender for Endpoint vs Microsoft Defender XDR
Compared 4% of the time
Trend Vision One vs Microsoft Defender XDR Logo
Trend Vision One vs Microsoft Defender XDR
Compared 4% of the time
More Microsoft Defender XDR Competitors
Splunk SOAR vs VMware Carbon Black Cloud Logo
Splunk SOAR vs VMware Carbon Black Cloud
Compared 40% of the time
Palo Alto Networks Cortex XSOAR vs VMware Carbon Black Cloud Logo
Palo Alto Networks Cortex XSOAR vs VMware Carbon Black Cloud
Compared 28% of the time
VMware Carbon Black Endpoint vs VMware Carbon Black Cloud Logo
VMware Carbon Black Endpoint vs VMware Carbon Black Cloud
Compared 19% of the time
Rapid7 InsightIDR vs VMware Carbon Black Cloud Logo
Rapid7 InsightIDR vs VMware Carbon Black Cloud
Compared 12% of the time
More VMware Carbon Black Cloud Competitors
 

Product Reports

Buyer's Guide
Microsoft Defender XDR
September 2025
Microsoft Defender XDR reportDownload Microsoft Defender XDR product report
Buyer's Guide
VMware Carbon Black Cloud
September 2025
VMware Carbon Black Cloud reportDownload VMware Carbon Black Cloud product report
 

Also Known As

Microsoft 365 Defender, Microsoft Threat Protection, MS 365 Defender
Carbon Black CB Response
 

Overview

Microsoft Defender XDR is a comprehensive security solution designed to protect against threats in the Microsoft 365 environment. 

It offers robust security measures, comprehensive threat detection capabilities, and an efficient incident response system. With seamless integration with other Microsoft products and a user-friendly interface, it simplifies security management tasks. 

Users have found it effective in detecting and preventing various types of attacks, such as phishing attempts, malware infections, and data breaches.

Watch the Microsoft demo video here: Microsoft Defender XDR demo video.

Microsoft

Fortify Endpoint and Workload Protection

Legacy approaches fall short as cybercriminals update tactics and obscure their actions. Get advanced cybersecurity fueled by behavioral analytics to spot minor fluctuations and adapt in response.

Recognize New Threats

Analyze attackers’ behavior patterns to detect and stop never-before-seen attacks with continuous endpoint activity data monitoring. Don’t get stuck analyzing only what’s worked in the past.

Simplify Your Security Stack

Streamline the response to potential incidents with a unified endpoint agent and console. Minimize downtime responding to incidents and return critical CPU cycles back to the business.

Broadcom
 

Sample Customers

Accenture, Deloitte, ExxonMobil, General Electric, IBM, Johnson & Johnson and many others.
ALLETE belk
Buyer's Guide
Microsoft Defender XDR vs. VMware Carbon Black Cloud
September 2025
Free Report: Microsoft Defender XDR vs. VMware Carbon Black Cloud
Find out what your peers are saying about Microsoft Defender XDR vs. VMware Carbon Black Cloud and other solutions. Updated: September 2025.
DOWNLOAD NOW
869,760 professionals have used our research since 2012.
See our Microsoft Defender XDR vs. VMware Carbon Black Cloud report.
See our list of best Endpoint Detection and Response (EDR) vendors.

We monitor all Endpoint Detection and Response (EDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.