Carbon Black App Control
Antivirus software
Endpoint management software
Endpoint protection software
Anti-malware software
- Features
- Ease of use
- Ease of management
- Quality of support
- Affordability
- Market presence
Take the quiz to check if Carbon Black App Control and its alternatives fit your requirements.
Contact the product provider
Free Trial unavailableFree version unavailable
Small
Medium
Large
-
What is Carbon Black App Control
Carbon Black App Control is an endpoint security product focused on application control (allowlisting) to prevent unauthorized software from running on managed endpoints. It is used by security and IT teams to lock down servers and workstations, particularly in high-control environments where change is tightly governed. The product emphasizes policy-based execution control, file reputation/approval workflows, and visibility into attempted executions. It is commonly deployed alongside broader endpoint security tooling rather than as a standalone antivirus replacement.
Strong application allowlisting control
The product centers on preventing execution of unapproved binaries, scripts, and installers, which can reduce exposure to unknown or fileless threats that signature-based tools may miss. It supports policy-driven enforcement and approval workflows to manage legitimate change. This approach can be effective for fixed-function endpoints and servers where software inventories are stable.
Detailed execution visibility and audit
It records and reports on execution attempts, including blocked activity, which supports investigations and compliance reporting. Administrators can use this telemetry to identify unauthorized software and policy gaps. The focus on execution events can provide clearer operational signals than tools that primarily report detections after execution.
Centralized policy and endpoint management
The console provides centralized administration for deploying policies, managing approvals, and monitoring endpoint status. This helps standardize controls across groups of endpoints and reduces reliance on local configuration. For organizations with strict change control, centralized governance aligns well with operational processes.
Not a full EPP/AV suite
Application control does not replace all endpoint protection functions such as broad malware detection, exploit prevention, or integrated remediation workflows. Organizations often pair it with additional endpoint security capabilities to cover phishing-delivered malware, memory exploits, and other attack paths. Buyers expecting an all-in-one antivirus-style product may find coverage gaps.
Policy tuning and maintenance overhead
Allowlisting typically requires upfront baselining and ongoing approvals as applications update and new tools are introduced. In dynamic endpoint environments, this can create administrative workload and user friction. Poorly tuned policies can lead to excessive blocks or exceptions that weaken the control model.
Potential compatibility and rollout risk
Strict execution control can disrupt business applications, scripts, and IT automation if not carefully tested. Rollouts often require staged deployment, monitoring, and exception handling to avoid operational impact. Environments with frequent software changes may experience longer time-to-value compared with lighter-weight endpoint tools.
Seller details
Broadcom Inc.
Palo Alto, California, USA
1961
Public
https://www.broadcom.com/
https://x.com/Broadcom
https://www.linkedin.com/company/broadcom/
