CrowdStrike Falcon Endpoint Protection
CrowdStrikeExternal reviews
423 reviews
from
and
External reviews are not included in the AWS star rating for the product.
CrowdStrike Falcon: Powerful, Proactive, and Reliable
What do you like best about the product?
What I like best about CrowdStrike Falcon is how easy it is to use and implement. The platform offers a rich set of features while still feeling intuitive, and it integrates smoothly with other tools. Their customer support is responsive and helpful, and I use the platform frequently because it consistently delivers reliable protection without adding complexity
What do you dislike about the product?
One thing I dislike about CrowdStrike Falcon is that some of the advanced features can feel a bit overwhelming for new users, and the pricing can be on the higher side. However, once you get familiar with the platform, its strong protection, speed, and visibility definitely make up for those initial challenges
What problems is the product solving and how is that benefiting you?
CrowdStrike Falcon is solving major security challenges like malware, ransomware, and advanced endpoint attacks by providing real-time detection and quick response. It gives us clear visibility across all devices, reduces false positives, and automates a lot of routine security work. This has improved our overall security posture, saved time for the team, and made managing endpoints much easier and more efficient
Superior Endpoint Protection with Intuitive Interface and Rapid Threat Detection
What do you like best about the product?
CrowdStrike Falcon delivers superior endpoint protection through a combination of lightweight agents, rapid cloud-based detection, and highly accurate behavioral analytics. The platform excels at identifying threats early, preventing execution, and providing deep visibility into what occurred on the endpoint. The interface is intuitive, making it easy to investigate alerts, understand the root cause, and take action quickly.
What do you dislike about the product?
There isn’t much to dislike. Pricing can occasionally be a barrier for smaller organizations, and some advanced features (Falcon Insight, identity protection, etc) require additional licensing to unlock their full potential.
What problems is the product solving and how is that benefiting you?
CrowdStrike Falcon provides robust, always-on endpoint protection that significantly reduces the risk of malware, ransomware, and credential-based attacks. Because the platform reliably detects and prevents threats before they escalate, it allows our team to shift focus from reactive security work to key projects and strategic deliverables.
Seamless, Cloud-Native Security with Effortless Deployment
What do you like best about the product?
CrowdStrike Falcon distinguishes itself by integrating next-generation antivirus (NGAV), endpoint detection and response (EDR), and managed threat hunting within a single, lightweight, cloud-native agent. Thanks to this architecture, there is no need for on-premises infrastructure, which allows for quick and seamless deployment across Windows, Linux, and macOS.
CrowdStrike Falcon offers exceptional service and ease of use:
Outstanding SLA and customer support: Reliable and responsive assistance ensures smooth operations.
Effortless deployment for IT administrators: The cloud-native architecture makes setup quick and simple.
No impact on user productivity: Lightweight agent runs silently without slowing down devices.
Robust security for endpoints: Advanced threat detection and prevention safeguard against modern attacks.
Seamless API integrations: Built-in connectors for SIEM and other tools enable streamlined workflows.
In short, Falcon combines simplicity, performance, and enterprise-grade protection with strong integration capabilities.
CrowdStrike Falcon offers exceptional service and ease of use:
Outstanding SLA and customer support: Reliable and responsive assistance ensures smooth operations.
Effortless deployment for IT administrators: The cloud-native architecture makes setup quick and simple.
No impact on user productivity: Lightweight agent runs silently without slowing down devices.
Robust security for endpoints: Advanced threat detection and prevention safeguard against modern attacks.
Seamless API integrations: Built-in connectors for SIEM and other tools enable streamlined workflows.
In short, Falcon combines simplicity, performance, and enterprise-grade protection with strong integration capabilities.
What do you dislike about the product?
I don't have any specific points of dislike about CrowdStrike.
What problems is the product solving and how is that benefiting you?
CrowdStrike Falcon addresses several critical challenges in endpoint security:
Advanced Threat Protection: Stops ransomware, malware, and fileless attacks using AI-driven detection and prevention.
Visibility Across Endpoints: Provides real-time monitoring and forensic capabilities, eliminating blind spots in the network.
Simplified Deployment: Cloud-native architecture removes the need for on-prem infrastructure, making rollout fast and hassle-free.
Reduced Operational Overhead: Automatic updates and lightweight agents minimize IT workload and complexity.
Integration with Existing Tools: Built-in APIs for SIEM and other platforms streamline security operations.
Business Continuity: Runs silently without impacting user productivity, ensuring employees can work without interruptions.
Benefits to Us:
Stronger security posture with proactive threat hunting.
Faster incident response and remediation.
Lower total cost of ownership due to reduced infrastructure needs.
Improved compliance and reporting through centralized management.
Advanced Threat Protection: Stops ransomware, malware, and fileless attacks using AI-driven detection and prevention.
Visibility Across Endpoints: Provides real-time monitoring and forensic capabilities, eliminating blind spots in the network.
Simplified Deployment: Cloud-native architecture removes the need for on-prem infrastructure, making rollout fast and hassle-free.
Reduced Operational Overhead: Automatic updates and lightweight agents minimize IT workload and complexity.
Integration with Existing Tools: Built-in APIs for SIEM and other platforms streamline security operations.
Business Continuity: Runs silently without impacting user productivity, ensuring employees can work without interruptions.
Benefits to Us:
Stronger security posture with proactive threat hunting.
Faster incident response and remediation.
Lower total cost of ownership due to reduced infrastructure needs.
Improved compliance and reporting through centralized management.
Top-Notch Endpoint Protection with Minimal System Impact
What do you like best about the product?
I appreciate CrowdStrike Falcon Endpoint Protection Platform for its lightweight agent and real-time behavioral detection capabilities that offer excellent visibility into endpoint activity. The platform's threat graph and detailed incident timelines are invaluable, as they facilitate fast and accurate investigations into security incidents. Additionally, I find its cloud-native design exceptionally effective, ensuring that updates are quick and have minimal impact on our systems. This design choice enhances its efficiency and maintains optimal performance without bogging down our infrastructure.
What do you dislike about the product?
I encounter some occasional delays in data sync with CrowdStrike Falcon Endpoint Protection Platform, which can be inconvenient. Additionally, I believe there should be more customizable dashboard options available to better tailor the platform to specific needs.
What problems is the product solving and how is that benefiting you?
I use CrowdStrike Falcon Endpoint Protection Platform for endpoint security, continuous threat detection, and incident response, providing real-time visibility and proactive threat management across endpoints. Its lightweight agent, cloud-native design, and threat graph enhance security posture with minimal system impact.
Powerful Cloud-Native Security with Rapid Response
What do you like best about the product?
Cloud-native architecture (no heavy agents)
Powerful Visibility & Threat Hunting
Rapid Incident Response (RTR)
Powerful Visibility & Threat Hunting
Rapid Incident Response (RTR)
What do you dislike about the product?
Higher Cost Compared to Competitors
Limited Offline Functionality
Limited Offline Functionality
What problems is the product solving and how is that benefiting you?
Stopping modern, sophisticated cyberattacks
Highly Secure with Room for Interface Improvement
What do you like best about the product?
I like CrowdStrike Falcon Endpoint Protection Platform because it is highly secure, which gives me confidence that my endpoints are well protected against cyber threats. The ease of implementation is another aspect I appreciate, making the setup process straightforward once I understood the necessary steps.
What do you dislike about the product?
I find the management interface of the CrowdStrike Falcon Endpoint Protection Platform to be less user-friendly than I would like. It could benefit from improved intuitiveness and ease of use. Furthermore, the metrics that CrowdStrike provides are somewhat cumbersome when it comes to setting up direct alerts. This complexity can hinder timely responses to potential threats, impacting overall user experience. It feels like there is room for enhancing the overall user experience to make it more straightforward and efficient.
What problems is the product solving and how is that benefiting you?
I use CrowdStrike Falcon Endpoint Protection Platform to secure my endpoints from cyber threats and unauthorized access.
Lightweight, Accurate, But Challenging Query Language
What do you like best about the product?
CrowdStrike Falcon has been one of the most dependable EDR platforms I’ve used. The agent is extremely lightweight, which makes a big difference in keeping system performance smooth. Its detection accuracy is consistently strong and really helps us stay ahead of threats. The asset discovery feature is one of my favorites—it gives us clear visibility into what’s actually running in our environment and makes managing assets much easier. The built-in vulnerability assessment is also very reliable and helps us quickly identify and prioritize issues. Overall, the platform’s defensive capabilities and real-time protection give us a strong sense of confidence in our media security.
What do you dislike about the product?
The biggest challenge for me has been CrowdStrike’s query language. Coming from Splunk, which is more intuitive and easier to work with, the transition feels unnecessarily difficult. Having to juggle different syntaxes—CrowdStrike, Splunk, SIEM tools, Defender—slows things down and interrupts the workflow when I’m trying to run quick searches or investigations. Better documentation or easier mapping to familiar query formats would help a lot.
What problems is the product solving and how is that benefiting you?
CrowdStrike gives us a strong, lightweight, and effective layer of endpoint protection. It improves our visibility, strengthens our defenses, and helps us detect and respond to threats much faster. It also makes vulnerability management more efficient, which is a big plus for maintaining a secure media environment.
Transparent and Robust Solution That Delivers
What do you like best about the product?
The transparency and robustness of the platform
What do you dislike about the product?
The updates are a little disruptive at times
What problems is the product solving and how is that benefiting you?
Phishing and xsxripting
Effortless Deployment and Powerful AI-Driven Protection
What do you like best about the product?
It has Easy deployment and management. Single Lightweight agent. As it has AI/ML powered for real-time scanning it stops modern attacks, suspicious behavior, providing highly accurate detection with a low rate of false positives. It has lot of integration option with third-party tools.
What do you dislike about the product?
- It is not weakness but Console can be very hard to understand in the beginning but its very user friendly.
- Due to its continuous monitoring platform can generate lot of high volume alerts. But later on we can fine tune policy to whitelist false positives so its not an issue.
- Due to its continuous monitoring platform can generate lot of high volume alerts. But later on we can fine tune policy to whitelist false positives so its not an issue.
What problems is the product solving and how is that benefiting you?
- CrowdStrike stops modern fileless attacks, exploits, and behavioral tactics with help of its NGAV powered by AI/ML as it focuses on behavior of a process rather than just file hash.
- CrowdStrike solves the problem of Lack of visibility with its detailed endpoint activity along with process tree. This gives analysts instant, deep visibility and ability to search all endpoint for related activity.
- CrowdStrike solves the problem of CPU utilization issue as its lightweight agent is connected to CrowdStrike cloud. This eliminates the need of heavy on-premise infrastructure. It ensures minimal performance impact on end-user.
- Benefits from above points: Superior breach prevention, Faster incident response, Lower operation cost and complexity, Improved user productivity.
- CrowdStrike solves the problem of Lack of visibility with its detailed endpoint activity along with process tree. This gives analysts instant, deep visibility and ability to search all endpoint for related activity.
- CrowdStrike solves the problem of CPU utilization issue as its lightweight agent is connected to CrowdStrike cloud. This eliminates the need of heavy on-premise infrastructure. It ensures minimal performance impact on end-user.
- Benefits from above points: Superior breach prevention, Faster incident response, Lower operation cost and complexity, Improved user productivity.
Robust Security with AI Precision
What do you like best about the product?
I like that the AI/ML detection provides more granular level information and results in fewer false positive alerts. I also appreciate how it provides end-to-end flow information for each alert, making it easier to navigate and identify which events need attention. The rapid deployment capability is impressive too, as rapid deployment was possible for us.
What do you dislike about the product?
I find adding hash values (IOC) and IOA to have limited functions. Specifically, we cannot add more than 200,000 IOC, and we can only monitor them for a lesser period.
What problems is the product solving and how is that benefiting you?
I use CrowdStrike Falcon Endpoint Protection Platform to protect against zero-day attacks and provide antimalware protection. Its AI/ML detection gives detailed information and reduces false positives, offering end-to-end flow info to navigate critical alerts.
showing 51 - 60