I used the tool since my company wanted a product with next-generation antivirus and EDR, as it can help with the detection of malicious activities and behavior detection, and the MI and machine learning part in the tool also helps.
CrowdStrike Falcon Platform
CrowdStrikeExternal reviews
381 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Offers good AI features to users
What is our primary use case?
What needs improvement?
Only for the customized IOCs, there is a need to highlight certain aspects, and based on it, we get to block only the hash values but is not based on the file name, like .exe, or other extensions, so I can't block them, making it in an area where the solution needs to improve.
My company had raised a concern with CrowdStrike's support team when one of the antivirus applications that communicates with CrowdStrike started misbehaving. For both the aforementioned tools, the same support ticket had to be raised. If my company had to provide any suggestions regarding the whitelisting part, there was a delay of over a month when dealing with the product's support team. If the tool's support team suggests users follow certain steps, and if it is not followed or is not in progress, then after two or three days, the tool's support team needs to join a video call and provide a resolution to the users.
Some policies in the tool need to be fine-tuned. Customized IOCs need to be improved since they have certain shortcomings. With the customized IOCs, it can be made possible to block a file extension with a filename or file extension type of blocking. Providing users with the ability to customize policies would be a good improvement to the solution.
For how long have I used the solution?
I have been using CrowdStrike Falcon Threat Intelligence for a year. I am a user of the tool.
What do I think about the stability of the solution?
Stability-wise, I rate the solution an eight and a half out of ten.
What do I think about the scalability of the solution?
Scalability-wise, I rate the solution an eight out of ten.
My company's cybersecurity and IT security team use the tool. In my company, there are 15,000 users. For servers, there are 1,500 users.
Right now, there is no need to increase the usage of the tool.
How are customer service and support?
The solution's technical support is not good. I rate the technical support a four to five out of ten.
How would you rate customer service and support?
Neutral
Which solution did I use previously and why did I switch?
I have experience with Palo Alto.
The detection and other functionalities in CrowdStrike and Palo Alto are the same, but cost-wise, CrowdStrike is reasonable. Technically, I would prefer Palo Alto over CrowdStrike.
How was the initial setup?
The product's deployment phase is easy. I rate the setup phase of the tool as a ten on a scale where one is difficult and ten means it is an easy process.
The solution can be deployed in the cloud and on an on-premises model.
The solution can be initially deployed in a minute.
Considering the number of users, servers, cloud, and on-premises environment, it hardly takes 15 to 20 days. When there are laptop and desktop users who are online, and there is a need to install the agent, then there can be some issues, and with such minor things, ten days are more than enough for the installation.
What's my experience with pricing, setup cost, and licensing?
CrowdStrike is a reasonably priced tool.
What other advice do I have?
In terms of the ability of the tool to deal with threats, I would say that the product does it by around 85 percent.
The real-time response of the tool is good, and I feel it is around 90 to 95 percent.
The tool's incident-handling capability is good.
Considering the influence of the product on our company over some time, I would say that the solution is cost-effective and offers good threat detection features. The tool's interface is also good.
The tool's AI features are good, but they are not useful for our company since the area of detection is not something in our bucket right now.
If you have a big budget, go with Palo Alto. If you have a low budget and want a tool that provides more accuracy during detection, then it is better to go with CrowdStrike.
I rate the tool a nine out of ten.
new age EDR solution
What do you like best about the product?
user-friendly console
easier to install and deploy in the network
amazing customer support during and after the deployment
easier to integrate with other security solutions
easier to install and deploy in the network
amazing customer support during and after the deployment
easier to integrate with other security solutions
What do you dislike about the product?
frequency of use is not much due to its limitation of remediation as compared to its competitor
features are too confusing limiting users in confusion with so many options in the policy
features are too confusing limiting users in confusion with so many options in the policy
What problems is the product solving and how is that benefiting you?
management of endpoints is super smooth in crowdstrike with so many options and control to admin. it helped my organization in increasing its security posture. manageblity of different incidents is also good along with the data retention.
A complete safeguard endpoint solution
What do you like best about the product?
The best i like is it has lightweight agent than other vendor.
Easy to use, no difficulties in console.
Easy to implementation agent and make policies.
Customer Support is provided 24*7.
Number of features like devices control,Exclution.
Easy of integration in on-premise and saas.
Easy to use, no difficulties in console.
Easy to implementation agent and make policies.
Customer Support is provided 24*7.
Number of features like devices control,Exclution.
Easy of integration in on-premise and saas.
What do you dislike about the product?
Cost is little bit high.
Seperate License have to buy for products.
Troubleshooting may be lately solve.
Sometimes may raise ticket for asking queries.
Seperate License have to buy for products.
Troubleshooting may be lately solve.
Sometimes may raise ticket for asking queries.
What problems is the product solving and how is that benefiting you?
The major problem that Crowdstrike solving is threat and risk protection and also malicious application.In offices, we users use different different browser to do our work anf there is chance to attack our system so we used this solution to protect from this threat and malicious files.
Complete Network Monitoring with CS Falcon
What do you like best about the product?
Crowdstrike Falcon maintains a database of all the systems that it monitors in the network, this database is easily accessible with basic database queries. It furthermore lets us manage the threats percieved quickly. Crowdstrike provides easy integration with 3rd party platforms for ticket management such as Okta, XSOAR through this, we were able to implement a unified dashboard for our system monitoring. The customer support from CS was onpoint as whenever a new feature or a change rolled out in the UI our entire team was kept informed and updated.Crowdstrike was our main EDR which we used frequently.
What do you dislike about the product?
Although crowdstrike provides a good api base for integration it lacks in focumentation for plugin support, If there was a no code based plugin development system for CS , analysts would be able to quickly develop CS workflows.
What problems is the product solving and how is that benefiting you?
We were using CS as our EDR, Not only did CS helped mitigate multiple threats to our network, containing the threat instantly but also its forensic capabilities helped us as a team to colloborate and get to the root cause causing the issue.
CrowdStrike Falcon provides the complete protection over you intranet and internet
What do you like best about the product?
It's provide protection over DDos attack, phishing attack and other.
What do you dislike about the product?
Thing is dislike is somtime it give frequent updates.
What problems is the product solving and how is that benefiting you?
NA
CrowdStrike Falcon - Best Endpoint Protection
What do you like best about the product?
The best thing about CrowdStrike Falcon Endpoint Protection is its multiple features which is 100% securefighting against cyberthreat. CrowdStrike Falcon Endpoint Protection is easy to use, easy to implement and easy to integrate. The customer support team is quite active if there is any issue. The frequency of use of CrowdStrike Falcon Endpoint protection is very less. Its the best Endpoint Protection in the market.
What do you dislike about the product?
The thing which i dislike in CrowdSrike Falcon Endpoint Protection. Sometimes its slow down the systems. Other than this there is nothing to dislike in CrowdStrile Falcon Endpoint Protection.
What problems is the product solving and how is that benefiting you?
Before CrowdStrike Falcon protection our organization were using different Endpoint Protectin. Which failed to protect our network and system. After using CrowdSrike Falcon Endpoint Protection. We never faced any cyberthreat.
NGAV replacement
What do you like best about the product?
Easy to understand.
Customer support was best as compared to competitors
implementing it in the network was super smooth in the deployment process
As compared to competitors, it provides the best in class features in the in the policy section with user control
Integrating it with other security solutions is super easy and manage
Customer support was best as compared to competitors
implementing it in the network was super smooth in the deployment process
As compared to competitors, it provides the best in class features in the in the policy section with user control
Integrating it with other security solutions is super easy and manage
What do you dislike about the product?
i use this very often and as I see during the marketing and training competitors emphasise more on a certain feature saying it patented and they are the only OEM providing that feature but crowdstrike also do that but don't mention it to the extent competitors.
What problems is the product solving and how is that benefiting you?
Features like the protection of VSS shadow copy help my organization from threats targeting VSS shadow copy. along with controls given in the policy section, user can customise It as per the business requirement.
A wise use of modern tech towards security
What do you like best about the product?
AI integrations and cloud native architecture support. Easy to use and implement with a wise range of support options that can be used anytime.
What do you dislike about the product?
Complexity when trying to access advance features and limited logging capabilities.
What problems is the product solving and how is that benefiting you?
The main concern for usage is to facilitate threat detection and the AI based threat detection model makes it ideal along with the comprehensive view of findings making it easier to understand. Especially the real time threat intel and response makes it one of the best for the use case.
Probably the most effective and real time Endpoint Protection Platform
What do you like best about the product?
Its instant and real time nature of detection and execution is mind blowing. Also it is really easy to use, which gives us more time to focus on other business critical things. The overall functionality , that is the list of features offered and its performace as well are both consistent of its quality and hence offers a peace of mind to us.
What do you dislike about the product?
For some newer apps the level of integration isnt as friendly and smooth as it should be . Also Linux support can be improved.
What problems is the product solving and how is that benefiting you?
Any suspicious activities or process is detected immediately and terminated. For example, i tried to download an installation file of an application . Crowdstrike immediately alerted about it and even closed the browser session to ensure the activity is not proceeded.
Works with Office 365 and helps to manage threats
What is our primary use case?
The tool helps to increase security because the threats we face keep changing, so we need better protection. In the past, we've faced some attacks on our network, and while we managed to deal with them, we realized we needed even stronger protection. That's why we decided to implement CrowdStrike Identity Protection.
What is most valuable?
The main feature we rely on is the product's intelligence. We appreciate the advice from the team during implementation. One of the main reasons we chose this product is its compatibility with Office 365.
What needs improvement?
Improvement is always possible. It's challenging to gauge how much future mitigation is provided, especially since we've only been using the product for about one and a half years. Every product faces this challenge because nothing is ever completely foolproof. So, besides relying on technology, we also focus on increasing our staff's awareness of security issues. Feedback from my colleagues suggests that the reporting and dashboarding of incidents could be improved.
For how long have I used the solution?
I have been working with the product for one and a half years.
What do I think about the stability of the solution?
I rate the tool's stability an eight out of ten.
What do I think about the scalability of the solution?
Scalability isn't a problem for us. Many big multinational companies use CrowdStrike Identity Protection, so it's designed to handle environments like ours without any issues. My company has 500 users.
How was the initial setup?
The tool's deployment is easy. Thanks to the installation scripting we utilized, the technical rollout took about two weeks. Then, there was some additional time, around two to four weeks, for customization and configuration. After that, the systems were up and running. So, all in all, it took about three months to have our mitigation strategies in place. We have one engineer for maintenance.
What other advice do I have?
I rate the overall product an eight out of ten. I would recommend it to others. However, it's crucial to understand areas where the product might not provide coverage and how to mitigate those gaps. For example, it covers endpoints, networks, and Office 365 environments, but are there other areas in the attack surface that it doesn't address well? It's essential to be aware of any potential gaps upfront.
The solution helps in preventing incidents. However, it's challenging to quantify the exact impact because we don't know what would have happened without it. It's similar to having insurance for your house.
showing 91 - 100