What is the best endpoint software that will protect from ransomware?
There are 2 that come to mind and both are reasonably priced. Below is my opinion from my experiences.
Sophos Intercept X and Carbon Black are great. There are others who do a great job as well. We have talked with both Sophos and Carbon Black, did demos and we have enjoyed learning their practices. Sophos has a layer of data loss protection (DLP) as well. Carbon Black has a lot of levers you can tweak. Both of them, out of the box, provide ransomware protection. Both have claimed that none of their customers have been hit by ransomware, which could just be a marketing pitch - I can't verify. Having talked to a couple companies who have been hit by ransomware, I know they opted for one of these products.
One acquired-organization I know had Sophos Intercept X. Their parent company got hit with ransomware and the ransomware couldn't impact the acquired-organization. Sophos Intercept X prevented that negative impact. Carbon Black has similar stories as well.
If you have a security admin, they'll love Carbon Black. If you don't have security admin, whoever is deploying endpoint protection will love Sophos. Sophos throws in free home user licenses to safeguard your employee and their family. Carbon Black may have something similar, I don't know.
I'd say, start with a demo of both and see which one you like. They both have add-ons that can additionally secure your organization. One comes to mind is an encryption piece that Sophos has that allows you to encrypt laptops from a central location and record compliance. Both have phishing add-ons to test employees on their abilities to keep their guard up, and to train them also.
Before anyone goes out and spends a dime on a product to prevent ransomware they need to make sure they are doing all the basics and fundamentals. I dealt with 100s of victims and none of them had clean hygiene.
Check out this document first: