External reviews
External reviews are not included in the AWS star rating for the product.
Must have onboarded this tool
What do you like best about the product?
First of all, the dashboard looks awesome and the way it shows detections hierarchical tree of process involved, it is very good. Apart from it, it has some add on feature called spotlight is good CVE analysis and it is good to create custom IOA.
What do you dislike about the product?
So far I have nothing to dislike about this tool.
What problems is the product solving and how is that benefiting you?
Real impacting process captured in hierarchical tree graph. Also, it has good capability to block process execution and custom IOA creation.
- Leave a Comment |
- Mark review as helpful
Feature packed product with swift response timelines.
What do you like best about the product?
Exceptional EDR capabilities along with fast response from the managed SOC. I like the way the product maps out any threat/potential threat vector. It provides a great visulatization for users to trace the source.
What do you dislike about the product?
Sometimes, the product gets a bit noisy in throwing false positives but it tends to improve over time.
What problems is the product solving and how is that benefiting you?
Crowdstrike fully managed Falcon helps us manage our endpoint security posture. Since we are customers of the fully managed version, we have SOC capabilities partnered with Crowdstrike that allows 24/7/365 monitoring and alerting.
Best in class for Threat Hunting
What do you like best about the product?
Threat Graph gives a detailed explanation and helps to identify the root process from which the attack is being carried out. Overwatch and hybrid analysis in threat graph is the best features which makes us to respond to the attack in a short span of time.
What do you dislike about the product?
It would be great if it has an URL filtering. Also application control feature will be helpful to control the user application access.
What problems is the product solving and how is that benefiting you?
It basically scans all the process running in the background and which are getting triggered. It also gives me a detailed view on the threads which are associated to the threat attack.
Good heuristic detection methodology
What do you like best about the product?
Capturing 100% greyware files and 80% active malware families and back up logs
What do you dislike about the product?
Nothing just the interface could be more better
What problems is the product solving and how is that benefiting you?
Acting as an good edr and endpoint solution for maintaining organisation cyber hygiene
Want to ensure security then embrace this.
What do you like best about the product?
The first and good thing is you will get to see from where the process started and where it has ended by a process tree. And after that I it is to do rdp connection to hosts.
What do you dislike about the product?
There is nothing to dislike because there is no difficulty or complicated in this tool.
What problems is the product solving and how is that benefiting you?
It has an ability to stop the processes which are seems to be malicious in nature and quarantine the malicious files and throw an alert to analyst so he can decide what to do with that file
CrowdStrike Falcon Endpoint Protection Platform Review
What do you like best about the product?
CrowdStrike Falcon for Endpoint is a potent cybersecurity tool that improves endpoint security for businesses by providing real-time visibility and reaction, advanced threat information, a lightweight agent, preventative security measures, and professional managed threat hunting services.
What do you dislike about the product?
Some users have noted that CrowdStrike Falcon Endpoint Protection might be resource-intensive on the endpoint, which may cause system slow performance problems. Additionally, some users have remarked that it is needed to have extensive training on this platform to fully utilized it and familiarity on configuration if need. As with any cybersecurity solution, it's critical to take into account these factors and carry out extensive testing to ascertain whether the product is compatible with the needs and resources of your firm.
What problems is the product solving and how is that benefiting you?
First it offers a real-time visibility to our endpoints and knowing the current status of devices by this, it allows us cyber security analyst to check if there is existing threat present on devices. It has also customizable dashboard which we can optimized base on the requirement of our operations team.
Criwdstrike Falcon review
What do you like best about the product?
It has a very good UI and has support for different modules wuthin the same platform. The best part is enrolling the mobile devices is way simpler, just importing the email addresses and falcon mobile will be deployed.
What do you dislike about the product?
Crowdstrike sensor for non-domain machines should be enhanced as sensor sometimes doesnt detect the important details of the device.
What problems is the product solving and how is that benefiting you?
It is helping us manage our mobile devices efficiently. We can optimize the mobile policies in the console itself which is easier compared to other EDR platforms.
Crowd strike falcon review
What do you like best about the product?
The crowdstrike is very proactive in its detections and as it is highly structured with Machine learning and artificial intelligence,it has high detection rate compared to regular endpoint security solutions
What do you dislike about the product?
I don't think there is much to dislike in crowd strike,I have found it very useful so far but little problem with falcon ML detection related fps
What problems is the product solving and how is that benefiting you?
We are actively monitoring our infrastructure with crowd strike and it is easy to contain machines and separate them from network, the behavioural based detections are top notch.
Crowdstike Falcon: EDR and Threat Detector
What do you like best about the product?
Crowdstike is a next generation cloud based end point protection platform and a market leader in the cyber security space which secures end points in a variety of ways by providing end point detection and response services, anti-virus, threat detection that helps SOC teams to detect, investigate and respond sooner before any malicious artefacts becomes wide spread.
CS Falcon does not scan your endpoints, data, emails or websites like other AV solutions in the market, it analyzes the behaviors which should suffice the requirement however there are options to initiate manual scans for reporting and audit purposes.
One other thing about Crowdstrike Falcon is it's a light weight agent which can autouograde it self with out needing manual intervention.
CS Falcon does not scan your endpoints, data, emails or websites like other AV solutions in the market, it analyzes the behaviors which should suffice the requirement however there are options to initiate manual scans for reporting and audit purposes.
One other thing about Crowdstrike Falcon is it's a light weight agent which can autouograde it self with out needing manual intervention.
What do you dislike about the product?
Crowdstrike is expensive, technical support should be improved, adding any AV exclusions on the CS side cannot be easily verifyable from the endpoints and event logging on the endpoints is also limited unless one has console level access.
What problems is the product solving and how is that benefiting you?
In our environment we have a SOC operations team that heavily relies on Crowdstike for cyber security monitoring and incident response which other players in the market are not able to provide at the level with which Crowdstrike operates.
the best AV - next gen
What do you like best about the product?
light weight agent, less number of false positive
What do you dislike about the product?
Process of removing duplicates could be better
What problems is the product solving and how is that benefiting you?
The EDR solution of Crowdstrike is best in the market as per me, The sandboxing and threat analysis feature reduce lot of effort for the administrators.
showing 41 - 50