Overview
What is CrowdStrike Falcon?
CrowdStrike offers the Falcon Endpoint Protection suite, an antivirus and endpoint protection system emphasizing threat detection, machine learning malware detection, and signature free updating. Additionally the available Falcon Spotlight module delivers vulnerability assessment with no performance impact, no additional agents,…
A Comprehensive Look at the Fabulous EDR CrowdStrike Falcon
CrowdStrike Falcon review for companies
Fantastic reduction in EDR operations
Great product, great performance, you get what you pay for (not cheap but worth it)
We were using other solution and we were forced …
The do everything endpoint protection tool
- Default endpoint protection tool on all servers and laptops.Laptops
- local firewall, and device lockdown (USB drives blocked)
- Spotlight
- …
Strengthening cyber defenses with CrowdStrike Falcon
Crowdstrike at its best, with small gaps.
Very useful and easy to use security tool
CrowdStrike Falcon Review
One-stop solution for malware protection
Crowdstrike Falcon - Best in the Business.
CrowdStrike real review.
CrowdStrike Security made easy.
CrowdStrike Falcon Provides Superior Protection for Your Endpoints and Identities.
How CrowdStrike Falcon Differs From Its Competitors
Consolidation of Tools
Breadth of Solutions
Consolidation of Tools
Breadth of Solutions
Breadth of Solutions
Breadth of Solutions
Consolidation of Tools
Also if you have some host firewall management system, it can be replaced with CS firewall management
Remote connection (not interactive or RDP like) can be also be replaced, with RTR
Breadth of Solutions
Also, it ofers so many other things, that can be easily implemented (same agent... just increases costs) and are really interesting. You can start with a "basic" package and start growing from …
Consolidation of Tools
Breadth of Solutions
Consolidation of Tools
Breadth of Solutions
Consolidation of Tools
Breadth of Solutions
Consolidation of Tools
Breadth of Solutions
Consolidation of Tools
Breadth of Solutions
Breadth of Solutions
Consolidation of Tools
Breadth of Solutions
Breadth of Solutions
Consolidation of Tools
Breadth of Solutions
Consolidation of Tools
Breadth of Solutions
Consolidation of Tools
Breadth of Solutions
Consolidation of Tools
Breadth of Solutions
Consolidation of Tools
Breadth of Solutions
Automated protection and remediation
Improved threat intelligence
Consolidation of Tools
Breadth of Solutions
Consolidation of Tools
also i removed Cynet protection from the organization. CrowdStrike provide a better incident response platform, with a wider malware protection suite and zero trust …
Breadth of Solutions
since our team is a slim team, the ability to get immediate help from CrowdStrike support team reduces the impact of any security incidents and make it easier to secure our …
Consolidation of Tools
Breadth of Solutions
Consolidation of Tools
Breadth of Solutions
Consolidation of Tools
Breadth of Solutions
Consolidation of Tools
Our tech stack is rather layered to say the least, it is better than to rely on a …
Breadth of Solutions
CrowdStrike Falcon's has provided us with the opportunity to integrate our security team into different clusters i.e. not …
Consolidation of Tools
Breadth of Solutions
Awards
Products that are considered exceptional by their customers based on a variety of criteria win TrustRadius awards. Learn more about the types of TrustRadius awards to make the best purchase decision. More about TrustRadius Awards
Popular Features
- Endpoint Detection and Response (EDR) (69)9.494%
- Malware Detection (69)9.393%
- Infection Remediation (67)8.989%
- Centralized Management (70)8.585%
Reviewer Pros & Cons
Pricing
Falcon Pro
$6.99
Falcon Enterprise
$14.99
Falcon Premium
$17.99
Entry-level set up fee?
- No setup fee
Offerings
- Free Trial
- Free/Freemium Version
- Premium Consulting/Integration Services
Features
Endpoint Security
Endpoint security software protects enterprise connected devices from malware and cyber attacks.
- 8.9Anti-Exploit Technology(63) Ratings
In-memory and application layer attack blocking (e.g. ransomeware)
- 9.4Endpoint Detection and Response (EDR)(69) Ratings
Continuous monitoring and response to advanced internet threats by endpoint agents.
- 8.5Centralized Management(70) Ratings
Centralized management supporting multi-factor authentication, customized views, and role-based access control.
- 8.2Hybrid Deployment Support(4) Ratings
Administrators should be able to choose endpoint security on-premise, cloud, or hybrid.
- 8.9Infection Remediation(67) Ratings
Capability to quarantine infected endpoint and terminate malicious processes.
- 8.3Vulnerability Management(54) Ratings
Vulnerability prioritization for fixes.
- 9.3Malware Detection(69) Ratings
Detection and blocking of zero-day file and fileless malware.
Product Details
- About
- Integrations
- Competitors
- Tech Details
- FAQs
What is CrowdStrike Falcon?
CrowdStrike Falcon Features
Endpoint Security Features
- Supported: Anti-Exploit Technology
- Supported: Endpoint Detection and Response (EDR)
- Supported: Centralized Management
- Supported: Infection Remediation
- Supported: Vulnerability Management
- Supported: Malware Detection
CrowdStrike Falcon Video
CrowdStrike Falcon Integrations
- Akamai Enterprise Application Access
- Cloudflare
- Attivo ThreatDefend Detection & Response Platform (a brand)
- Exabeam Fusion
- Splunk Enterprise Security (ES)
- Sumo Logic
- Swimlane
- AttackIQ Security Optimization Platform
- EclecticIQ Platform
- IntSights Cyber Intelligence, from Rapid7
- ThreatConnect SOAR (discontinued)
- Armis
- The Forescout Platform
- Claroty
- ThreatQuotient
- Panther
- Forescout
- Illusive Networks
- Netskope
- Okta
- Proofpoint
- Vectra
- zscaler
- ExtraHop
- Mimecast
- ServiceNow
- IBM Resilient Security Orchestration
- Automation and Response (SOAR)
- Arcsight Interset
- DF Labs
- LogRhythm
- Securonix
- Anomali
- Centripetal
- King & Union
- ThreatStop
- Dragos
- Medigate
CrowdStrike Falcon Competitors
CrowdStrike Falcon Technical Details
Deployment Types | On-premise, Software as a Service (SaaS), Cloud, or Web-Based |
---|---|
Operating Systems | Windows, Linux, Mac |
Mobile Application | Apple iOS, Android |
Supported Languages | English, Japanese |
Frequently Asked Questions
Comparisons
Compare with
Reviews and Ratings
(234)Attribute Ratings
Reviews
(1-25 of 73)- Stopping malicious activity.
- Provides great visibility into events.
- Works as an extension of our IT team.
- In dashboard filtering for all records, without needing to export.
Our organization being a university where thousands of students and hundreds of staff turn up daily, puts our critical assets at risk of being compromised by an insider. CrowdStrike Falcon helps us identify the source of a threat accurately, blocks the triggering file or script before it can cause damage. The AI / ML based detections are very helpful because they catch threats that other vendors may fail at. The scope of our use case is endpoint monitoring and threat management.
- AI / ML based malicious activity detections
- Detection information presented clearly and concisely on dashboard
- Easy filtering of detections on hostname, detection name, severity, date, time, hash, technique etc
- traces full process chain instead of just showing the source file or script which really helps in tracing the main security concern of machine
- If some malicious app uses microsoft's signed binary like onedrive, cmd, wscript CrowdStrike would tag the microsoft binary as malicious and fails to provide the actual file that tried to execute these.
- For example if a
- malware.exe tries to run this command
- cmd /c bitsadmin
- CrowdStrike would tag cmd or bitsadmin as malicious and does not mention malware.exe at all sometimes
- There are two different dashboards (updated and deprecated) which causes confusion among my team, all must be on same page and use single dashboard.
- Support is very slow in responding to problems and depend on automated bots which really frustrates when a major issue arises.
CrowdStrike Falcon may be less appropriate for smaller organizations due to its cost, also a technical support team is required to install / remove agents from machines and monitor the dashboard for detections daily.
CrowdStrike Falcon review for companies
- Network segmentation for host and servers using the firewall.
- USB block by the sensor.
- IDP alerts from our domain and different identities
- Support response.
- Sensor stability, sometimes the sensor fails on computers
- Improve menus
Fantastic reduction in EDR operations
- Prompt response
- Reliable follow up
- High detection ability
- Enhancement of Japanese language
- Screen configuration that requires no screen transitions as much as possible
Great product, great performance, you get what you pay for (not cheap but worth it)
We were using other solution and we were forced to change it really quick.
The process has been really simple, and for the moment we are really happy with how it works and how it performs.
It can be used both on computers and servers, and it supports quite good both Windows & Linux
- Protection against all kind of malware
- Performance
- Real Time Response
- Custom IOC Management
- Notifications to end users
- Tray Icon
It seems to work pretty well and protects you from almost everything tested.
Maybe RFM can be improved, specially with patch Tuesdays, but nothing to worry too much about.
The do everything endpoint protection tool
- Default endpoint protection tool on all servers and laptops.Laptops
- local firewall, and device lockdown (USB drives blocked)
- Spotlight
- vulnerabilities
- Identity Protection - lateral movement, service account protection, insider threat
- Threat Intel / Sandbox
- EDR
- Threat Intel
- USB blocking
- Complete team - triage and escalation
- Better reporting
Strengthening cyber defenses with CrowdStrike Falcon
- CrowdStrike Falcon's next-gen endpoint protection consistently outperforms traditional solutions.
- The cloud-native architecture ensures seamless scalability and real-time updates, eliminating the need for manual interventions.
- CrowdStrike Falcon's threat intelligence and hunting capabilities are unparalleled.
- The advanced features may pose a learning curve for users unfamiliar with modern cybersecurity tools.
- A more transparent pricing model could assist in budget planning.
- Expanding compatibility with a broader range of security solutions would be advantageous.
Crowdstrike at its best, with small gaps.
- Known malware detection.
- Software detection with malicious behavior.
- Identification of processes with anomalous behavior.
- User management in cases where the service is provided as an MSP.
- Clarity in console menus.
- Integration with third-party EPP.
Very useful and easy to use security tool
- prevention
- vulnerability management
- sensor is very small
- Client tray
- On demand Scans
CrowdStrike Falcon Review
- Detects suspicious activity
- Shows exact location and processes involved in suspicious activity
- Isolate computers with suspicious activity
- Setting up on MacOS was more complicated than expected (as kernel extensions were being phased out)
- Remediation is not always as automated as some other systems (e.g. Malware Bytes)
One-stop solution for malware protection
- Endpoint Detection and Response
- Great communication to the security operations teams for triaging a security event
- Customizable policies which can be globally applied
- Ease of integration with SIEM
- Ability to query endpoint logs within the Falcon portal itself
- Sandbox can get better in my opinion.
- Detection of source of infection in case of lateral movements recommended
- Browser based logs/ DNS queries for getting to the root of the issue
Crowdstrike Falcon - Best in the Business.
- MFA Everywhere to protect our systems from remote login connections.
- Realtime endpoint protection that is updated regularly without intervention from our system administration team.
- 24 x 7 x 365 monitoring of the system to provide protection at all times.
- Walkthroughs of new features when added to the console.
- Better instructions on how and where to add or change policies for various tools.
CrowdStrike real review.
- Malware detection.
- Bad behaviour detection.
- Support on old Operatives Systems.
CrowdStrike Security made easy.
- MDR
- Vulnerability assessment.
- Identity Protection.
- Easier to use interface.
- Log management.
- Investigations
- Protection of end points.
- Protection of user identities.
- Providing quick response to any identified security issues.
- CrowdStrike can be on the more expensive side of end point and identity management, but it's worth it.
Great product
- Identifícate IOA
- Facilita to investigate
- Playbooks
- Vulnerability magnament
- Logscale
- Xdr
- It helps us to stop security breaches as well as prevent all types of attacks (including malwares, ransomwares and many other such attacks)
- It helps in Adversary Emulation Exercise
- it helps in Red Team / Blue Team Exercise
- should improve threat visibility
- its overall TCO should be reduced
- seamless integration with solutions like SIEM
It helps in Red Team / Blue Team Exercise.
Threat visibility is something where it is less appropriate.
1. To prevent Ransomware
2. Device Control
3. Protection of Workstations and servers
4. Advanced protection for Zeroday
4. To find malicious activities on systems
- Overwatch feature is amazing
- Accuracy to identify True Positive
- Powerful AL based detection method
- RFM issue
- Certificate Pinning, older sensor versions stops communicating
- Sensor Duplication
- Staff did a great job pointing our IT workers to areas that needed remediation.
- CrowdStrike Falcon Endpoint consistently blocks incursions from compromised websites and prevents PUPs from installing
- Complete Staff is very attentive and makes whitelist changes quickly which allows our staff to be productive.
- The Dashboard can become overwhelming at times, too much information to absorb
- Computers that may have made it out into the field without the endpoint sensor are very difficult to find
- As with all systems that rely on machine learning false positives occurr
- Threat Inteligance
- Low CPU and RAM usage
- Malware mitigation
- Vulnerability managment
- Hunting
- Ease of use
- Identity protection
- Air-Gapped networks
- Mobile protection
CrowdStrike - good value for a good product
- Runs on clients without causing application issues
- matches files patterns/behaviors to look for unknown attacks
- contains potentially infected hosts
- The user interface is terrible
- permit users to see licensed products in the console
- less false positives. files such as Malwarebytes scanning modules should be known as safe
- make it easier to create scanning exclusions that actually work
Efficient and effective endpoint detection and response
- Efficiently picking up and preventing malware threats on endpoints
- Prompt notification capabilities on any issues
- Ability to "set and forget" with minimal maintenance required
- Falcon Spotlight integrations with automatic patching solution would be a good feature
- LogScale with SIEM functionalities would be an added feature
- Simplified one dashboard with all high-level information
Crowdstrike Falcon in Higher Ed
- Monitoring
- Notification
- Device Management
- Have an executive dashboard
- better reporting cadence
- ability to tag devices with end user names
Lightweight yet Robust Security Solution
- Host machine vulnerability detection
- Threat mitigation
- Activity monitoring
- Constantly releases alerts or notifications
- Behavourial analytics
- Endpoint manual scan
- Malware analysis needs improving
- Requires some level of expertise to use its features
However, CrowdStrike isn't your typical anti-virus solution it does not provide you with the ability to control it manually like you would with some products out there.
CrowdStrike, the leader of EDRs
- Remote session
- Remediation killing quarantining the process/files
- Graphical process tree
- Splunk backend searches with all details
- Various dashboards
- Suppression to weed out false positives
- Can have some AI incorporated
- Support can be introduced
- Searching the related events require splunk knowledge which can be a show stopper