We use CrowdStrike Falcon as an XDR to replace our old antivirus solution.
We implemented CrowdStrike Falcon for better visibility into our environment and easy online access to the policies.
CrowdStrike Falcon Endpoint Protection
CrowdStrikeExternal reviews
369 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Has great threat intelligence, integrates well, and scales to our needs
What is our primary use case?
How has it helped my organization?
CrowdStrike Falcon's cybersecurity background allows for better integration with other tools.
What is most valuable?
The threat intelligence is the most valuable feature.
What needs improvement?
The support for different OS versions needs improvement because sometimes due to business conditions, updating our OS is impossible. For example, I have a production environment connected to the PNC that runs Windows XP on computers that CrowdStrike Falcon does not support.
For how long have I used the solution?
I have been using CrowdStrike Falcon for six years.
What do I think about the stability of the solution?
CrowdStrike Falcon is stable.
What do I think about the scalability of the solution?
CrowdStrike Falcon has been able to scale to our needs with no issues.
How was the initial setup?
The initial deployment was straightforward. The deployment took one day to complete. Ten people were involved in the deployment.
What about the implementation team?
The implementation was completed in-house.
What's my experience with pricing, setup cost, and licensing?
CrowdStrike Falcon's price is good. I am looking for other partners and compared to Microsoft Defender and other vendors the price is lower.
What other advice do I have?
I would rate CrowdStrike Falcon a then out of ten.
Before purchasing CrowdStrike Falcon I suggest checking the policies, particularly those regarding internet connections, and conducting a proof of concept.
CrowdStrike Falcon Endpoint Protection Platform
What do you like best about the product?
CrowdStrike Falcon Endpoint Protection Platform has great user interface and easily understandable for layer 1 analyst or a new user
What do you dislike about the product?
I have not observed any cons related CrowdStrike Falcon Endpoint Protection Platform in my time as a soc analyst
What problems is the product solving and how is that benefiting you?
CrowdStrike Falcon Endpoint Protection Platform is helping us with providing the dual capability of EDR and AV in same package
Used few system resources, can easily isolate infected machines, and add modules
What is our primary use case?
We use CrowdStrike Falcon for endpoint security and response, and Horizon to manage and protect our data.
Following a 2021 security incident, the general response team recommended implementing CrowdStrike. We adopted their suggestion and found its network threat detection and prevention capabilities invaluable.
What is most valuable?
I like the feature called RTC, the remote time connector. It allows us to connect to a computer via the command line and execute commands for various functions and investigations. This eliminates the need for any additional programs. We can launch the connection and its subcommands from a single console.
The containment feature is another valuable tool. It allows us to isolate any machine exhibiting suspicious behavior or facing a detected threat. Once activated, containment immediately severs the machine's network connection and blocks user access.
What needs improvement?
Despite implementing tuning rules specifically designed to address them, we are still encountering a significant number of false positives. This issue persists even after collaborating with their support team to find a solution.
I have worked with their technical support on several problems that were never fully resolved.
For how long have I used the solution?
I have been using CrowdStrike Falcon for three years.
What do I think about the stability of the solution?
While we encountered some bugs with on-demand scanning, the overall performance and stability of the system are positive. CrowdStrike Falcon is less resource-intensive than our old McAfee solution, which often led to performance complaints due to its high memory consumption.
What do I think about the scalability of the solution?
CrowdStrike Falcon is scalable. Adding new features or licenses to CrowdStrike Falcon is seamless, with no disruption to our system's performance. Installing new modules is easy because it uses the same sensor.
How are customer service and support?
While I've found screen sharing helpful with other support teams, CrowdStrike's technical support has never proactively suggested it. Instead, they've always initiated contact by calling me back after I submitted a ticket. We recently offered to screen share, but it seems it's not their preferred method. The support is good but it is not the best I have used.
How would you rate customer service and support?
Positive
Which solution did I use previously and why did I switch?
Previously, we utilized Carbon Black for our endpoint security needs. However, we transitioned to CrowdStrike for several compelling reasons. As a prominent market competitor with widespread adoption among organizations, CrowdStrike offered a robust platform capable of meeting our evolving security requirements.
The 2021 incident further underscored the importance of robust security tools. CrowdStrike's capabilities proved invaluable in navigating the aftermath and instilled confidence in its continued effectiveness for future challenges.
Beyond its proven track record, CrowdStrike seamlessly integrates with our existing security ecosystem. The platform's comprehensive feature set simplifies endpoint management from a centralized console. Additionally, its granular telemetry across various modules provides invaluable insights during incident detection, enabling us to gather holistic information from each affected machine.
Furthermore, CrowdStrike consolidates our security stack by encompassing next-generation firewalls, endpoint detection and response, and real-time endpoint scanning, eliminating the need for separate solutions like McAfee. This streamlined approach enhances operational efficiency and simplifies security management.
How was the initial setup?
The initial deployment presented some challenges due to the need to install the solution on all machines. This phase, requiring careful coordination among ten people over several weeks, involved connecting all the computers to the network. However, once this foundation was laid, the subsequent rollout proceeded smoothly.
What about the implementation team?
The implementation was completed in-house by our people.
What was our ROI?
The return on investment is evident in the enhanced security posture achieved through continuous monitoring and immediate isolation of compromised machines. This proactive approach not only mitigates risk but also provides significant peace of mind for our team, alleviating concerns and optimizing their performance.
What's my experience with pricing, setup cost, and licensing?
While CrowdStrike Falcon offers significant security benefits, its high price point might make it prohibitively expensive for many small and medium-sized businesses, including companies like ours.
What other advice do I have?
I would rate CrowdStrike Falcon a nine out of ten.
CrowdStrike Falcon is a great tool. Investing in proper training on the CrowdStrike Falcon platform is highly recommended for any organization seeking to maximize its potential and avoid navigation struggles within the console. However, it's important to note that effective utilization of Falcon without CrowdStrike's managed services necessitates the formation of a dedicated team responsible for managing the solution.
An overall positive experience with crowdstrike
What do you like best about the product?
I am not a heavy user of crowdstrike so i cant give a super in deph review however when i have used it which has been quite a lot recently in the last few months due to project work it has been a joy to work with it has a lot of differnt features which my company has not made use of yet however i have full confidence that these features will be easy to implement and intergrate into our crodstrike enviroment i have only had to conatct customer support once during this year for some advice and they were very helpful and got to my issue quickly
What do you dislike about the product?
I think due to my lack of time using the product i have quite a biased review however i have no negatives for crowdstike it has been perfect really
What problems is the product solving and how is that benefiting you?
It allowed us to roll out the control of USB sticks via policies and grouping tags this projrct was very beneficial for us due to the fact we had a security audit recently and they tried USB sticks and this did not work
Great experience
What do you like best about the product?
Good cloud security tool recommended for every orginization easy to use number of features
What do you dislike about the product?
No dislike its good product nothing everything is good
What problems is the product solving and how is that benefiting you?
Yes it is helpful for getting the junk files blocked and its a very good antivirus tool
The excellent endpoint protection solution
What do you like best about the product?
The best feature of crowdstrike falcon is that it is very easy to use and manage and works in offline mode also and the product implementation was very easy the customer support was also helpfull.
What do you dislike about the product?
crowdstrike falcon is premium endpoint prtection solution so it is very costly compare to other solutions and sometimes its detection engine detects number of false positives.
What problems is the product solving and how is that benefiting you?
it is helping me to protect my endpoints from ransomware attacks that i was worried for and protecting my whole network from sophosticated attacks and safeguarding me from attackers.
Great experience
What do you like best about the product?
This is best hash based analysis protection. Reporting and event viewer is good.
What do you dislike about the product?
I don't dislike anything in crowd strike falcon endpoint protection
What problems is the product solving and how is that benefiting you?
Prevent organization from threads and vulnerability.
Crowdstrike falcon endpoint protection platform offer powerful features to protect endpoint systems.
What do you like best about the product?
It offers great features like machine learning to protect endpoints from advance threats, also it offers threat detection and response and threat intelligence as well.
What do you dislike about the product?
All the features are very helpful and easy to implement, so there is nothing to dislike about it.
What problems is the product solving and how is that benefiting you?
It is a great tool for endpoint protection which offers endpoint detection and response too. It addresses many challenges which resolves the issue endpoint management and protection.
Crowdstrike - Complete
What do you like best about the product?
It is a cloud based and lightweight agent to protect our endpoint from the zero-day attacks. It consumed less CPU and RAM uses in compare to other EDR solution. It works on signature-less technique. It scan real time.
What do you dislike about the product?
Platform could be more simple according to me.
What problems is the product solving and how is that benefiting you?
It is protecting from the zero-day threats
Essential-Falcon End Protection
What do you like best about the product?
Advance Threat detection, endpoint visibility, scalability and flexibility.
What do you dislike about the product?
Cost of implementation and ongoing subscription fees , dependency like it's relies on consistent internet connectivity
What problems is the product solving and how is that benefiting you?
Enhance incident response, allowing proactive measures against potential risks, real-time visibility
showing 121 - 130