CrowdStrike Falcon Endpoint Protection
CrowdStrikeExternal reviews
423 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Powerful Endpoint Defense for Modern Threats
What do you like best about the product?
CrowdStrike Falcon delivers powerful, real-time endpoint protection with minimal impact on system performance. The visibility and threat detection are excellent and the dashboard makes it easy to monitor and respond quickly.
What do you dislike about the product?
Some advanced features and reporting options can be complex to set up and the overall cost can be on the higher side, especially when multiple modules are required.
What problems is the product solving and how is that benefiting you?
CrowdStrike Falcon addresses the challenge of modern cyber threats by providing proactive, cloud-based endpoint security along with rapid threat detection. For us, this reduces risk, improves response times, and gives us confidence that our endpoints are continuously monitored and protected without creating heavy IT overhead.
Exceptional Prevention and Seamless Integration
What do you like best about the product?
I find the standout feature of CrowdStrike Falcon Endpoint Protection Platform to be its blazing-fast threat detection powered by cloud AI, which consistently outperformed our old tools. Beyond the cloud AI, I also appreciate Falcon's managed threat hunting and seamless integrations. The 24/7 expert threat detection is excellent at uncovering stealthy threats that our team might miss. Additionally, its lightweight agent and AI prevention have fixed our performance issues from old antivirus software. The initial setup was straightforward, even with our large scale, taking about 2-3 weeks for over 10,000 endpoints. Overall, I rate Falcon a solid 9 out of 10 because of its exceptional prevention, scalability, and unmatched value.
What do you dislike about the product?
While Falcon excels overall in my firm, some tweaks can make it better like alert tuning challenges when there is a flood of alerts. If there is a custom rule to configure those, that would be great. Some OOTB policies for software dev workflows would be a cherry on top. Role-based dashboard customization which powers different dashboards for devs and full forensics for hunters.
What problems is the product solving and how is that benefiting you?
CrowdStrike Falcon tackles endpoint security headaches from ransomware threats to compliance demands, offering fast threat detection with cloud AI, 24/7 expert threat hunting, and seamless integration.
Robust Security with Excellent Visibility
What do you like best about the product?
I like CrowdStrike Falcon's lightweight, cloud-native design and strong threat detection. It runs quietly in the background without slowing down systems but is extremely effective at catching known and unknown threats, including fileless attacks. The real-time visibility and detailed threat intelligence make investigations easier, and the console is intuitive once you get used to it. It provides a high level of confidence in endpoint protection without adding operational complexity. The initial setup was easy, requiring only the installation of a lightweight agent, and endpoints were protected almost immediately. The cloud-based console meant there was no on-prem infrastructure to manage, and most default policies worked well out of the box, allowing the team to get up and running quickly. I also appreciate its excellent integration with SIEM tools, identity platforms, and ticketing systems to streamline monitoring, investigations, and incident response workflows. Switching from a traditional antivirus solution to CrowdStrike Falcon gave us better visibility, faster detection, and stronger protection against modern threats.
What do you dislike about the product?
Reporting and alert tuning can feel complex for new users, and advanced features are costly. Offline protection and granular policy customization could be improved. Reporting and alert tuning have a steep learning curve and need better templates. Advanced features are expensive and would benefit from more flexible pricing.
What problems is the product solving and how is that benefiting you?
I use CrowdStrike Falcon for real-time threat detection, prevention, and response. It solves the challenge of detecting advanced threats and gives clear endpoint visibility. It reduces response time, eliminates on-prem infrastructure, and simplifies threat investigation with centralized insights.
Cloud-Native, Real-Time EDR with Fast Threat Detection and Lightweight Performance
What do you like best about the product?
CrowdStrike falcon is its cloud native architecture with real time EDR which provides fast threat detection automated response and lightweight endpoint performance without slowing down devices.
What do you dislike about the product?
CrowdStrike falcon is its high cost for small business and they heavy.
What problems is the product solving and how is that benefiting you?
CrowdStrike falcon solves malware ransomware and advanced threat detection problems benefiting users by providing real-time endpoint protection rapid incident response and improved overall security posture.
Powerful Cloud-Native EDR with Real-Time Detection and Centralized Management
What do you like best about the product?
CrowdStrike Falcon endpoint protection platform and it is could native architecture real time threat detection and response.
CrowdStrike provides powerful EDR capabilities, fast incident visibility, minimal system performance impact and centralized management
CrowdStrike provides powerful EDR capabilities, fast incident visibility, minimal system performance impact and centralized management
What do you dislike about the product?
the CrowdStrike falcon endpoint protection platform is its high cost and limited visibility without premium modules which can make it difficult.
What problems is the product solving and how is that benefiting you?
CrowdStrike Falcon solves advanced malware and breach detection problems, offering fast threat response, real time endpoint visibility, and automated isolation. It benefits with stronger security and less manual work
Lightweight, Invisible Agent with Powerful One-Click Network Containment
What do you like best about the product?
The best part is definitely the single, lightweight agent. Unlike our old antivirus, which used to slow down laptops and require constant reboots for updates, Falcon is almost invisible to end users. I also really love the 'Network Containment' feature being able to isolate an infected machine from the network with one click (while still keeping the connection to the console) is a huge stress reliever for our team.
What do you dislike about the product?
It’s a 'premium' product with a premium price tag. If you’re a smaller shop, it’s hard to justify the cost compared to something like SentinelOne or even Defender for Business. Also, the learning curve is pretty steep. The query language (FQL) is powerful but it isn't exactly intuitive—you really have to spend time in the documentation to do anything beyond basic alert checking. I also wish the reporting templates were a bit more flexible without having to export data elsewhere.
What problems is the product solving and how is that benefiting you?
The biggest problem Falcon solved for us was 'alert fatigue.' Before switching, we were drowning in notifications from our legacy AV that mostly turned out to be false positives. Falcon’s behavioral AI is much more accurate—it filters out the noise so when my team gets an alert, they actually take it seriously. It’s also saved us a ton of time on deployment. We can push the agent to hundreds of remote machines without a reboot, which means no more scheduling late-night maintenance windows just to update our security.
Well-Organized EDR Portal with Easy Navigation and Detailed Detections
What do you like best about the product?
My favorite part of the EDR platform is the platform itself. The portal is very well organized. The navigation of the dashboard is easy to follow to locate the components you are actually looking for. I also like the detection page because of the great breakdown of detailed information it provides in one window.
What do you dislike about the product?
It's a bit of a double-edged sword. I like the dashboard layout and the separation of each function, but there can be information overload sometimes. The portal itself is well organized, the data being presented can be overwhelming and hard to follow though. For this reason, the home page of the dashboard can be so valuable as you can see the most significant information cleanly instead of in the mix with so much other information. This could be more of the result of me not personally being as versed in cyber-security.
What problems is the product solving and how is that benefiting you?
It serves as just that. It's an endpoint protection tool. It allows our district to confidently monitor our issued devices. Working in schools can open the door to many threats, but the platform allows for me to see what exactly is being accessed and installed. I can perform analysis and remediate issues as they arise. Gone are the days of waiting for a teacher to report issues; I can actively see what is being performed on our laptops.
Accurate Threat Detection with Centralized Endpoint Visibility
What do you like best about the product?
CrowdStrike Falcon endpoint protection platform provides accurate detection and timely warnings of threats. It also offers centralized management and clear visibility across hosts, making it easier to monitor and manage endpoints from one place.
What do you dislike about the product?
Setting up the API connectors for Log Management in the Next-Gen SIEM is a bit complicated but support is always there to help with that
What problems is the product solving and how is that benefiting you?
Legacy antivirus tools often can’t reliably detect or stop modern threats such as ransomware, fileless malware, zero-day attacks, credential theft, and lateral movement, largely because they tend to depend on signature-based detection and periodic scans.
Falcon Solution: It uses AI-powered detection, behavioral analytics, and next-gen antivirus capabilities to identify and block threats in real time
Falcon Solution: It uses AI-powered detection, behavioral analytics, and next-gen antivirus capabilities to identify and block threats in real time
All-in-One protection with easy handling
What do you like best about the product?
I appreciate that all CrowdStrike modules are unified in one platform. I particularly like the auto-update function of the endpoint sensor and the ease of operation and administration. The platform requires little CPU and RAM, which is very helpful. I also find it good that the analyst has many options to respond to attacks and receives numerous log files. The initial setup was very easy because the platform is intuitive and there are many guides available.
What do you dislike about the product?
The UI is partially overloaded and not modern enough, sometimes the UI reaches its limits.
What problems is the product solving and how is that benefiting you?
I use CrowdStrike Falcon Endpoint Protection Platform for the detection of next-generation attacks with integrated threat response. All CrowdStrike modules are unified in one platform. The auto-update function, easy operation and administration, and low CPU and RAM usage are useful.
Cloud-Native Security Solution
What do you like best about the product?
I like the cloud-native architecture of CrowdStrike Falcon Endpoint Protection Platform, as it eliminates the need for on-premise management with hardware. The lightweight agent and the fact that a single agent manages both EPP and XDR is a big plus for me. It's always up-to-date, which is great. Fast incident investigation is another feature that I find beneficial. I also appreciate the provision with the tenant provided by CrowdStrike, mass deployment with MDM solutions, and policy creation according to best practices.
What do you dislike about the product?
The solution is very good, but there are support challenges I'm facing. When I raise a ticket in the support portal with a priority 1 issue, there's a response delay and I often have to provide multiple logs.
What problems is the product solving and how is that benefiting you?
I use CrowdStrike Falcon Endpoint Protection Platform for agent connectivity and analyzing threats. I like its cloud-native architecture, lightweight agents, and fast incident investigation.
showing 11 - 20