SonicWall Capture Client vs VMware Carbon Black Cloud comparison

SonicWall Capture Client vs. VMware Carbon Black Cloud

Download the complete report

Helped 850,349 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

SonicWall Capture Client

Ranking in Endpoint Detection and Response (EDR)

40th

Average Rating

8.0

Reviews Sentiment

7.5

Number of Reviews

Ranking in other categories

Endpoint Protection Platform (EPP) (46th)

VMware Carbon Black Cloud

Ranking in Endpoint Detection and Response (EDR)

43rd

Average Rating

8.4

Reviews Sentiment

7.2

Number of Reviews

Ranking in other categories

Security Incident Response (6th)

Mindshare comparison

As of May 2025, in the Endpoint Detection and Response (EDR) category, the mindshare of SonicWall Capture Client is 0.6%, down from 0.7% compared to the previous year. The mindshare of VMware Carbon Black Cloud is 0.2%, up from 0.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Endpoint Detection and Response (EDR)

Featured Reviews

LUIZ FERNANDO MARIANO SILVA

Data Office Protect - DPO at DATATRUSTY TECNOLOGIA

Enables faster updates and provides an easy-to-use user interface

I have an advanced license that includes all features. Though we have the license, we cannot use it completely because it is not enabled in the Microsoft tier. It does not make sense. We do not want to buy it separately because the price is different if we buy separate licenses.

Read full review

Tom Kar

Senior Security Specialist at Sopra

Shows promise for endpoint detection and response, with room for improvement in complexity and pricing

VMware Carbon Black Cloud is a user-friendly solution that can isolate machines from the rest of the network. When a machine is quarantined, it cannot communicate with any other machines on the network except for the Carbon Black Cloud server. This allows you to investigate the machine without the risk of malware escaping to the network. Carbon Black Cloud's server can communicate with the quarantined machine through DNS and VSCP. This allows you to collect data from the machine, such as system logs, process activity, and registry changes. This data can be used to investigate the infection and determine the next steps. CrowdStrike and Cybereason are also popular EDR solutions. They offer similar features to VMware Carbon Black Cloud but may have different strengths and weaknesses. It is important to evaluate all of your options before choosing an EDR solution. Additionally, it is complex to use, and the pricing should be improved.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The solution serves as a very stable platform."

"The most valuable features of SonicWall Capture Client are CSC (Capture Security Center), RTDMI (Real-Time Deep Memory Inspection), and the deep memory inspection feature."

"The threat protection feature of SonicWall Capture Client is most valuable."

"SonicWall Capture Client offers a cost-effective solution that's cheaper compared to other vendors like CrowdStrike."

"Overall, what I love the most about SonicWall Capture Client is its management console. SonicWall Capture Client also has the intelligence to tell you which computer is online, what OS it uses, etc. I also found the rollback feature and SentinelOne integration valuable in SonicWall Capture Client. Rollback is a powerful feature of the solution because it's similar to locking your endpoint during an attack, so you won't have to pay the hackers, particularly during ransomware attacks. That feature in SonicWall Capture Client allows you to get back your endpoint or make your endpoint right again after an attack. I also like that it isn't complex to remove the engine error from the endpoint because you only have to provide the security key from SonicWall Capture Client, so the process is simple. It's not complex."

"The initial setup is straightforward."

"The product’s interface is easy to use."

"SonicWall Capture Client has a serial number to connect to your firewall."

More SonicWall Capture Client pros

"Probably the most valuable feature of CB Response is its ability to isolate a host and take it off the network, so it's not spreading anything. We have two security operations centers around the globe. When an SOC analyst sees something on an endpoint, they can use Carbon Black Response to isolate that host from the customer's environment and prevent any kind of lateral spread."

"It is nice when you're in a situation where you think someone's device is compromised and that there's some malware getting into your fleet."

"They're highly stable in comparison with other solutions I have."

"VMware Carbon Black Cloud is a user-friendly solution that can isolate machines from the rest of the network."

"We also took full advantage of its incident response reporting capabilities to act as a “black box” for our infrastructure around strings of suspicious activity. The reporting and incident response capabilities were incredibly helpful during active security concerns."

"Carbon Black insures the probability that any ransomware will be stopped before spreading."

"The enhanced logging and data analysis of the incident response and investigation components allowed us to quickly identify and resolve security issues before they could spread."

"The detection response and quarantining are very good features."

More VMware Carbon Black Cloud pros

Cons

"The biggest issue with SonicWall Capture Client is network latency."

"It takes technical support too long to resolve an issue."

"They should improve their user interface."

"An area for improvement in SonicWall Capture Client is TenantCloud support. Suppose you want to implement SonicWall Capture Client. You'll have to register it on MySonicWall. Then once your SonicWall Capture Client license expires and you don't want to renew it, you can't delete it from your MySonicWall account, so that's an area for improvement."

"SonicWall Capture Client could be made a little lighter than it currently is in terms of memory consumption."

"The implementation is not easy."

"Technical support from SonicWall has room for improvement. While their escalation process is understandable, it can be time-consuming as all logs need to be provided multiple times across different service levels."

"SonicWall Capture Client should use less of our PC's memory, as it tends to slow down the performance."

More SonicWall Capture Client cons

"One area for improvement is the maturity of its vulnerability features."

"The support team of Carbon Black CB Response needs improvement. At present, they need a lot of information. Then they give you an answer that they already gave you. You tell them it didn't work, and then they take a long time."

"The solution needs to simplify the process of adding custom watchlists, as well as embrace YARA for rule creation."

"We are subscribed to FS-ISAC threat indicator, but have been unsuccessful in adding it to our alliance feeds."

"The threat intelligence feed could use some fine tweaking."

"They have different products, but if we wanted to take their protection and their EPR, then we would need to have two agents"

"The dashboard should be more user-friendly."

"Setup is incredibly complex and poorly documented. Every time an upgrade was needed we would need to engage Professional Services for troubleshooting help. Certificates and web services proved to be the most significant sticking points. Since the product runs on a Linux platform, perhaps having staff with more Linux experience could have alleviated some difficulty."

More VMware Carbon Black Cloud cons

Pricing and Cost Advice

"You have to pay for the solution, and a lot of customers do not want to pay."

"Here in Indonesia, SonicWall Capture Client costs five hundred thousand rupiahs for every endpoint. If I'm correct, you only have to pay the licensing fee, and there's no additional fee. To me, the pricing for SonicWall Capture Client is four out of five."

"The product is very expensive."

"We had no issues purchasing through our preferred reseller and were able to get a fair price even when not purchasing direct. Carbon Black Enterprise Response didn’t break the bank, though adding on the matching antivirus and anti-malware components of the Protect product was more than we could afford, even with some discounting. Cb Response is really designed to complement Carbon Black’s Defense product. While Response can be used on its own, coupling with Defense seems like the best strategy if you can afford the price tag."

"You need to pay for the licensing of the product. The pricing is costly."

"VMware Carbon Black Cloud is an expensive solution."

"The solution is very inexpensive so there is great cost savings to using it."

"Pricing for this solution could be made lower."

"Purchase Professional Services up front as part of the implementation package, then renew hours annually to ensure you have adequate support for upgrades and enhancements. Overbuy by at least 10% to account for infrastructure growth."

See which vendors are best for you

Use our free recommendation engine to learn which Endpoint Detection and Response (EDR) solutions are best for your needs.

See recommendations

850,349 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

12%

Government

10%

Educational Organization

Wholesaler/Distributor

Computer Software Company

18%

Financial Services Firm

12%

Real Estate/Law Firm

11%

Healthcare Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about SonicWall Capture Client?

SonicWall Capture Client's scalability is nice.

What is your experience regarding pricing and costs for SonicWall Capture Client?

SonicWall Capture Client offers a cost-effective solution that's cheaper compared to other vendors like CrowdStrike.

What needs improvement with SonicWall Capture Client?

SonicWall Capture Client could benefit from an improved graphical user interface with more modern and minimal icons. Additionally, one of the drawbacks is that I cannot use Advanced and Premier lic...

What to choose: an endpoint antivirus, an EDR solution or both?

I can recommend Carbon Black, an award-winning next-gen anti-virus (NGAV) and endpoint detection and response (EDR) security solution. The CB Predictive Security Cloud platform combines multiple hi...

What's the difference between Carbon Black CB Response and Carbon Black CB Defense?

Carbon Black offers two different levels of Endpoint Detection and Response. One is the VM Carbon Black Cloud Endpoint Standard (CB Defense), and the other is the Carbon Black Endpoint Detection an...

What do you like most about Carbon Black CB Response?

Threat hunting is the most valuable feature of VMware Carbon Black Cloud.

Microsoft Defender for Endpoint vs SonicWall Capture Client

Comparisons

Compared 18% of the time

CrowdStrike Falcon vs SonicWall Capture Client

Compared 16% of the time

SentinelOne Singularity Complete vs SonicWall Capture Client

Compared 16% of the time

Bitdefender Total Security vs SonicWall Capture Client

Compared 8% of the time

Huntress Managed EDR vs SonicWall Capture Client

Compared 6% of the time

More SonicWall Capture Client Competitors

Splunk SOAR vs VMware Carbon Black Cloud

Compared 31% of the time

Rapid7 InsightIDR vs VMware Carbon Black Cloud

Compared 28% of the time

VMware Carbon Black Endpoint vs VMware Carbon Black Cloud

Compared 22% of the time

Palo Alto Networks Cortex XSOAR vs VMware Carbon Black Cloud

Compared 20% of the time

More VMware Carbon Black Cloud Competitors

Product Reports

Endpoint Protection Platform (EPP)

Download SonicWall Capture Client product report

VMware Carbon Black Cloud

Download VMware Carbon Black Cloud product report

Also Known As

No data available

Carbon Black CB Response

Overview

SonicWall Capture Client is a unified client platform that delivers multiple endpoint protection capabilities, including next-generation malware protection and application vulnerability intelligence. It leverages cloud sandbox file testing, comprehensive reporting, and enforcement for endpoint protection.

SonicWall

Fortify Endpoint and Workload Protection Legacy approaches fall short as cybercriminals update tactics and obscure their actions. Get advanced cybersecurity fueled by behavioral analytics to spot minor fluctuations and adapt in response. Recognize New Threats Analyze attackers’ behavior patterns to detect and stop never-before-seen attacks with continuous endpoint activity data monitoring. Don’t get stuck analyzing only what’s worked in the past. Simplify Your Security Stack Streamline the response to potential incidents with a unified endpoint agent and console. Minimize downtime responding to incidents and return critical CPU cycles back to the business.

VMware

Sample Customers

Luton College

ALLETE belk

SonicWall Capture Client vs. VMware Carbon Black Cloud