I use it for cloud workload protection and threat detection in AWS environments.
CrowdStrike Falcon Endpoint Protection
CrowdStrikeExternal reviews
408 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Powerful Cloud-Native EDR with Seamless Performance
What do you like best about the product?
I appreciate its cloud-native architecture and the single lightweight agent that provides powerful EDR capabilities without impacting system performance.
What do you dislike about the product?
What I dislike is the high licensing cost and the steep learning curve required to master its complex management console.
What problems is the product solving and how is that benefiting you?
It eliminates security silos and stops breaches using AI-driven detection while maintaining peak system performance.
Robust Security, But Navigation Needs Improvement
What do you like best about the product?
I like that CrowdStrike Falcon Endpoint Protection Platform shows a lot of statistics and offers a variety of ways to view these statistics. It allows me to dig down into an event to find the details I need.
What do you dislike about the product?
Some of the views are convoluted, and it's difficult to navigate around the site. I find it hard to remember how I got to a specific page with a certain layout of information.
What problems is the product solving and how is that benefiting you?
CrowdStrike Falcon Endpoint Protection Platform flags potential harmful apps, malware, and behaviors on user computers, helping me manage cybersecurity and threat protection efficiently.
Crowdstrike EDR Review
What do you like best about the product?
Uses AI and behavioural analytics, not just signatures, so it catches zero‑days, fileless attacks and lateral movement much better than legacy AV.
Real‑time monitoring and rapid cloud updates mean endpoints are protected without constant manual definition updates
Real‑time monitoring and rapid cloud updates mean endpoints are protected without constant manual definition updates
What do you dislike about the product?
Some customers dislike that every enhancement or new module feels like an extra line item, making budgeting and renewals more complex.
What problems is the product solving and how is that benefiting you?
Uses machine learning, behavior analytics, and exploit detection to stop malware‑less and zero‑day attacks that signature AV often misses and Optional managed threat hunting and always‑on detections help catch stealthy attacks even when internal teams are offline.
Cloud threat visibility has improved and now supports flexible, low-overhead protection for startups
What is our primary use case?
How has it helped my organization?
The pay-as-you-go model enabled me to deploy quickly from the AWS Marketplace management account.
It scaled protection for workloads without upfront commitments and reduced the initial operational overhead.
It provides real-time visibility into cloud threats, helping stop breaches faster in dynamic AWS setups.
What is most valuable?
I find the seamless AWS integration and single lightweight agent to have minimal performance impact.
The cloud-native SIEM and runtime security leverages threat intelligence for proactive detection.
Flexible billing through AWS is ideal for startups testing security without long-term locks.
What needs improvement?
I believe that AI-powered SOAR workflow suggestions could streamline incident response.
For how long have I used the solution?
I have been using it for 1 month.
Which solution did I use previously and why did I switch?
We are a new startup, so we did not use any previous solutions.
What's my experience with pricing, setup cost, and licensing?
The pay-as-you-go model excels for startups with variable AWS workloads, avoiding large upfront costs and scaling with usage.
Which other solutions did I evaluate?
I evaluated Prisma Cloud, Wiz, and Orca Security alongside native AWS options.
What other advice do I have?
CrowdStrike Falcon for AWS (pay-as-you-go) delivers strong cloud-native protection via AWS Marketplace, which is ideal for startups scaling workloads.
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Amazon Web Services (AWS)
Strong Protection with a Few Trade-Offs
What do you like best about the product?
What I appreciate most about CrowdStrike Falcon is its robust protection combined with minimal operational overhead. The software runs efficiently on endpoints, yet still delivers highly effective detection and response capabilities against modern threats. I also find the visibility it offers to be valuable. The alerts are comprehensive, making investigations more straightforward, and the timeline feature allows us to quickly grasp incidents and respond accordingly. Overall, it enables our security team to react more swiftly without the need for constant agent management.
What do you dislike about the product?
The primary downside is the expense, particularly when additional modules are required. Setting up the system initially can be time-consuming as it takes effort to minimize unnecessary alerts. Additionally, the investigation workflow may be challenging for newcomers, as it comes with a learning curve.
What problems is the product solving and how is that benefiting you?
CrowdStrike Falcon assists us in detecting and stopping endpoint threats such as malware and ransomware, allowing us to respond swiftly. It provides us with clear visibility, enables faster investigations, and offers centralized control, making it easier to contain incidents while reducing the amount of operational effort required.
Effortless Protection with User-Friendly Interface
What do you like best about the product?
Crowdstrike falcon is a multi feature edr platform that replaces traditional antivirus platforms using a single light weight agent. Its menu navigation is very user friendly and clear. The agent in a single file installation and implementation which can be performed within 30 minutes or less. The EDR module protects the workstations within the end users day to day functions and can be further used freqently for scanning stand alone devices such usb drives, pen drives, etc.
What do you dislike about the product?
The cost is towards the high end even for corporates compaied to most top tier edr products and the behavioral AI tends to cause false positives at times
What problems is the product solving and how is that benefiting you?
The Agent stops invisible attacks where the attackers use fileless malware, stolen credentials and powershell commands that dont leave fingerprints. The behavioral indicators of attack is used by Crowdstrike for isolating zero day attcks where threat has not been seen as yet and further most other competitive edr platform suites are notoriously heavy on processing power, ram usage, disk usage and other resource consumption the falcon uses an all-in-one single light weight agent which is under 50MB on the workstation agent and the rest of the processing done on cloud. This is a huge plus for corporates where it does not take additional capex for upgrading workstations for runnning the agent.
Unified Detection and Lightweight Performance with High-Precision AI
What do you like best about the product?
Unified detection ,prevention and Response.
High Precision detection through AI.
Light Weight and low resource impact
High Precision detection through AI.
Light Weight and low resource impact
What do you dislike about the product?
More support required for Fusion SOAR operations
What problems is the product solving and how is that benefiting you?
Detecting Sophisticated Threats Beyond Traditional Signatures
Enabling Real-Time Visibility and Action Across Endpoints
Improving Threat Hunting and Expert Analysis
Enabling Real-Time Visibility and Action Across Endpoints
Improving Threat Hunting and Expert Analysis
A must to have EDR solution in the Infrastructure
What do you like best about the product?
CrowdStrike Falcon have user friendly dashboard, have a stable agent, gives less false positives, provides detailed analysis of the incident and it is very feasible to integrate with other tools.
What do you dislike about the product?
I don't see something to dislike other than the bizarre incident that happened last year. Other than that cost is a factor to dislike, but it is worth the money I would say.
What problems is the product solving and how is that benefiting you?
With the traditional antivirus going obsolete, EDR solution is what is replacing those and with CrowdStrike threat analysis feature, it is giving very much detailed analysis for any threats, proactive alerts and ultimately creating a safe and secure infrastructure.
Easy Setup and Smooth Performance, but Room for Improvement
What do you like best about the product?
Setting up the product is very easy and straightforward. It begins working almost immediately and generally has little impact on system performance. The cloud console is also user-friendly and, in my experience, more pleasant to use than those offered by some competitors.
What do you dislike about the product?
Being fully cloud-based has its advantages and drawbacks. The main downside is the limited functionality available when offline, which leaves endpoint agents with few options in situations like remote work locations or while traveling on airplanes. Additionally, the device control features are not as robust as I expected, especially considering the price, which is disappointing.
What problems is the product solving and how is that benefiting you?
This product offers consistent endpoint protection along with certain features for managing device fleets.
Proactive threat hunting has improved breach prevention and now provides deeper endpoint visibility
What is our primary use case?
I deal with endpoint security, firewall, and XDR solutions. I use Sangfor and work with Trend Micro and CrowdStrike. I use CrowdStrike Falcon for enterprise companies, which is what I typically recommend.
How has it helped my organization?
CrowdStrike Falcon has helped my customers predict and prevent potential breaches because of its proactive approach.
What is most valuable?
The most valuable features in CrowdStrike Falcon are its AI capabilities. The lightweight agent has a positive impact on system performance and visibility through ease of use. I utilize its Threat Graph for threat hunting.
What needs improvement?
To improve my recommendation to a perfect score, I would focus on better selling skills and improved integration with different vendors.
For how long have I used the solution?
I have been working with CrowdStrike Falcon for approximately five years.
Which solution did I use previously and why did I switch?
I have previously worked with a Total Information Management Corporation solution.
Which other solutions did I evaluate?
I work with competitors as well, and there is good competition to Sangfor at the moment.
What other advice do I have?
I have experience with these products from prior use. I work with security vendors and some of my customers use Trend Micro and CrowdStrike as well. My experience has been positive and I have been satisfied. The pricing might be a little expensive, but I find it cost-effective. I do not find CrowdStrike Falcon to be the most expensive when comparing pricing with competitors. I would rate this solution an 8 out of 10.
showing 21 - 30