Microsoft Defender for Endpoint (formerly Microsoft Defender ATP) is a holistic, cloud delivered endpoint security solution that includes risk-based vulnerability management and assessment, attack surface reduction, behavioral based and cloud-powered next generation protection, endpoint detection and response (EDR), automatic investigation and remediation, managed hunting services, rich APIs, and unified security management.
$2.50
per user/per month
VMware Carbon Black EDR
Score 8.4 out of 10
N/A
VMware Carbon Black EDR (formerly Cb Response) is an incident response and threat hunting solution designed for security operations center (SOC) teams with offline environments or on-premises requirements. Carbon Black EDR records and stores endpoint activity data so that security professionals can hunt threats in real time and visualize the complete attack kill chain. It leverages the VMware Carbon Black Cloud’s aggregated threat intelligence, which is applied to the endpoint activity system of…
Used Carbon Black and Endpoint Management. I've tested the Palo Alto's Traps product. And then again, the Microsoft product, it works well because it's integrated into the operating system, so there's a lot less work to do to get it up and running.
Carbon black, SentinelOne, and EEP. I think Defender is good because it has a really user-friendly interface. I think it's pretty good. It has also given you a lot of details about processes and network connections.
So we do use Carbon Black Cloud, so endpoint detection response in a few situations where a defender cannot be deployed. It does its job well. I would say Defender probably does it better.