CrowdStrike Falcon Endpoint Protection
CrowdStrikeExternal reviews
408 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Lightweight, Powerful Security with Seamless Cloud Integration
What do you like best about the product?
The best part is how Falcon balances power and simplicity. Many endpoint solutions are either too heavy or too fragmented. Falcon’s single-agent, cloud-native approach solves both problems: it’s lightweight for users yet comprehensive for security teams.
What do you dislike about the product?
CrowdStrike Falcon is widely praised for its powerful detection and lightweight agent, but what people dislike most are the high costs, cloud dependency, and occasional complexity in management and reporting. These drawbacks don’t negate its strengths, but they do highlight areas where organizations need to weigh trade-offs before adoption.
What problems is the product solving and how is that benefiting you?
Falcon solves the visibility, speed, and complexity problems of endpoint security, and the benefit is a safer, more efficient, and less disruptive IT environment
Lightweight Agent, Robust Security Insight
What do you like best about the product?
I really appreciate how lightweight the agent of CrowdStrike Falcon Endpoint Protection Platform is; it's so unobtrusive that I barely notice it's running on my machines. Over the past three years, I haven't experienced any cybersecurity issues, which speaks volumes about the platform's effectiveness. Additionally, I find the platform’s use of sensor-based technology with Charlotte AI particularly impressive, as it aligns well with our strategic vision and roadmap. We are even considering adding more modules, like Identity and Access Management (IDAM), during upcoming renewals due to our positive experience so far.
What do you dislike about the product?
I find the real-time monitoring through the command-line interface to be a bit challenging and not as user-friendly as expected. The firewall functionality within CrowdStrike Falcon sometimes does not work as expected, which can be frustrating. I am also disappointed with the delayed response from customer support when I raise tickets. The initial setup and deployment were quite tough, especially managing the deployment manually on 3000 assets without an Active Directory push. This manual process, including setting group tags and tagging against each location, was very time-consuming.
What problems is the product solving and how is that benefiting you?
I find the product protects our assets from malicious attacks and provides machine insights while being lightweight and efficient with no cybersecurity issues encountered in three years.
Lightweight, Powerful Protection with Seamless Cloud Management
What do you like best about the product?
Best part about Crowdstrike falcon is its lightweight agent and strong real timedetectio. It runs smoothly without slowing systems and the alerts are clear and easy to act on. The dashboard gives good visibility into endpoint activity and being able to manage everything the cloud has made our response time much faster
What do you dislike about the product?
Pricing can feel a bit high, especially when adding extra modules. Some advanced features also need a learning curve, and the initial configuration can be slightly overwhelming for new users.
What problems is the product solving and how is that benefiting you?
CrowdStrike Falcon has helped us improve endpoint security by detecting threats in real time and reducing the risk of malware spreading across devices. It has also minimized manual investigation time, as alerts are detailed and easy to act on. Being able to manage and respond remotely has saved a lot of effort for our team and improved overall incident response speed.
Critical Endpoint Protection with Easy Configuration
What do you like best about the product?
I find the Network Containment feature of the CrowdStrike Falcon Endpoint Protection Platform to be particularly valuable. It plays a crucial role in protecting sensitive data, especially when an employee is leaving the organization. By locking USB access and stopping network connections, it ensures that data transfer is avoided, which is a significant security advantage. Additionally, I appreciate that the setup of the CrowdStrike Falcon Endpoint Protection Platform is easy to configure, which helps in swift implementation without complexity.
What do you dislike about the product?
I think they need to reduce the price for XDR.
What problems is the product solving and how is that benefiting you?
n/a
Robust Endpoint Security with Seamless, Signature-Free Protection
What do you like best about the product?
Crowdstrike Falcon Support for Endpoint Security protects against Malware & other virus protection without signature & auto update features
What do you dislike about the product?
Improve UI
Improve AI feature
Improve Performance
Improve AI feature
Improve Performance
What problems is the product solving and how is that benefiting you?
Protect against the vulnerability & Virus protection
Review of Real-Time Threat Detection and Effortless Endpoint Protection
What do you like best about the product?
CrowdStrike Falcon is a cloud-based endpoint protection platform that provides real-time threat detection, automated response, and centralized management. It uses AI to quickly identify and stop threats, and its lightweight agent works efficiently across all devices.
What do you dislike about the product?
CrowdStrike Falcon is powerful but has some drawbacks: it can be expensive, sometimes gives false alerts, is complex to uninstall, and its interface can be overwhelming for new users. It also relies on the cloud, so offline use is limited, and some advanced features require extra licenses.
What problems is the product solving and how is that benefiting you?
CrowdStrike Falcon protects devices from malware, ransomware, and advanced attacks using real-time detection and automated response. It gives organizations better visibility, faster threat containment, and simplified management—all through a single cloud-based platform.
Excellent EDR platform for your Organization
What do you like best about the product?
Provides very good protection for Windows and Linux. East to manage. Clean UI and policy management is also very much feasible.
What do you dislike about the product?
It is not very good for MAC endpoints. not giving much detection. Also not providing end user system remote access in UI.
What problems is the product solving and how is that benefiting you?
It is providing protection in my end user systems and servers. Also if needed they provide the CLI remote access of endpoints for any type of actions. Moreover, it also provides the sandboxing facility for malware analysis and the impact. Their cyber actor module provides the latest active malware family details for threat hunting.
Real-Time Threat Detection That Delivers
What do you like best about the product?
It provide the real-time threat detection.
What do you dislike about the product?
Sometimes it generates false positive alerts.
What problems is the product solving and how is that benefiting you?
It helps to detect, prevent, and respond to advanced endpoint threats in real time.
Advanced and effective protection against threats on endpoints
What do you like best about the product?
The ability to identify and stop advanced threats in real time, preventing them from spreading, is remarkable.
What do you dislike about the product?
The cost of the license is high, which can represent a barrier for medium or small-sized organizations.
What problems is the product solving and how is that benefiting you?
CrowdStrike Falcon solves the problem of lack of visibility and late threat detection on endpoints. With its real-time monitoring and cloud-based rapid response capability, we are now able to identify and contain incidents much more efficiently.
Powerful and Reliable Endpoint Protection for Modern SOC Operations
What do you like best about the product?
What I like best about CrowdStrike Falcon is how fast and reliable it is when detecting threats. Just recently, it flagged a suspicious PowerShell script running on one of our endpoints. Within minutes, we had a full timeline of the activity, including the parent process and command line details. That helped us respond quickly and avoid any impact.
As a SOC analyst , I also appreciate how easy it is to navigate. The interface is clean, and the alerts are well-organized, which makes it easier to learn and understand real-world attack patterns. It doesn’t just throw alerts—it gives context, which is super helpful when you're still building your skills.
As a SOC analyst , I also appreciate how easy it is to navigate. The interface is clean, and the alerts are well-organized, which makes it easier to learn and understand real-world attack patterns. It doesn’t just throw alerts—it gives context, which is super helpful when you're still building your skills.
What do you dislike about the product?
While CrowdStrike Falcon is a powerful and reliable platform, some features can be a bit overwhelming for new users. It takes time to get used to the interface and understand how to use all the modules effectively. Also, the filtering options in the investigation tab could be improved—sometimes it's hard to narrow down alerts quickly when you're dealing with a large volume.
A helpful improvement would be to make the search and filtering more flexible and user-friendly, especially in the event timeline and process tree views. That would make investigations faster and smoother, especially for SOC teams handling multiple incidents.
A helpful improvement would be to make the search and filtering more flexible and user-friendly, especially in the event timeline and process tree views. That would make investigations faster and smoother, especially for SOC teams handling multiple incidents.
What problems is the product solving and how is that benefiting you?
CrowdStrike Falcon helps us solve one of the biggest challenges in cybersecurity: detecting and responding to threats in real time across multiple endpoints. Before using Falcon, it was hard to get visibility into what was happening on devices, especially during suspicious activity. Now, we can track everything—from process execution to network connections—with detailed timelines and context.
As a SOC analyst trainee, this has been a huge benefit. It allows me to learn from real incidents while contributing to investigations. The platform also helps reduce false positives, so we can focus on actual threats instead of wasting time chasing noise. Overall, it’s made our team faster, more efficient, and more confident in our response.
As a SOC analyst trainee, this has been a huge benefit. It allows me to learn from real incidents while contributing to investigations. The platform also helps reduce false positives, so we can focus on actual threats instead of wasting time chasing noise. Overall, it’s made our team faster, more efficient, and more confident in our response.
showing 21 - 30