Try our new research platform with insights from 80,000+ expert users

Morphisec vs Trellix Advanced Threat Defense comparison

Morphisec and Trellix are both solutions in the Advanced Threat Protection (ATP) category. Morphisec is ranked #32, while Trellix is ranked #22 with an average rating of 9.0. Morphisec holds a 1.6% mindshare in ATP, compared to Trellix’s 2.1% mindshare. Additionally, 100% of Morphisec users are willing to recommend the solution, compared to 76% of Trellix users who would recommend it.
Morphisec
Read 21 Morphisec reviews
  • 2,659 Views
  • 399 Comparison Views
100% willing to recommend
Trellix Advanced Threat Def...
Read 9 Trellix Advanced Threat Defense reviews
  • 675 Views
  • 635 Comparison Views
76% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Dec 1, 2024

Morphisec and Trellix Advanced Threat Defense are competing cybersecurity solutions. Morphisec often garners customer satisfaction with pricing, while Trellix is favored for its comprehensive features, making it a choice for those seeking value.

Features: Morphisec distinguishes itself with proactive prevention using Moving Target Defense, blocking threats before they cause damage. It’s lightweight and operates without performance hindrance. Trellix Advanced Threat Defense excels with a multi-layered malware detection approach using static, dynamic, and machine learning analysis. It offers deep threat intelligence, making it robust in features. Their comprehensive integration capabilities also add value to Trellix's offerings.

Room for Improvement: Morphisec could enhance its visibility and analysis capabilities for better detection and reporting. It might also benefit from expanding its integration with existing enterprise systems. Adding more detailed analytics could offer competitive advantages. Trellix Advanced Threat Defense could work on simplifying its deployment process to ensure easier integration into diverse environments. Reducing complexity in its analysis features without losing depth could improve user experience. Increasing cost-effectiveness by addressing high upfront investment could also be advantageous.

Ease of Deployment and Customer Service: Morphisec is praised for its simple deployment and swift integration, requiring minimal configuration and maintenance. Customer support is responsive and helpful. Trellix Advanced Threat Defense, though more complex, benefits from extensive documentation and support channels, offering thorough guidance during deployment. Trellix provides detailed resources to assist users, which can be helpful for more complex systems.

Pricing and ROI: Morphisec provides a cost-effective solution, with quick ROI due to its streamlined deployment and low maintenance needs. It remains attractive for budget-conscious users seeking efficient cybersecurity. Trellix Advanced Threat Defense, while involving higher initial costs, offers significant returns through its extensive threat detection capabilities, preventing potentially large-scale incidents. Its higher price is justified by a superior feature set, appealing to those prioritizing comprehensive protection.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Morphisec vs. Trellix Advanced Threat Defense Report (Updated: February 2026).
Buyer's Guide
Morphisec vs. Trellix Advanced Threat Defense
February 2026
Download the complete report
Helped 881,757 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Morphisec
Ranking in Advanced Threat Protection (ATP)
32nd
Average Rating
9.2
Reviews Sentiment
7.4
Number of Reviews
21
Ranking in other categories
Vulnerability Management (54th), Endpoint Protection Platform (EPP) (52nd), Endpoint Detection and Response (EDR) (60th), Cloud Workload Protection Platforms (CWPP) (34th), Threat Deception Platforms (20th)
Trellix Advanced Threat Def...
Ranking in Advanced Threat Protection (ATP)
22nd
Average Rating
7.8
Reviews Sentiment
5.6
Number of Reviews
9
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of February 2026, in the Advanced Threat Protection (ATP) category, the mindshare of Morphisec is 1.6%, up from 0.7% compared to the previous year. The mindshare of Trellix Advanced Threat Defense is 2.1%, up from 1.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Advanced Threat Protection (ATP) Market Share Distribution
ProductMarket Share (%)
Trellix Advanced Threat Defense2.1%
Morphisec1.6%
Other96.3%
Advanced Threat Protection (ATP)
 

Featured Reviews

reviewer1739325 - PeerSpot reviewer
reviewer1739325
CISO at a media company with 10,001+ employees
Easy to deploy and configure, stable, and has good support
The weakest point of this product is how difficult it is to understand the reasons for an alert. This is a problem because it is hard to determine whether an attack is real or not. It blocks the behavior automatically but it is quite difficult to check the reason for this, and it is something that we are discussing with Morphisec. We need to have better reporting features that are able to produce KPIs that we can show to management. Improved analytics reports would help us to understand what type of attack it is and how it was able to reach a particular computer.
Read full review
PP
Philippe Panardie
RSSI at SDIS49
Ensuring long-term reliability while seeking internal email management enhancements
Prisma is a commercial name of the firewall now, but we don't work with the cloud product. Only our company is using it and we do not recommend it to customers. For us, it's transparent because it's a cloud product, so we don't really know the version as it's always updated. We have not had any problem, but it's difficult to report on what's going on because some days they can wash out perhaps 100 mails, and then it's difficult to say how many attacks you have reached. The right email has been washed out and then nobody has complained. We do not use the Threat Visualization feature; as we are in MX, the mail is washed out before it is in the mail inbox of the user, thus avoiding any problem requiring a reservation. In fact, there is no integration with existing security frameworks. The only problem we can have is that as we have no API interface, there is no inspection of internal mail. I rate Trellix Advanced Threat Defense a nine out of ten.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Morphisec has enabled us to become a lot less paranoid when it comes to staff clicking on things or accessing things that they shouldn't that could infect the whole system. Our original ransomware attack that happened came from someone's Google drive and then just filtered on through that. It has put our minds at ease a lot more in running it. It's also another layer of security that has been proven to be effective for us."
"It provides full visibility into security events and from both solutions in one dashboard. I'm not a big security guy, if I have a threat that looks like there's a problem, I will ask Morphisec to dissect it for me, and tell me what might be happening. Because it tends to be all hash codes, so I can tell what's going on. They've been pretty good with that."
"Morphisec stops attacks without needing to know what type of threat it is, just that it is foreign. It is based on injections, so it would know when a software launches. If a software launches and something else also launches, then it would count that as anomalous and block it. Because the software looks at the code, and if it executes something else that is not related, then Morphisec would block it. That is how it works."
"Since using Morphisec we have seen a downturn in attacks because Morphisec protects us versus Defenders and whatnot that are signature-based. I know we have not had any issues with ransomware or other zero-day attacks that we've seen with machines that, all of a sudden, have become before we instituted the product. Now the machine had to be re-imaged and there was a loss of data because something was on the machine. You couldn't really determine what was on the machine because nothing was picking it up. The products we were using weren't picking it up."
"Morphisec makes use of deterministic attack prevention that doesn’t require investigation of security alerts. It changes the memory locations of where certain applications run. If you think of Excel, opening a PDF, running an Excel macro, or opening a webpage and clicking on a link, all of those actions run in a certain area of memory. Morphisec changes the memory locations of where those run."
"What's valuable is really the whole kit and caboodle of the Morphisec agent. What it does is genius, in a way, until the bad guys get wise to it. You set it up and then you watch the dashboard. There isn't really much tinkering."
"Morphisec makes it very easy for IT teams of any size to prevent breaches of critical systems because of the design of their tool. When we evaluated Morphisec, the CIO and I sat and listened. What attracted us to them is the fact that it stops activity at the point of detection. That saves a lot of time because now we are not investigating and trying to trace down what to turn off. We have already prevented it, which makes it very much safer and more secure."
"The fact that Morphisec uses deterministic attack prevention that does not require human intervention has affected our security team's operations by making things much simpler. We don't have to really track down various alerts anymore, they've just stopped. At that point, we can go in and we can clean up whatever needs to be cleaned up. There are some things that Morphisec detects that we can't really remove, it's parts of Internet Explorer, but it's being blocked anyway. So we're happy with that."
More Morphisec pros
"It stops in excess of twenty-five malware events per month, all of which could be critical to the business."
"It is very scalable."
"I recommend this solution because of its ease of use."
"Provides good exfiltration, and is an all-in-one product."
"It is stable and reliable."
"Its greatest strength is the DXL client which can rapidly disseminate attack information to all clients via the McAfee Agent instead of going through the ePO server."
"The fact that in 10 years, we have had no problem is the most valuable feature for us; it's really a washing machine, but the only problem we face is that it's difficult to report on this product."
"The most valuable features are the administration console and its detection and response module."
 

Cons

"Morphisec is a venture startup. They are still early in their growth stage. They need to get mature on their customer support and on how they interface with system tools. For example, they need to get multifactor in place and an API for the major multi-factor systems, e.g., Okta, Duo, Ping, and Microsoft. They don't have them built in yet. They are working on them. It is just not there yet. Also, their stability, customer support, and processes need improvement, which is just part of maturity."
"It might be a bit much to ask, but we are now beginning to use Morphisec Scout, which provides vulnerability information. At this time, it's recognizing vulnerabilities and reporting them to us, but it's not necessarily resolving them. There's still a separate manual process to resolve those vulnerabilities, primarily through upgrades. We have to do that outside of Morphisec. If Morphisec could somehow have that capability built into it, that would be very effective."
"Some of the filters for the console need improvement. There are alerts that show up and just being able to acknowledge that we've seen those and not turn them off, but dismiss them, would be a huge benefit."
"We sometimes have to depend on the support team to know what action we should take. If the solution for an alert can be built into the report that we are getting, it will save time, and the interaction with support would be less. At times, corrective action is required, but at times, we don't need to take any action. It would be good if we get to know in the report that a particular infection doesn't require any action. It will save us time and effort."
"It would be useful for them if they had some kind of network discovery. That kind of functionality I think would give IT administrators a little bit more confidence that they have 100 percent coverage, and it gives them something to audit against. Network discovery would be one area I would definitely suggest that they put some effort into."
"If anything, tech support might be their weakest link. The process of getting someone involved sometimes takes a little time. It seems to me that they should have all the data they need to let me know whether an alert is legitimate or not, but they tend to need a lot of information from me to get to the bottom of something. It usually takes a little longer than I would expect."
"Right now, it's just their auto-update feature. I know they are currently working on that. When they release a new version of the threat prevention platform, I do have to update that, rolling out to every computer. They have said, "From version 5, you would be able to do an auto-update." While this is very minor, that is the only thing that I would say needs to be upgraded. It would just make life a lot easier for other IT teams. However, I have simplified the process, so all I need to do is just download one file."
"We have only had four attacks in the last year, "attacks" being some benign PDF from a vendor that, for some reason, were triggered. There were no actual attacks. They were just four false positives, or something lowly like adware. There have been false positives with both the on-premises solution and the cloud solution."
More Morphisec cons
"This solution needs to be made "cloud ready"."
"Lacks remote capabilities not dependent on the internet."
"The only problem we can have is that as we have no API interface, there is no inspection of internal mail."
"I would like to see future versions of the solution incorporate artificial intelligence technology."
"We'd like them to be better at dealing with script threats."
"The initial setup was industry standard complex. It takes awhile and has a lot of planning involved. It could be simplified with product redesign."
"Make the ATD system a part of the whole product and take the whole thing onto the cloud. While it is there already, it is not to the same level as the on-premise version."
"There could be a tool that automatically updates all-new Microsoft IPs, which are available for free to connect to the client."
 

Pricing and Cost Advice

"It is priced correctly for what it does. They end up doing a good deal of discounting, but I think it is priced appropriately."
"It is a little bit more expensive than other security products that we use, but it does provide us good protection. So, it is a trade-off."
"Our licensing is tied into our contract. Because we have a long-term contract, our pricing is a little bit lower. It is per year, so we don't get charged per endpoint, but we do have a cap. Our cap is 80 endpoints. If we were to go over 80, when we renewed our contract, which is not until three years are over. Then, they would reevaluate, and say, "Well, you have more than 80 devices active right now. This is going to be the price change." They know that we are installing and replacing computers, so the numbers will be all over the place depending on whether you archive or don't archive, which is the reason why we just have to keep up on that stuff."
"We are still using a separate tool. I know for our 600 or I think we're actually licensed for up to 700 users, it runs me 23 or $24,000 a year. When you're talking to that many users plus servers being protected, that's well worth the investment for that dollar amount."
"Price-wise, it's on the higher side. A traditional antivirus solution is cheaper, but in terms of security and manageability, its ROI is better than a traditional antivirus. I would recommend it to anybody evaluating or considering an antivirus solution. If your system gets compromised, the cost of ransom would be a lot more. This way, it saves a lot of cost."
"Morphisec is reasonably priced because our parent company's other subsidiaries use different products like CrowdStrike. CrowdStrike is four or five times more expensive than Morphisec. The competitive pricing saves us money in our overall security stack."
"It is an annual subscription basis per device. For the devices that we have in scope right now, it is about $25,000 a year."
"The pricing is definitely fair for what it does."
More Morphisec pricing and cost advice
"Our licensing fees for this solution are approximately one million dollars per year."
"The product is expensive, but it is better than the rest of them in the industry."
report
See which vendors are best for you
Use our free recommendation engine to learn which Advanced Threat Protection (ATP) solutions are best for your needs.
See recommendations
881,757 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Outsourcing Company
18%
Manufacturing Company
10%
Financial Services Firm
8%
Computer Software Company
8%
Government
14%
Comms Service Provider
13%
Performing Arts
11%
University
10%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business5
Midsize Enterprise8
Large Enterprise8
By reviewers
Company SizeCount
Small Business3
Midsize Enterprise4
Large Enterprise5
 

Questions from the Community

Ask a question
Earn 20 points
What do you like most about McAfee Advanced Threat Defense?
I recommend this solution because of its ease of use.
See all answers
What needs improvement with McAfee Advanced Threat Defense?
I would like to see an API interface for internal email and control of outgoing email to make it closer to 10. It's necessary; today we have an MX interface, and it would be interesting to have an ...
See all answers
What is your primary use case for McAfee Advanced Threat Defense?
We are working with Palo Alto products, specifically firewalls. We are only using Palo Alto Firewalls and not Cortex. With FireEye and Trellix, we only work with ETP now because the NDR function wh...
See all answers
 

Comparisons

Halcyon vs Morphisec Logo
Halcyon vs Morphisec
Compared 11% of the time
CrowdStrike Falcon vs Morphisec Logo
CrowdStrike Falcon vs Morphisec
Compared 8% of the time
Deep Instinct Prevention Platform vs Morphisec Logo
Deep Instinct Prevention Platform vs Morphisec
Compared 7% of the time
FortiCNAPP vs Morphisec Logo
FortiCNAPP vs Morphisec
Compared 6% of the time
Hyver vs Morphisec Logo
Hyver vs Morphisec
Compared 5% of the time
More Morphisec Competitors
Fortinet FortiSandbox vs Trellix Advanced Threat Defense Logo
Fortinet FortiSandbox vs Trellix Advanced Threat Defense
Compared 17% of the time
Check Point Infinity vs Trellix Advanced Threat Defense Logo
Check Point Infinity vs Trellix Advanced Threat Defense
Compared 17% of the time
Microsoft Defender for Identity vs Trellix Advanced Threat Defense Logo
Microsoft Defender for Identity vs Trellix Advanced Threat Defense
Compared 14% of the time
Anomali vs Trellix Advanced Threat Defense Logo
Anomali vs Trellix Advanced Threat Defense
Compared 10% of the time
Microsoft Defender for Office 365 vs Trellix Advanced Threat Defense Logo
Microsoft Defender for Office 365 vs Trellix Advanced Threat Defense
Compared 9% of the time
More Trellix Advanced Threat Defense Competitors
 

Product Reports

Buyer's Guide
Morphisec
January 2026
Morphisec reportDownload Morphisec product report
Buyer's Guide
Trellix Advanced Threat Defense
January 2026
Trellix Advanced Threat Defense reportDownload Trellix Advanced Threat Defense product report
 

Also Known As

Morphisec, Morphisec Moving Target Defense
McAfee Advanced Threat Defense
 

Overview

Morphisec delivers signatureless endpoint-specific protection, effectively blocking zero-day threats and ransomware without affecting performance, making it a preferred choice for enhancing security strategies.

Morphisec empowers users by providing comprehensive protection against advanced threats with its innovative signatureless and in-memory security features. Its seamless integration with Microsoft Defender ensures complete visibility and automatic threat blocking through a unified dashboard. The Moving Target Defense technology enhances deployment efficiency while its lightweight design maintains system performance. Despite some challenges in cloud deployment and feature updates, users find value in its ease of use and minimal administrative effort.

What are the key features of Morphisec?
  • Signatureless Protection: Blocks threats without relying on signatures, ensuring up-to-date defense.
  • In-Memory Protection: Prevents attacks targeting system memory to safeguard endpoints.
  • Zero-Day Threat Blocking: Offers proactive defense against undiscovered threats.
  • Unified Dashboard: Provides comprehensive security event visibility and integration with Microsoft Defender.
  • Lightweight Design: Ensures smooth operation without system performance issues.
What benefits can users expect when evaluating Morphisec?
  • Enhanced Security: Strengthens defense layers against ransomware and memory attacks.
  • Seamless Integration: Works alongside existing antivirus solutions like Microsoft Defender.
  • Minimal Administration: Requires low maintenance due to its set-and-forget nature.
  • Automatic Updates: Keeps protection current without manual intervention.
  • Broad Coverage: Suitable for desktops, servers, and cloud platforms.

In industries with high security needs, deploying Morphisec adds a robust defense against advanced threats. Its compatibility with antivirus solutions and cloud platforms makes it adaptable to diverse environments, ensuring effective threat mitigation and detection.

Morphisec

Powerful advanced threat detection

Uncover Hidden Threats

Combine in-depth static code analysis, dynamic analysis (malware sandboxing), and machine learning to increase zero-day threat and ransomware detection.

Threat Intelligence Sharing

Immediately share threat intelligence across your entire infrastructure—including multi-vendor ecosystems—to reduce time from threat encounter to containment.

Enable Investigation

Validate threats and access critical indicators of compromise (IoCs) needed for investigation and threat hunting.

Trellix
 

Sample Customers

Lenovo/Motorola, TruGreen, Covenant Health, Citizens Medical Center
The Radicati Group, Florida International University, MGM Resorts International, County Durham andDarlington NHS Foundation Trust
Buyer's Guide
Morphisec vs. Trellix Advanced Threat Defense
February 2026
Free Report: Morphisec vs. Trellix Advanced Threat Defense
Find out what your peers are saying about Morphisec vs. Trellix Advanced Threat Defense and other solutions. Updated: February 2026.
DOWNLOAD NOW
881,757 professionals have used our research since 2012.
See our Morphisec vs. Trellix Advanced Threat Defense report.
See our list of best Advanced Threat Protection (ATP) vendors.

We monitor all Advanced Threat Protection (ATP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.