We use CrowdStrike Falcon for both our server and endpoint security, including our users' laptops and PCs.
External reviews
340 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Automatically takes immediate action whenever it detects suspicious activity
What is our primary use case?
How has it helped my organization?
CrowdStrike Falcon has made a significant difference for us, especially in mitigating ransomware and zero-day attacks. Its proactive and defensive response approach effectively isolates threats, setting it apart from other endpoint solutions.
Integrating CrowdStrike Falcon into our environment was seamless. Once we set the policy the software was activated immediately and distributed on all our endpoints.
The real-time response is highly effective. It automatically takes immediate action whenever it detects suspicious activity, alerting us to the problem and providing clear mitigation steps. In some cases, it even pushes through updates to resolve the issue proactively.
The usability and interface of CrowdStrike Falcon for daily operations are good.
What is most valuable?
The managed services are distinguished, responsive, dynamic, flexible, and assertive when taking action.
What needs improvement?
CrowdStrike Falcon could be enhanced by extending its security capabilities to include NDR and XDR.
The pricing has room for improvement.
For how long have I used the solution?
I have been using CrowdStrike Falcon for three years.
What do I think about the stability of the solution?
In the three years of using CrowdStrike Falcon, we have not encountered any stability issues.
What do I think about the scalability of the solution?
CrowdStrike Falcon scales well. We are using it in a large environment with no problems.
How are customer service and support?
The technical support is responsive.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
We previously used both Symantec Endpoint Detection and Response and Kaspersky Endpoint Detection and Response but found that they lacked the 24/7/365 monitoring and response offered by CrowdStrike Falcon. Additionally, their detection capabilities, particularly for ransomware and zero-day attacks, were not as effective.
How was the initial setup?
The initial deployment was straightforward and non-disruptive. The deployment took one week to complete.
We required two people from our organization for the deployment on-site and the CrowdStrike team worked remotely.
What about the implementation team?
The CrowdStrike team helped with the implementation.
What's my experience with pricing, setup cost, and licensing?
CrowdStrike Falcon is one of the more expensive endpoint solutions on the market.
What other advice do I have?
I would rate CrowdStrike Falcon an eight out of ten.
We deployed CrowdStrike Falcon across all our locations, including subsidiaries and remote sites in various regions.
Maintaining CrowdStrike Falcon is simple because it only requires a client agent to be installed on the machine at the kernel level, below the operating system.
Makes investigation easy and has a lightweight agent
What is our primary use case?
We are using it as an EDR solution for endpoint protection.
How has it helped my organization?
Everything is changing rapidly nowadays, and new threats can come into the organization from any source. I have found this product to be very useful.
If I want to drill down into an unusual activity or something else, I can do that. I can go deep into what processes were involved, what network operations were involved, and what unauthorized users wanted to do. I can see how CrowdStrike processed and blocked the operation. The investigation is very easy for me. I can go to the tree level and see what is going on. It is very useful.
What is most valuable?
The CrowdStrike Falcon agent is very lightweight. Users never complain about their PCs getting stuck and things like that. In my previous experience, when anything was getting scanned, our PCs would become slow. Users would complain about PCs getting slow. This is a positive point of CrowdStrike Falcon.
What needs improvement?
The dashboard area must be improved. We have integration with Splunk, and we are creating a dashboard there. Their dashboard area must be up to date. It should have more details and more options to create the reports and things like that.
I have some concerns about their support. I am not happy or satisfied with their support. Something happened, and we opened a ticket. Their support engineer just vanished, and after a month, he came back and told us that he was off work and could not pursue the ticket. He said that he now has the time, but logs are gone because there is a time limit. We were asked to repeat the test. This is very unusual for me.
For how long have I used the solution?
In my organization, we have been using it for the last one and a half years. I have been using it for the last two to three months because I recently joined the organization.
What do I think about the stability of the solution?
From my understanding and observation, it is a stable product, but I have been using this product only for the last two to three months. I am just in the learning phase.
What do I think about the scalability of the solution?
We have almost 3,000 users using this solution.
How are customer service and support?
I would rate CrowdStrike's support team a three out of ten. Their support is unacceptable for us. We are doing some testing ourselves. When we found an issue where CrowdStrike should have blocked something but did not, we opened a ticket with CrowdStrike. They tried to communicate with us and looked at the files that we shared. We had updated signatures, and we shared with them the SHA values, but after that, they suddenly vanished. Just two days ago, I got an email from them that the engineer was on leave and he is back now. They asked us to perform the activity again, which is unacceptable.
When any issue happened with Symantec, we opened a ticket, and they would accept their mistake if something was not caught by Symantec. They would then update the definitions and send us the latest updates. This is the way to work on the latest technology trends.
How would you rate customer service and support?
Negative
Which solution did I use previously and why did I switch?
I have experience with Symantec endpoint protection. As compared to Symantec, CrowdStrike is a very good product. I have also worked with Microsoft Defender.
What other advice do I have?
Every product has some advantages and disadvantages. I have worked with Microsoft Defender and Symantec, and now, I am working with CrowdStrike. Every organization's needs are very different. It depends on what the organization wants. For example, the security requirements of the banking sector are very high. The banking sector has different requirements, the retail sector has different requirements, and a software development organization has different requirements. An organization should weigh the pros and cons and decide based on the requirements.
Overall, I would rate CrowdStrike Falcon an eight out of ten.
Which deployment model are you using for this solution?
Public Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Other
The excellent endpoint protection solution
What do you like best about the product?
The best feature of crowdstrike falcon is that it is very easy to use and manage and works in offline mode also and the product implementation was very easy the customer support was also helpfull.
What do you dislike about the product?
crowdstrike falcon is premium endpoint prtection solution so it is very costly compare to other solutions and sometimes its detection engine detects number of false positives.
What problems is the product solving and how is that benefiting you?
it is helping me to protect my endpoints from ransomware attacks that i was worried for and protecting my whole network from sophosticated attacks and safeguarding me from attackers.
Essential-Falcon End Protection
What do you like best about the product?
Advance Threat detection, endpoint visibility, scalability and flexibility.
What do you dislike about the product?
Cost of implementation and ongoing subscription fees , dependency like it's relies on consistent internet connectivity
What problems is the product solving and how is that benefiting you?
Enhance incident response, allowing proactive measures against potential risks, real-time visibility
A powerful tool for monitoring and threat protection
What do you like best about the product?
I am using CrowdStrike Falcon Endpoint protection on my office laptop and I have to say the product is overall great for blocking the traffic both internal and external along with tracing any other malicious activity.
What do you dislike about the product?
Some organizations may find the price of CrowdStrike Falcon's premium endpoint security solution to be on the expensive side. Also, compared to some other endpoint security solutions, CrowdStrike Falcon's support can be improved.
What problems is the product solving and how is that benefiting you?
CrowdStrike Falcon Endpoint Protection can be considered as one of the top options for a cybersecurity tool with real-time capabilities, threat detection, monitoring, and blocking. Its threat detection is excellent keeping our organization devices safe.
the best AV - next gen
What do you like best about the product?
light weight agent, less number of false positive
What do you dislike about the product?
Process of removing duplicates could be better
What problems is the product solving and how is that benefiting you?
The EDR solution of Crowdstrike is best in the market as per me, The sandboxing and threat analysis feature reduce lot of effort for the administrators.
Best Next Gen EDR with Powerful Threat Intel and Remediation
What do you like best about the product?
The User interface and the threat modelling and the detection techniques are very good compared to the competitors within the market. Threat remediation and automation/playbooks is finest.
What do you dislike about the product?
a bit of complex integration with the other products in the market. Like SIEM and other analytics tools. Reporting should be developed much more to give meaningful insights.
What problems is the product solving and how is that benefiting you?
It is protecting our endpoints against the latest and complex threats in the cyber space. Threat remediation is being easily handled via playbooks/isolation controls.
All rounder EDR with good support
What do you like best about the product?
Falcon records a great detail of events and in case of a detection or investigating a process activity, the host search comes in super handy with classification of events.
What do you dislike about the product?
Being a cloud instance it's a bit slow to load results for my environment. For example if I'm looking for hosts with a particular application installed, it does take a few minutes or even more (depending upon the total count of assets, in the example I described the count was over 100k)
What problems is the product solving and how is that benefiting you?
Crowdstrike does provide instant support whenever a support case is raised. Sometimes it takes more than a few back and forths, however I've realized they always do respond very quickly.
Excellent product
What do you like best about the product?
Dashboard is amaxing and product outcome is useful
What do you dislike about the product?
Nothing. I liked almost all the features
What problems is the product solving and how is that benefiting you?
Protect
Relatime detection of threats and protection is the key differentiator
What do you like best about the product?
Very light endpoint agent, near realtime update from cloud on threat. Effective detection and protection. Mapping of overall threat view based on MITTRE ATTACK.
What do you dislike about the product?
Ability to detect non complaince endpoint without agent. No support for WSL. Need additional automation functionality.
Visibility of organsiation security based on device classification,laptop/desktop/server/cloud/IoT.
Visibility of organsiation security based on device classification,laptop/desktop/server/cloud/IoT.
What problems is the product solving and how is that benefiting you?
Keeping overall security surface attack reduced. Higher complaince due to light weight agent and cloud update.
Realtime threat detection and protection giving much better security
Realtime threat detection and protection giving much better security
showing 21 - 30