CrowdStrike Falcon Endpoint Protection
CrowdStrikeExternal reviews
408 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Highly Secure with Room for Interface Improvement
What do you like best about the product?
I like CrowdStrike Falcon Endpoint Protection Platform because it is highly secure, which gives me confidence that my endpoints are well protected against cyber threats. The ease of implementation is another aspect I appreciate, making the setup process straightforward once I understood the necessary steps.
What do you dislike about the product?
I find the management interface of the CrowdStrike Falcon Endpoint Protection Platform to be less user-friendly than I would like. It could benefit from improved intuitiveness and ease of use. Furthermore, the metrics that CrowdStrike provides are somewhat cumbersome when it comes to setting up direct alerts. This complexity can hinder timely responses to potential threats, impacting overall user experience. It feels like there is room for enhancing the overall user experience to make it more straightforward and efficient.
What problems is the product solving and how is that benefiting you?
I use CrowdStrike Falcon Endpoint Protection Platform to secure my endpoints from cyber threats and unauthorized access.
Lightweight, Accurate, But Challenging Query Language
What do you like best about the product?
CrowdStrike Falcon has been one of the most dependable EDR platforms I’ve used. The agent is extremely lightweight, which makes a big difference in keeping system performance smooth. Its detection accuracy is consistently strong and really helps us stay ahead of threats. The asset discovery feature is one of my favorites—it gives us clear visibility into what’s actually running in our environment and makes managing assets much easier. The built-in vulnerability assessment is also very reliable and helps us quickly identify and prioritize issues. Overall, the platform’s defensive capabilities and real-time protection give us a strong sense of confidence in our media security.
What do you dislike about the product?
The biggest challenge for me has been CrowdStrike’s query language. Coming from Splunk, which is more intuitive and easier to work with, the transition feels unnecessarily difficult. Having to juggle different syntaxes—CrowdStrike, Splunk, SIEM tools, Defender—slows things down and interrupts the workflow when I’m trying to run quick searches or investigations. Better documentation or easier mapping to familiar query formats would help a lot.
What problems is the product solving and how is that benefiting you?
CrowdStrike gives us a strong, lightweight, and effective layer of endpoint protection. It improves our visibility, strengthens our defenses, and helps us detect and respond to threats much faster. It also makes vulnerability management more efficient, which is a big plus for maintaining a secure media environment.
Transparent and Robust Solution That Delivers
What do you like best about the product?
The transparency and robustness of the platform
What do you dislike about the product?
The updates are a little disruptive at times
What problems is the product solving and how is that benefiting you?
Phishing and xsxripting
Effortless Deployment and Powerful AI-Driven Protection
What do you like best about the product?
It has Easy deployment and management. Single Lightweight agent. As it has AI/ML powered for real-time scanning it stops modern attacks, suspicious behavior, providing highly accurate detection with a low rate of false positives. It has lot of integration option with third-party tools.
What do you dislike about the product?
- It is not weakness but Console can be very hard to understand in the beginning but its very user friendly.
- Due to its continuous monitoring platform can generate lot of high volume alerts. But later on we can fine tune policy to whitelist false positives so its not an issue.
- Due to its continuous monitoring platform can generate lot of high volume alerts. But later on we can fine tune policy to whitelist false positives so its not an issue.
What problems is the product solving and how is that benefiting you?
- CrowdStrike stops modern fileless attacks, exploits, and behavioral tactics with help of its NGAV powered by AI/ML as it focuses on behavior of a process rather than just file hash.
- CrowdStrike solves the problem of Lack of visibility with its detailed endpoint activity along with process tree. This gives analysts instant, deep visibility and ability to search all endpoint for related activity.
- CrowdStrike solves the problem of CPU utilization issue as its lightweight agent is connected to CrowdStrike cloud. This eliminates the need of heavy on-premise infrastructure. It ensures minimal performance impact on end-user.
- Benefits from above points: Superior breach prevention, Faster incident response, Lower operation cost and complexity, Improved user productivity.
- CrowdStrike solves the problem of Lack of visibility with its detailed endpoint activity along with process tree. This gives analysts instant, deep visibility and ability to search all endpoint for related activity.
- CrowdStrike solves the problem of CPU utilization issue as its lightweight agent is connected to CrowdStrike cloud. This eliminates the need of heavy on-premise infrastructure. It ensures minimal performance impact on end-user.
- Benefits from above points: Superior breach prevention, Faster incident response, Lower operation cost and complexity, Improved user productivity.
Lightweight Agent with Powerful Threat Detection and Easy Deployment
What do you like best about the product?
yes, it's a very useful and very lightweight agent with CPU/RAM usage. A single agent handles many functions. The threat detection is excellent it can detect file-less attacks, ransomware,zaro-day exploits, and behavior-based threats.
Itprovides strong visibility by showing every process, command, network activity, and the full attack timeline. The makes incident response and root-casue analysis much easier. Most importantly, it is very easy to deploy.
The customer supoort is supper friendly.
Itprovides strong visibility by showing every process, command, network activity, and the full attack timeline. The makes incident response and root-casue analysis much easier. Most importantly, it is very easy to deploy.
The customer supoort is supper friendly.
What do you dislike about the product?
The cost is relatively high, especially for small businesses, as licensing and premium modules can be expensive. Since it is cloud native, it relies heavily on cloud connectivity. If network connectivity is poor or interrupted, some protection feature and visibility may be degrade.
What problems is the product solving and how is that benefiting you?
The crowdStrike falcon solve the problem of advanced cyber-attackes that traditionally antivirus tools cannot detect, It protect endpoints form malware, ransomware, file-less attacks.
This is beneficial becasue it reduces breach risj, store attacks early and improves incident reponse time.
This is beneficial becasue it reduces breach risj, store attacks early and improves incident reponse time.
Cloud-Native Security That Delivers Fast, Powerful Protection
What do you like best about the product?
Its cloud-native architecture enables fast deployment and low system overhead.
Real-time protection works effectively without relying on heavy local agents.
Behavior-based Detection helps identify both known and unknown threats.
Integrated threat intelligence strengthens overall security effectiveness.
Continuous monitoring supports quick investigation and response.
The centralized console is user-friendly and simplifies endpoint management.
Real-time protection works effectively without relying on heavy local agents.
Behavior-based Detection helps identify both known and unknown threats.
Integrated threat intelligence strengthens overall security effectiveness.
Continuous monitoring supports quick investigation and response.
The centralized console is user-friendly and simplifies endpoint management.
What do you dislike about the product?
The platform can be expensive for an small organisation,since the program is solution as premium solution,
Alert volume can be high until the system is turned properly,which can initially create more noise for security team.
Some integrations and advanced features require additional setup or expertise.
Alert volume can be high until the system is turned properly,which can initially create more noise for security team.
Some integrations and advanced features require additional setup or expertise.
What problems is the product solving and how is that benefiting you?
CrowdStrike Falcon Endpoint Protection Platform tackles the challenge of advanced cyber threats such as malware, ransomware, and fileless attacks by offering real-time detection and prevention. Its behavior-based monitoring, combined with integrated threat intelligence, allows for the rapid identification of both known and unknown threats. For me, this means my endpoints stay secure, the risk of breaches is minimized, incident investigations are more straightforward, and I can respond to potential threats more quickly and effectively.
User-Friendly with Comprehensive Detection Insights
What do you like best about the product?
The software is user-friendly and provides comprehensive information regarding detections and incidents. Implementation is straightforward, and the customer support team is responsive and helpful.
What do you dislike about the product?
The ON-DEMAND SCAN feature can be somewhat troublesome to use on the platform. It scans only PE files.
What problems is the product solving and how is that benefiting you?
Traditional antivirus (AV) solutions, which typically rely on signature-based detection, often have difficulty keeping up with advanced threats such as zero-day exploits, fileless malware, ransomware, and other sophisticated attack methods. Falcon’s next-generation antivirus (NGAV) engine uses machine learning (ML) and behavioral analysis to identify and stop even threats that have not been seen before. This approach results in stronger protection with fewer vulnerabilities. Faster detection and containment also help minimize potential damage and reduce downtime.
Lightweight, Powerful Security with Seamless Cloud Integration
What do you like best about the product?
The best part is how Falcon balances power and simplicity. Many endpoint solutions are either too heavy or too fragmented. Falcon’s single-agent, cloud-native approach solves both problems: it’s lightweight for users yet comprehensive for security teams.
What do you dislike about the product?
CrowdStrike Falcon is widely praised for its powerful detection and lightweight agent, but what people dislike most are the high costs, cloud dependency, and occasional complexity in management and reporting. These drawbacks don’t negate its strengths, but they do highlight areas where organizations need to weigh trade-offs before adoption.
What problems is the product solving and how is that benefiting you?
Falcon solves the visibility, speed, and complexity problems of endpoint security, and the benefit is a safer, more efficient, and less disruptive IT environment
Robust IT Security Solution with Comprehensive Protection
What do you like best about the product?
This is a very good solution that provides nearly all the necessary security measures for IT systems, effectively protecting them from unauthorized access. The solution is robust and stands out as a dominant force in IT security protection.
What do you dislike about the product?
I wouldn't say I dislike it, but I do have some suggestions for improvement, particularly regarding the user interface of the dashboards and the technical language used throughout. It would be helpful if simpler technical terms were used, making it easier for non-technical people to understand.
What problems is the product solving and how is that benefiting you?
It has resolved most of my IT security concerns through features like EDR, XDR, identity protection, VA, and many others. We have confidence in CrowdStrike's capabilities and the range of features it offers.
Lightweight Agent, Robust Security Insight
What do you like best about the product?
I really appreciate how lightweight the agent of CrowdStrike Falcon Endpoint Protection Platform is; it's so unobtrusive that I barely notice it's running on my machines. Over the past three years, I haven't experienced any cybersecurity issues, which speaks volumes about the platform's effectiveness. Additionally, I find the platform’s use of sensor-based technology with Charlotte AI particularly impressive, as it aligns well with our strategic vision and roadmap. We are even considering adding more modules, like Identity and Access Management (IDAM), during upcoming renewals due to our positive experience so far.
What do you dislike about the product?
I find the real-time monitoring through the command-line interface to be a bit challenging and not as user-friendly as expected. The firewall functionality within CrowdStrike Falcon sometimes does not work as expected, which can be frustrating. I am also disappointed with the delayed response from customer support when I raise tickets. The initial setup and deployment were quite tough, especially managing the deployment manually on 3000 assets without an Active Directory push. This manual process, including setting group tags and tagging against each location, was very time-consuming.
What problems is the product solving and how is that benefiting you?
I find the product protects our assets from malicious attacks and provides machine insights while being lightweight and efficient with no cybersecurity issues encountered in three years.
showing 41 - 50