CrowdStrike Falcon Endpoint Protection
CrowdStrikeExternal reviews
409 reviews
from
and
External reviews are not included in the AWS star rating for the product.
A Powerful antivirus for the endpoint devices.
What do you like best about the product?
The most liked about this product is powerful endpoint detection within deeply detailed information about the incidents which helps our Security team to deep down into the issue. Which helps our teams productivity.
What do you dislike about the product?
We haven't faced any problems. Since we started using the prodcut.
What problems is the product solving and how is that benefiting you?
Improved our organisation security level.
Protecting Company Assets using Crowdstrike
What do you like best about the product?
One of the best features of Crowdstrike is being able to receive live updates on possible malicious events.
What do you dislike about the product?
We are still discovering the failure points in this monitoring solution.
What problems is the product solving and how is that benefiting you?
We have been able to detect several potential threats to our employee's machines.
Low resource usage, great visibility
What do you like best about the product?
Very detailed logging / monitoring and behavioral analysis. Pretty low resource usage although at times scans have slowed down certain operations and on to production machines we've had to just put them on separate other than install crowdstrike.
What do you dislike about the product?
Sometimes scans have slowed machines down when it's a scan triggered by large numbers of files being copied or deleted at once and on some production machines we've had to just put them on restricted vlan rather than install crowdstrike.
What problems is the product solving and how is that benefiting you?
We were finally able to phase out forticlient completely (yay!) Crowd strike is a part of our security architecture and works well with the pans
Great experience
What do you like best about the product?
Falcón crowdstrike it's a great solution for endpoint security, one of my preferred features is the option to isolate a compromised host and be able to run commands in the same computer
What do you dislike about the product?
The vulnerabilities option stop the task if you log out because of idle time
What problems is the product solving and how is that benefiting you?
The security for al my endpoints and servers, and the suspicious activity monitoring
Recommendations to others considering the product:
I recommen falcon, because it is a robust solution for EDR, which everyday it's achieving more goals in the market, it's an all in one solution, which bring control and security over your entire computers in the network
The Best AV we have used so far
What do you like best about the product?
CrowdStrike Falcon is one of the best AVs we have gone through it. We have mostly liked the lightweight agent with less memory consumption agent at the endpoint level. AI-Based detection is the core feature of this AV.
What do you dislike about the product?
Just perfect and meeting our requirements.
What problems is the product solving and how is that benefiting you?
The benefit we have realized is the Dashboard which provides a lot of information that helps our security team to deep down into it and be able to achieve and protect our environment.
Must have solution for Endpoint protection
What do you like best about the product?
Protection against zero-days
easy to deploy
highly reliable
It doesn't rely on signatures
easy to deploy
highly reliable
It doesn't rely on signatures
What do you dislike about the product?
Add-on Features will going to add up the cost
It certainlly requires some false positive tuning intially but as you progress, it works like a charm
It certainlly requires some false positive tuning intially but as you progress, it works like a charm
What problems is the product solving and how is that benefiting you?
Zero Days protection against malware and ransomware
Realtime endpoint threat detection and remediation
Centralized console to manage the whole program
Ability to create custom rules to block or allow certain files
Realtime endpoint threat detection and remediation
Centralized console to manage the whole program
Ability to create custom rules to block or allow certain files
Crowd Strike Flacon X Threat Intelligence solution
What do you like best about the product?
Falcon X it's ease to use and powerful tool. Low false positive hit.
What do you dislike about the product?
No direct connection with web portal threat actor name and real threat actor
What problems is the product solving and how is that benefiting you?
Integration of SIEM information with intelligence information
Great Endpoint Protection with leading technology
What do you like best about the product?
Ease of deployment and analytics of console to view and consolidate informatoin.
What do you dislike about the product?
Crowdstrike does not currently have many items to dislilke. I use every module from CS the only item I found that is a little Clunky is the Event Search which requires some splunk background
What problems is the product solving and how is that benefiting you?
Complete Endpoint protection for all our Assets, including Mac, Linux, Windows that has a simple agent that provides much more than just an ordinary virus/malware or malicious activity for the endpoint. CS is providing inventory mgmt pieces as well as looks at software installed. We also have the Complete piece with Crowdstrike that provides a fully backend MSP that takes care of all our needs.
Recommendations to others considering the product:
take it for a test drive. Crowdstrike is the leading company in this area right now and nothign compares.
The best machine learning technology and the best anti malware tech
What do you like best about the product?
it has one of the most massive Deployments, grear enpoint protection
What do you dislike about the product?
vulnerability management is not that great, the small things are missing such as Ip determination etc
What problems is the product solving and how is that benefiting you?
i have delpoyed it for security solutions, and i have relaized that it has one of the best endpoint protections , extensive api's , great cloud visiblity
Recommendations to others considering the product:
go for it for the great endpoint protection and cloud visiblity and extensive api's, it has strong edr capabilities.it is highly customisable. thougj it dosnt have a lot of features it is one of the best in the markets., also the vulnerability management is not that great . however it is highly recommended
I recommend the CrowdStrike to organizations to protect their endpoint devices from cyberattacks
What do you like best about the product?
1. Dashboard Flexibility - we can get a clear picture of what's going in the network environment. Mainly, the incident and detections widgets are very important. The overall scoring of incidents will be crucial to understand how safe the network is. Additionally, the mitre tactics will be clearly displayed. The home screen search gives flexibility for the analysts to quickly check for IP/hostname/file details within seconds.
2. Incident Scoring - it will trigger with an indication of critically scoring out of 10. The incident details are, with flow-based and behavioral-based pre-analysis will be given. Each stage of flow will be represented with a full description, block action, and mitre attack mapping.
3. Detection Mechanism - mainly focuses on file-based detection, which comes with a lot of filters where we can filter will hostname, filename, mitre tactic, block action, severity, etc.
4. Event Search - All the Investigate search fields help to search each and every event.
5. Overwatch alerting - are a more important part of monitoring. The critical true positive incidents will trigger as overwatch. The probability of getting true positive incidents is very high.
6. Finally, the Support team of crowdstrike will also keeps eye on the critical things happening in our environment and notify us.
2. Incident Scoring - it will trigger with an indication of critically scoring out of 10. The incident details are, with flow-based and behavioral-based pre-analysis will be given. Each stage of flow will be represented with a full description, block action, and mitre attack mapping.
3. Detection Mechanism - mainly focuses on file-based detection, which comes with a lot of filters where we can filter will hostname, filename, mitre tactic, block action, severity, etc.
4. Event Search - All the Investigate search fields help to search each and every event.
5. Overwatch alerting - are a more important part of monitoring. The critical true positive incidents will trigger as overwatch. The probability of getting true positive incidents is very high.
6. Finally, the Support team of crowdstrike will also keeps eye on the critical things happening in our environment and notify us.
What do you dislike about the product?
1. More focused on only file-based executions.
2. Machine Learning based detections throw more false positives. Unnecessary blocking of genuine executions will sometimes impact business.
3. For Endpoints protection, it can have the best alternatives with the best features like Microsoft ATP, Zscalar.
2. Machine Learning based detections throw more false positives. Unnecessary blocking of genuine executions will sometimes impact business.
3. For Endpoints protection, it can have the best alternatives with the best features like Microsoft ATP, Zscalar.
What problems is the product solving and how is that benefiting you?
1. File-based detections is the biggest positive in Crowdstrike.
2. Overwatch alerts will be the most probably true positive incidents. It will alarm in the CS console as well as in the mail.
3. We can see what all applications installed in the user's machine.
4. Almost 65% percent of work will be done by crowdstrike itself without analyst intervention.
2. Overwatch alerts will be the most probably true positive incidents. It will alarm in the CS console as well as in the mail.
3. We can see what all applications installed in the user's machine.
4. Almost 65% percent of work will be done by crowdstrike itself without analyst intervention.
Recommendations to others considering the product:
I strongly recommend the Crowstrike to organizations to protect their endpoint devices from cyberattacks. Almost all the major incidents can be mitigated with this Endpoint protection.
showing 141 - 150