Robust Endpoint Security with Seamless, Signature-Free Protection
What do you like best about the product?
Crowdstrike Falcon Support for Endpoint Security protects against Malware & other virus protection without signature & auto update features
What do you dislike about the product?
Improve UI
Improve AI feature
Improve Performance
What problems is the product solving and how is that benefiting you?
Protect against the vulnerability & Virus protection
Review of Real-Time Threat Detection and Effortless Endpoint Protection
What do you like best about the product?
CrowdStrike Falcon is a cloud-based endpoint protection platform that provides real-time threat detection, automated response, and centralized management. It uses AI to quickly identify and stop threats, and its lightweight agent works efficiently across all devices.
What do you dislike about the product?
CrowdStrike Falcon is powerful but has some drawbacks: it can be expensive, sometimes gives false alerts, is complex to uninstall, and its interface can be overwhelming for new users. It also relies on the cloud, so offline use is limited, and some advanced features require extra licenses.
What problems is the product solving and how is that benefiting you?
CrowdStrike Falcon protects devices from malware, ransomware, and advanced attacks using real-time detection and automated response. It gives organizations better visibility, faster threat containment, and simplified management—all through a single cloud-based platform.
Excellent EDR platform for your Organization
What do you like best about the product?
Provides very good protection for Windows and Linux. East to manage. Clean UI and policy management is also very much feasible.
What do you dislike about the product?
It is not very good for MAC endpoints. not giving much detection. Also not providing end user system remote access in UI.
What problems is the product solving and how is that benefiting you?
It is providing protection in my end user systems and servers. Also if needed they provide the CLI remote access of endpoints for any type of actions. Moreover, it also provides the sandboxing facility for malware analysis and the impact. Their cyber actor module provides the latest active malware family details for threat hunting.
Real-Time Threat Detection That Delivers
What do you like best about the product?
It provide the real-time threat detection.
What do you dislike about the product?
Sometimes it generates false positive alerts.
What problems is the product solving and how is that benefiting you?
It helps to detect, prevent, and respond to advanced endpoint threats in real time.
Advanced and effective protection against threats on endpoints
What do you like best about the product?
The ability to identify and stop advanced threats in real time, preventing them from spreading, is remarkable.
What do you dislike about the product?
The cost of the license is high, which can represent a barrier for medium or small-sized organizations.
What problems is the product solving and how is that benefiting you?
CrowdStrike Falcon solves the problem of lack of visibility and late threat detection on endpoints. With its real-time monitoring and cloud-based rapid response capability, we are now able to identify and contain incidents much more efficiently.
Powerful and Reliable Endpoint Protection for Modern SOC Operations
What do you like best about the product?
What I like best about CrowdStrike Falcon is how fast and reliable it is when detecting threats. Just recently, it flagged a suspicious PowerShell script running on one of our endpoints. Within minutes, we had a full timeline of the activity, including the parent process and command line details. That helped us respond quickly and avoid any impact.
As a SOC analyst , I also appreciate how easy it is to navigate. The interface is clean, and the alerts are well-organized, which makes it easier to learn and understand real-world attack patterns. It doesn’t just throw alerts—it gives context, which is super helpful when you're still building your skills.
What do you dislike about the product?
While CrowdStrike Falcon is a powerful and reliable platform, some features can be a bit overwhelming for new users. It takes time to get used to the interface and understand how to use all the modules effectively. Also, the filtering options in the investigation tab could be improved—sometimes it's hard to narrow down alerts quickly when you're dealing with a large volume.
A helpful improvement would be to make the search and filtering more flexible and user-friendly, especially in the event timeline and process tree views. That would make investigations faster and smoother, especially for SOC teams handling multiple incidents.
What problems is the product solving and how is that benefiting you?
CrowdStrike Falcon helps us solve one of the biggest challenges in cybersecurity: detecting and responding to threats in real time across multiple endpoints. Before using Falcon, it was hard to get visibility into what was happening on devices, especially during suspicious activity. Now, we can track everything—from process execution to network connections—with detailed timelines and context.
As a SOC analyst trainee, this has been a huge benefit. It allows me to learn from real incidents while contributing to investigations. The platform also helps reduce false positives, so we can focus on actual threats instead of wasting time chasing noise. Overall, it’s made our team faster, more efficient, and more confident in our response.
Efficient threat detection and seamless deployment improve overall security
What is our primary use case?
We are using CrowdStrike Falcon because it has very low surface impact and minimal consumption of our resources, and we mainly use it for our endpoint protection.
CrowdStrike Falcon helps with endpoint protection by having very low memory utilization and processor usage, so it doesn't impact the computer system performance, and the computer system works very fast compared to all other endpoint protection solutions.
We find it very unique that CrowdStrike Falcon, which we deployed in many countries wherever our offices are, can be installed very quickly, maintained on a single console, single panel of console, and it's really easy to use and deploy. We primarily use it for endpoint protection.
What is most valuable?
The single panel console of CrowdStrike Falcon is very user-friendly, which is what we are looking for. Having multiple administrators between various offices with this single console gives us the ability to see all offices, branch offices, and partners, making it very useful to detect machines, identify machines, and check security risks. Everything in the single console is very useful.
CrowdStrike Falcon has positively impacted our organization in terms of efficiency because it's very lightweight, easy to deploy, easy to manage, and works very efficiently. It quickly detects issues and doesn't have a signature-based system, so it works fast and takes immediate action.
What needs improvement?
I don't think anything is missing in CrowdStrike Falcon, but if they can manage their SOC solution instead of users or the end users or customers doing that, it will be very useful, just as Sophos does.
For how long have I used the solution?
We have been using CrowdStrike Falcon for the past seven years.
What do I think about the stability of the solution?
CrowdStrike Falcon is stable; I have not had any issues with reliability or downtime.
What do I think about the scalability of the solution?
For scalability, CrowdStrike Falcon deserves a perfect score of ten out of ten.
How are customer service and support?
Regarding customer support, our experience has been really positive as they are very quick to assist us.
The customer support deserves a rating of ten out of ten.
How would you rate customer service and support?
Which solution did I use previously and why did I switch?
We were previously using Symantec Endpoint because we were not getting proper quotations, pricing, or support, particularly in India, which is why we wanted to switch.
What was our ROI?
In terms of return on investment, we find that CrowdStrike Falcon has ROI covered because less manpower is required. It's very easy to deploy without many IT admins, saving time, and while I cannot specify the money saved, the time saved is money in terms of manpower. This makes it very useful, quick to run, quick to install, easy to manage, and easy to deploy.
What's my experience with pricing, setup cost, and licensing?
We do not find any price challenges or setup costs with CrowdStrike Falcon; everything is smooth.
Which other solutions did I evaluate?
We evaluated three products, which were Sophos, CrowdStrike Falcon, and Trend Micro, before choosing CrowdStrike Falcon.
What other advice do I have?
In some cases, we have Excel files with VBA code inside, and CrowdStrike Falcon detects that it's a bit risky for us. When people download EXE files that are threats to our organization, it detects them very quickly. It also detects threats under ZIP files and can show us the path from where it came and where it goes, allowing us to easily see where the infection is and where it has spread.
My advice for others looking into using CrowdStrike Falcon is that as an endpoint protection solution, Falcon is always reliable, and I can recommend that this is the product you can deploy and forget all the worries.
We are an end user customer of CrowdStrike Falcon; we are not a partner or reseller, and we are not receiving any gift card or incentive for this review. We are just sharing our experience as an end user and as an IT Manager.
I rate CrowdStrike Falcon 9 out of 10.
Provides comprehensive threat protection and seamless integration with third-party tools
What is our primary use case?
I am a customer of CrowdStrike Falcon through a consultant, and our company is headquartered in India, while our consultant is a sister company also located in India.
We use CrowdStrike Falcon internally in our company.
I am using CrowdStrike Falcon for its purpose, which is to save the company from any attacks, viruses, or whatever threats are available.
What is most valuable?
The most useful feature of CrowdStrike Falcon is protection, though it cannot be described in one word.
Protection is the main purpose of CrowdStrike Falcon.
CrowdStrike Falcon has positively impacted my organization by providing good protection, logs, and reports, which I find very good.
What needs improvement?
One area for improvement in CrowdStrike Falcon could be the user interface and reports; it requires some improvements to be easily handled.
For the reporting in CrowdStrike Falcon, I need specific data because in most reports, some of the data is not with that importance for the collector, so the reports need to be more specific for each purpose.
For how long have I used the solution?
I have been working with CrowdStrike Falcon for around three years.
What do I think about the stability of the solution?
Regarding stability and reliability, I find CrowdStrike Falcon to be stable; nothing has happened since we installed it, and there are no bugs or issues from the software.
What do I think about the scalability of the solution?
I can say that CrowdStrike Falcon is sufficient in terms of scalability from my point of view; it is capable of working with our current infrastructure or setup, and I believe it's sufficient.
How are customer service and support?
My interaction with technical support for CrowdStrike Falcon was fine; they supported me and provided a solution for my issue.
Based on my experience, I would rate the technical support for CrowdStrike Falcon an eight.
How would you rate customer service and support?
Which solution did I use previously and why did I switch?
Before CrowdStrike Falcon, I used an application called Kaspersky, but not for the same purposes.
Which other solutions did I evaluate?
I did not evaluate other options before choosing CrowdStrike Falcon because it was a forced decision from our headquarters, from the mother company.
What other advice do I have?
Currently, I do not remember exactly what version of CrowdStrike Falcon we are using because I'm managing the team, but I can check the right version later.
We are using the latest version of CrowdStrike Falcon.
CrowdStrike Falcon has not helped me predict and prevent potential breaches by itself, but with support from other applications such as Splunk and Windows Defender, it has contributed.
I integrate CrowdStrike Falcon with third-party tools.
I have to integrate CrowdStrike Falcon with other applications to get the most protection, and the integration is smooth and everything works well.
I am using the lightweight agent.
For the system performance, the lightweight agent is fine; it has not affected performance too much, and generally it's acceptable.
I rate CrowdStrike Falcon eight out of ten.
Robust cybersecurity platform with excellent real-time threat detection capabilities
What do you like best about the product?
Advanced threat detection and response: The platform leverages artificial intelligence and machine learning to detect sophisticated threats, including zero-day attacks and fileless malware. Its behavioral analysis is particularly effective against ransomware and advanced persistent threats.
Cloud-native architecture with lightweight agent: Single lightweight agent deployment provides rapid scalability without significant endpoint performance impact. Real-time visibility across the entire environment is exceptional, enabling quick incident response.
Integrated threat intelligence: Access to one of the industry's most comprehensive threat intelligence databases with constant updates on emerging attack campaigns and adversary tactics, techniques, and procedures (TTPs).
What do you dislike about the product?
Premium pricing structure: The platform comes with a high price point that can be prohibitive for small to medium-sized organizations, especially when considering additional modules like Falcon OverWatch or specialized industry packages.
Initial complexity and learning curve: Organizations without prior EDR experience may find the volume of alerts and configuration options overwhelming initially, requiring specialized training and potential consulting services to optimize effectiveness.
Internet connectivity dependency: Being fully cloud-based requires consistent internet connectivity for complete functionality, which can be limiting in air-gapped environments or locations with unreliable network infrastructure.
What problems is the product solving and how is that benefiting you?
Advanced Persistent Threat Detection: Falcon identifies sophisticated, multi-stage attacks that traditional antivirus solutions miss, significantly reducing our mean time to detection (MTTD) from days to minutes. This has prevented several potential data breaches.
Centralized Security Visibility: The unified console provides comprehensive visibility across all endpoints, eliminating security blind spots and reducing the complexity of managing multiple security tools. This has improved our security team's efficiency by 40%.
Automated Threat Response: Real-time automated containment and remediation capabilities have reduced our incident response time dramatically, allowing us to isolate compromised endpoints within seconds rather than hours.
Best EDR Ever
What do you like best about the product?
complete suite for endpoint protection with high detection and response low false positive and give any CISO a peace of mind
What do you dislike about the product?
its cloud and CSPM pretty poor and expensive
What problems is the product solving and how is that benefiting you?
user and endpoint best protection
