Try our new research platform with insights from 80,000+ expert users

ThreatLocker Zero Trust Endpoint Protection Platform vs Trellix Network Detection and Response comparison

ThreatLocker and Trellix are both solutions in the Advanced Threat Protection (ATP) category. ThreatLocker is ranked #6 with an average rating of 9.2, while Trellix is ranked #12 with an average rating of 7.8. ThreatLocker holds a 2.7% mindshare in ATP, compared to Trellix’s 3.9% mindshare. Additionally, 97% of ThreatLocker users are willing to recommend the solution, compared to 97% of Trellix users who would recommend it.
ThreatLocker Zero Trust End...
Read 40 ThreatLocker Zero Trust Endpoint Protection Platform reviews
  • 3,528 Views
  • 635 Comparison Views
97% willing to recommend
Trellix Network Detection a...
Read 40 Trellix Network Detection and Response reviews
  • 2,271 Views
  • 1,113 Comparison Views
97% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Jan 11, 2026

Trellix Network Detection and Response and ThreatLocker Zero Trust Endpoint Protection Platform compete in cybersecurity solutions. ThreatLocker has the upper hand in pricing flexibility and customer support, while Trellix excels in threat detection capabilities.

Features: Trellix Network Detection and Response is known for its strong threat detection capabilities, including zero-day attacks and APTs, alongside a user-friendly alert dashboard and sandboxing technology. ThreatLocker Zero Trust Endpoint Protection Platform offers robust application control, ring-fencing, and zero-trust security strategies, providing granular execution control and enhanced protection against unauthorized applications.

Room for Improvement: Trellix requires enhancements in sandboxing customization, cloud integration, and user interface functionality. Improvements in analytics and AI intelligence are also needed. ThreatLocker could benefit from better network update distribution to avoid saturating bandwidth, expanded training options, and more streamlined user interfaces for easier management.

Ease of Deployment and Customer Service: Trellix is primarily deployed on-premises, aligning with preferences for private cloud and on-premises setups, but faces mixed reviews for customer support. ThreatLocker supports on-premises, public, and hybrid cloud deployments and is praised for excellent customer support and effective problem resolution.

Pricing and ROI: Trellix is considered expensive compared to other solutions but justified by its capabilities, resulting in significant ROI from reduced threat detection time. ThreatLocker is seen as fairly priced, offering significant value with features. Its scalable pricing model and substantial ROI from reduced security incidents and improved efficiency are appreciated, highlighting its pricing flexibility as a significant advantage.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed ThreatLocker Zero Trust Endpoint Protection Platform vs. Trellix Network Detection and Response Report (Updated: December 2025).
Buyer's Guide
ThreatLocker Zero Trust Endpoint Protection Platform vs. Trellix Network Detection and Response
December 2025
Download the complete report
Helped 881,082 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

ROI

Sentiment score
7.9
ThreatLocker Zero Trust boosts ROI by blocking threats, reducing risks, and enhancing security with seamless integration and quick adaptation.
Sentiment score
7.6
Trellix enhances security and productivity, offering nearly 200% ROI, faster threat detection, and broad client satisfaction.
If something were to happen without ThreatLocker, the cost would be huge, and thus, having it is definitely worth it.
Devin Loyo
Tier 1 IT Engineer at a retailer with 11-50 employees
The main return on investment is peace of mind, knowing that with ThreatLocker on any endpoint, it will almost always block all malicious code or exploits, even zero-day exploits.
Luke Schlueter
Project Engineer at Lutz M&A, LLC
It keeps malware, Trojans, and ransomware at bay.
Johnathan Bodily
Technical Engineer at Cloud 1 Solutions
For more quotes and insights, download the ThreatLocker Zero Trust Endpoint Protection Platform report
No quotes available
For more quotes and insights, download the Trellix Network Detection and Response report
DL
LS
Johnathan Bodily - PeerSpot reviewer
 

Customer Service

Sentiment score
7.7
ThreatLocker offers exceptional 24/7 customer service with fast issue resolution, highly rated by users for speed and expertise.
Sentiment score
7.2
Trellix Network Detection and Response offers reliable 24/7 support, though some users desire quicker response times during incidents.
They have been very responsive, helpful, and knowledgeable.
reviewer2665902
Systems Security Analyst & Deputy Security Officer at a financial services firm with 201-500 employees
I would rate their customer support a ten out of ten.
Ryan-Heath
Director, Managed Services at a consultancy with 11-50 employees
Their support is world-class.
Charles Loveland
Supervisor, Client Security at a consultancy with 11-50 employees
For more quotes and insights, download the ThreatLocker Zero Trust Endpoint Protection Platform report
Technical support needs improvement as sometimes engineers are not available promptly, especially during high-severity incidents.
Abdullah Al Hadi
Information Security Engineer at Nhq Distribution Ltd
The customer support for Trellix Network Detection and Response is great.
Jose Vargas
Agente De Servicios Técnicos at a computer software company with 11-50 employees
For more quotes and insights, download the Trellix Network Detection and Response report
reviewer2665902 - PeerSpot reviewer
RH
CL
Abdullah Al Hadi - PeerSpot reviewerJose Vargas - PeerSpot reviewer
 

Scalability Issues

Sentiment score
8.0
ThreatLocker scales efficiently, handling thousands of endpoints easily, with updates and flexible deployment supporting diverse organizational needs.
Sentiment score
7.9
Trellix Network Detection and Response offers reliable cloud scalability, supporting diverse industries with high satisfaction despite varied admin support.
I started off with just the servers, and within a month and a half, I set up the entire company with ThreatLocker.
Johnathan Bodily
Technical Engineer at Cloud 1 Solutions
It seems to primarily operate on the endpoints rather than at a central location pushing out policies.
reviewer2665902
Systems Security Analyst & Deputy Security Officer at a financial services firm with 201-500 employees
I would rate it a ten out of ten for scalability.
Luke Schlueter
Project Engineer at Lutz M&A, LLC
For more quotes and insights, download the ThreatLocker Zero Trust Endpoint Protection Platform report
No quotes available
For more quotes and insights, download the Trellix Network Detection and Response report
Johnathan Bodily - PeerSpot reviewerreviewer2665902 - PeerSpot reviewer
LS
 

Stability Issues

Sentiment score
7.4
ThreatLocker Zero Trust Platform offers stable performance, minimal downtime, quick issue resolution, and seamless integration with operating systems.
Sentiment score
7.8
Trellix Network Detection and Response is reliable, with minor issues in performance requiring maintenance and expertise for optimal use.
For five years, we have not had a problem.
Charles Loveland
Supervisor, Client Security at a consultancy with 11-50 employees
Once deployed, it downloads the policies locally, so even if the computer doesn't have internet, it doesn't matter.
Roderick Neuhoff
Information Cybersecurity Technology Specialist at Freez.it
It has been very stable, reliable, and accessible.
Joshua Aaronson
COO at Panda Technology
For more quotes and insights, download the ThreatLocker Zero Trust Endpoint Protection Platform report
No quotes available
For more quotes and insights, download the Trellix Network Detection and Response report
CL
RN
JA
 

Room For Improvement

ThreatLocker could improve by enhancing training, UI, reporting, integration, and support to address approval and update challenges.
Trellix Network Detection and Response needs improved customization, integration, reporting, threat intelligence, AI, support, and dashboard visibility.
Controlling the cloud environment, not just endpoints, is crucial.
Joshua Aaronson
COO at Panda Technology
This is problematic when immediate attention is needed.
Musah Ibrahim
Senior System Administrator at Molders Group Limited
Comprehensive 24-hour log monitoring is a valuable enhancement for both business and enterprise-level users.
reviewer2594715
IMS ENGINEER at a tech vendor with 1,001-5,000 employees
For more quotes and insights, download the ThreatLocker Zero Trust Endpoint Protection Platform report
There should be improvements in AI intelligence, faster decision-making, and a more responsive technical support team.
Abdullah Al Hadi
Information Security Engineer at Nhq Distribution Ltd
I would like to see in Trellix Network Detection and Response more explanation about some details of the threat.
Jose Vargas
Agente De Servicios Técnicos at a computer software company with 11-50 employees
For more quotes and insights, download the Trellix Network Detection and Response report
JA
Musah Ibrahim - PeerSpot reviewerreviewer2594715 - PeerSpot reviewerAbdullah Al Hadi - PeerSpot reviewerJose Vargas - PeerSpot reviewer
 

Setup Cost

ThreatLocker offers a cost-effective Zero Trust solution with flexible pricing, appreciated for transparency and easy setup across clients.
Trellix Network Detection and Response is perceived as costly, but valued for effective threat detection and competitive pricing.
After conversations with other partners, it became clear we underpriced it initially, which caused most of our issues.
Ryan-Heath
Director, Managed Services at a consultancy with 11-50 employees
We are moving towards the Unified solution, where they basically bundle everything together, providing us better stability with the ability to bring in new product offerings without having to go back to the customer and say, 'This is going to cost you.'
Charles Loveland
Supervisor, Client Security at a consultancy with 11-50 employees
I had a really good deal at the time, and it continues to be cost-effective.
Zubair Khan
Cyber Security Specialist at Bremmar Consulting
For more quotes and insights, download the ThreatLocker Zero Trust Endpoint Protection Platform report
No quotes available
For more quotes and insights, download the Trellix Network Detection and Response report
RH
CL
ZK
 

Valuable Features

ThreatLocker enhances security and reduces costs with application control, instant support, intuitive interface, and comprehensive training resources.
Trellix excels in zero-day threat detection, automatic responses, and enhancing security infrastructure with user-friendly dashboards and sandboxing.
ThreatLocker Zero Trust Endpoint Protection Platform's ability to block access to unauthorized applications has been excellent.
Zubair Khan
Cyber Security Specialist at Bremmar Consulting
It protects our customers.
JinuVarghese
CTO at Zettabytes
The major benefit is fewer breaches overall, as nothing can be run without prior approval. This helps my company protect its data and secure itself effectively.
Devin Loyo
Tier 1 IT Engineer at a retailer with 11-50 employees
For more quotes and insights, download the ThreatLocker Zero Trust Endpoint Protection Platform report
Trellix NDR provides an essential defense by automatically responding to network incidents that firewalls may not catch.
Abdullah Al Hadi
Information Security Engineer at Nhq Distribution Ltd
What makes Trellix Network Detection and Response stand out for me compared to other tools is the way you can detect threats. It is very easy and comfortable to use, and the detection shows clearly on the screen, which is very easy to understand.
Jose Vargas
Agente De Servicios Técnicos at a computer software company with 11-50 employees
For more quotes and insights, download the Trellix Network Detection and Response report
ZK
JV
DL
Abdullah Al Hadi - PeerSpot reviewerJose Vargas - PeerSpot reviewer
 

Categories and Ranking

ThreatLocker Zero Trust End...
Ranking in Advanced Threat Protection (ATP)
6th
Average Rating
9.2
Reviews Sentiment
7.4
Number of Reviews
40
Ranking in other categories
Network Access Control (NAC) (4th), Endpoint Protection Platform (EPP) (6th), Application Control (1st), ZTNA (4th), Ransomware Protection (1st)
Trellix Network Detection a...
Ranking in Advanced Threat Protection (ATP)
12th
Average Rating
8.4
Reviews Sentiment
7.3
Number of Reviews
40
Ranking in other categories
Network Detection and Response (NDR) (10th)
 

Mindshare comparison

As of January 2026, in the Advanced Threat Protection (ATP) category, the mindshare of ThreatLocker Zero Trust Endpoint Protection Platform is 2.7%, up from 1.9% compared to the previous year. The mindshare of Trellix Network Detection and Response is 3.9%, up from 3.8% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Advanced Threat Protection (ATP) Market Share Distribution
ProductMarket Share (%)
ThreatLocker Zero Trust Endpoint Protection Platform2.7%
Trellix Network Detection and Response3.9%
Other93.4%
Advanced Threat Protection (ATP)
 

Featured Reviews

CL
Charles Loveland
Supervisor, Client Security at a consultancy with 11-50 employees
World-class support and highly effective for application control and elevation
Their product is solid. I have a hard time complaining much about it because when we do find little things, they are usually interface-related or related to things that would be nice to have. Their idea portal, unlike so many other vendors we deal with, shows movement. At least four to eight features of ThreatLocker exist because I made a request in the last five years, and it became a feature of the actual product. When it comes to improvements, we moved the product as customers, and we got to move the product by making suggestions. They seem to be very reactive to it, so there is not a whole lot that they actively need to change right now. It is one of those situations where when we run into something that would be nice to have, it happens. They make it work.
Read full review
Jose Vargas - PeerSpot reviewer
Jose Vargas
Agente De Servicios Técnicos at a computer software company with 11-50 employees
Has improved threat detection workflows and supports seamless customer monitoring
The best features Trellix Network Detection and Response offers include very good threat detection, and I believe that it is one of the best XDR tools. For example, ePO and XDR components are very comfortable and similar to many other tools for this type of monitoring, and I have received very good feedback for this tool. What makes Trellix Network Detection and Response stand out for me compared to other tools is the way you can detect threats. It is very easy and comfortable to use, and the detection shows clearly on the screen, which is very easy to understand. Regarding the features, I think that the integration with other platforms is very comfortable with the customer because we can integrate it with any switch or firewall, and it is comfortable to add this tool. Trellix Network Detection and Response has positively impacted my organization as I have improved my knowledge about detection and response. I have already used some other tools such as CrowdStrike and Umbrella, but Trellix is one of the best that I have tested. I believe that for my organization, Trellix has helped a lot with detection and supported our customers effectively. Trellix Network Detection and Response is a great tool that integrates with a lot of security tools such as Palo Alto, which is a good firewall. If you have these types of tools, your organization would benefit greatly.
Read full review
report
See which vendors are best for you
Use our free recommendation engine to learn which Advanced Threat Protection (ATP) solutions are best for your needs.
See recommendations
881,082 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
22%
Retailer
8%
Manufacturing Company
8%
Financial Services Firm
7%
Comms Service Provider
13%
Manufacturing Company
12%
Financial Services Firm
11%
Government
10%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business32
Midsize Enterprise4
Large Enterprise3
By reviewers
Company SizeCount
Small Business20
Midsize Enterprise8
Large Enterprise19
 

Questions from the Community

What do you like most about ThreatLocker Allowlisting?
The interface is clean and well-organized, making it simple to navigate and find what we need.
See all answers
What is your experience regarding pricing and costs for ThreatLocker Allowlisting?
Pricing, setup costs, and licensing have been pretty accessible and manageable. It was not too expensive to get started, especially at a small scale for a smaller MSP. It is very accessible, easy t...
See all answers
What needs improvement with ThreatLocker Allowlisting?
Going with the theme of ThreatLocker Zero Trust Endpoint Protection Platform being a one-stop shop where they have just about everything, and they have a really good product stack as is. However, t...
See all answers
What do you like most about FireEye Network Security?
We wanted to cross-reference that activity with the network traffic just to be sure there was no lateral movement. With Trellix, we easily confirmed that there was no lateral network involvement an...
See all answers
What is your experience regarding pricing and costs for FireEye Network Security?
My experience with pricing, setup cost, and licensing for Trellix Network Detection and Response is very great.
See all answers
What needs improvement with FireEye Network Security?
I would like to see in Trellix Network Detection and Response more explanation about some details of the threat, and I wish it had more actions that you can take to contain the host or move it some...
See all answers
 

Comparisons

CrowdStrike Falcon vs ThreatLocker Zero Trust Endpoint Protection Platform Logo
CrowdStrike Falcon vs ThreatLocker Zero Trust Endpoint Protection Platform
Compared 8% of the time
Airlock Digital Application Control vs ThreatLocker Zero Trust Endpoint Protection Platform Logo
Airlock Digital Application Control vs ThreatLocker Zero Trust Endpoint Protection Platform
Compared 7% of the time
Microsoft Defender for Endpoint vs ThreatLocker Zero Trust Endpoint Protection Platform Logo
Microsoft Defender for Endpoint vs ThreatLocker Zero Trust Endpoint Protection Platform
Compared 5% of the time
SentinelOne Singularity Complete vs ThreatLocker Zero Trust Endpoint Protection Platform Logo
SentinelOne Singularity Complete vs ThreatLocker Zero Trust Endpoint Protection Platform
Compared 5% of the time
ManageEngine Application Control Plus vs ThreatLocker Zero Trust Endpoint Protection Platform Logo
ManageEngine Application Control Plus vs ThreatLocker Zero Trust Endpoint Protection Platform
Compared 4% of the time
More ThreatLocker Zero Trust Endpoint Protection Platform Competitors
Fortinet FortiSandbox vs Trellix Network Detection and Response Logo
Fortinet FortiSandbox vs Trellix Network Detection and Response
Compared 9% of the time
Palo Alto Networks WildFire vs Trellix Network Detection and Response Logo
Palo Alto Networks WildFire vs Trellix Network Detection and Response
Compared 8% of the time
Darktrace vs Trellix Network Detection and Response Logo
Darktrace vs Trellix Network Detection and Response
Compared 5% of the time
Trend Micro Deep Discovery vs Trellix Network Detection and Response Logo
Trend Micro Deep Discovery vs Trellix Network Detection and Response
Compared 5% of the time
Zabbix vs Trellix Network Detection and Response Logo
Zabbix vs Trellix Network Detection and Response
Compared 5% of the time
More Trellix Network Detection and Response Competitors
 

Product Reports

Buyer's Guide
ThreatLocker Zero Trust Endpoint Protection Platform
January 2026
ThreatLocker Zero Trust Endpoint Protection Platform reportDownload ThreatLocker Zero Trust Endpoint Protection Platform product report
Buyer's Guide
Trellix Network Detection and Response
January 2026
Trellix Network Detection and Response reportDownload Trellix Network Detection and Response product report
 

Also Known As

Protect, Allowlisting, Network Control, Ringfencing
FireEye Network Security, FireEye
 

Overview

ThreatLocker Zero Trust Endpoint Protection Platform empowers organizations with application control, selective elevation, and ring-fencing to enhance security and prevent unauthorized access.

ThreatLocker provides comprehensive security management using application allowlisting to ensure only approved software operates across servers and workstations. The platform's centralized management simplifies security processes by consolidating multiple tools, and its robust capabilities align with zero-trust strategies by actively blocking unauthorized applications and ensuring compliance. Users note intuitive features such as mobile access, helpful training resources, and responsive support, which effectively reduce operational costs and help desk inquiries. The managed service providers prefer ThreatLocker to maintain network integrity by preventing malicious scripts and unauthorized access attempts. However, users identify room for growth in training and support flexibility, the interface, and certain technical challenges like network saturation from policy updates.

What are the most important features?
  • Application Control: Ensures only approved applications can be executed, minimizing security risks.
  • Selective Elevation: Provides granular control over application permissions without compromising security.
  • Ring-Fencing: Isolates applications to limit possible damage from compromised software.
  • Comprehensive Blocking: Blocks unauthorized applications, supporting zero-trust strategies.
  • Centralized Management: Offers a unified platform for managing security tools efficiently.
What benefits should users look for in reviews?
  • Intuitive Interface: Simplifies complex security processes, making them manageable for non-expert users.
  • Reduced Operational Costs: Minimizes resource expenditure through effective security management.
  • Enhanced Security: Provides robust protection against unauthorized access and malicious scripts.
  • Responsive Support: Offers quick and effective assistance to minimize downtime and issues.

Organizations utilize ThreatLocker for application allowlisting, ensuring only authorized software operates to prevent unauthorized access efficiently. Deployed across servers and workstations, its features support zero-trust principles and are favored by managed service providers for application management and network integrity.

ThreatLocker

Detect the undetectable and stop evasive attacks. Trellix Network Detection and Response (NDR) helps your team focus on real attacks, contain intrusions with speed and intelligence, and eliminate your cybersecurity weak points.

Trellix
 

Sample Customers

Information Not Available
FFRDC, Finansbank, Japan Advanced Institute of Science and Technology, Investis, Kelsey-Seybold Clinic, Bank of Thailand, City of Miramar, Citizens National Bank, D-Wave Systems
Buyer's Guide
ThreatLocker Zero Trust Endpoint Protection Platform vs. Trellix Network Detection and Response
December 2025
Free Report: ThreatLocker Zero Trust Endpoint Protection Platform vs. Trellix Network Detection and Response
Find out what your peers are saying about ThreatLocker Zero Trust Endpoint Protection Platform vs. Trellix Network Detection and Response and other solutions. Updated: December 2025.
DOWNLOAD NOW
881,082 professionals have used our research since 2012.
See our ThreatLocker Zero Trust Endpoint Protection Platform vs. Trellix Network Detection and Response report.
See our list of best Advanced Threat Protection (ATP) vendors.

We monitor all Advanced Threat Protection (ATP) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.