CrowdStrike Falcon Platform
CrowdStrikeExternal reviews
422 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Comprehensive Endpoint Protection with Real-Time, AI-Powered Threat Detection
What do you like best about the product?
CrowdStrike Falcon provides comprehensive endpoint protection with advanced threat detection capabilities. The real-time monitoring and AI-powered analysis help identify and respond to threats quickly. The cloud-native architecture makes deployment and management straightforward across our organization.
What do you dislike about the product?
The pricing can be on the higher side for smaller organizations. Some advanced features require additional training to fully utilize. Occasionally, false positives can create extra work for the security team to investigate.
What problems is the product solving and how is that benefiting you?
CrowdStrike Falcon is solving our endpoint security challenges by providing real-time threat detection and response capabilities. It helps prevent ransomware attacks and other malware from compromising our systems. The platform benefits us by reducing the time to detect and respond to security incidents, minimizing potential damage and downtime.
Fast Deployment, Lightweight Agent, and Deep Endpoint Visibility
What do you like best about the product?
CrowdStrike Falcon is built as a cloud-native platform with a single lightweight agent, which makes deployment fast and minimizes performance impact on endpoints. Falcon also provides deep visibility into endpoint activities, enabling detailed investigation, threat hunting, and forensic analysis. In addition, it uses advanced AI and machine learning to detect and block both known and unknown threats. Their support team is available 24*7 and is helpful with setup, agent issues, & Security incidents.
What do you dislike about the product?
CrowdStrike works through the cloud, so servers need internet access to communicate properly. In isolated or air-gapped environments, such as some OCI or data center servers, the agent can face communication issues.
What problems is the product solving and how is that benefiting you?
CrowdStrike Falcon provides better visibility into endpoint activity and enables a faster response to security incidents, which has reduced risk and operational effort. It uses advanced artificial intelligence and machine learning to detect and block both known and unknown threats, including zero-day attacks, without relying on signatures. This helps us catch more sophisticated attacks earlier in the kill chain.
Exceptional Prevention and Seamless Integration
What do you like best about the product?
I find the standout feature of CrowdStrike Falcon Endpoint Protection Platform to be its blazing-fast threat detection powered by cloud AI, which consistently outperformed our old tools. Beyond the cloud AI, I also appreciate Falcon's managed threat hunting and seamless integrations. The 24/7 expert threat detection is excellent at uncovering stealthy threats that our team might miss. Additionally, its lightweight agent and AI prevention have fixed our performance issues from old antivirus software. The initial setup was straightforward, even with our large scale, taking about 2-3 weeks for over 10,000 endpoints. Overall, I rate Falcon a solid 9 out of 10 because of its exceptional prevention, scalability, and unmatched value.
What do you dislike about the product?
While Falcon excels overall in my firm, some tweaks can make it better like alert tuning challenges when there is a flood of alerts. If there is a custom rule to configure those, that would be great. Some OOTB policies for software dev workflows would be a cherry on top. Role-based dashboard customization which powers different dashboards for devs and full forensics for hunters.
What problems is the product solving and how is that benefiting you?
CrowdStrike Falcon tackles endpoint security headaches from ransomware threats to compliance demands, offering fast threat detection with cloud AI, 24/7 expert threat hunting, and seamless integration.
Robust Security with Excellent Visibility
What do you like best about the product?
I like CrowdStrike Falcon's lightweight, cloud-native design and strong threat detection. It runs quietly in the background without slowing down systems but is extremely effective at catching known and unknown threats, including fileless attacks. The real-time visibility and detailed threat intelligence make investigations easier, and the console is intuitive once you get used to it. It provides a high level of confidence in endpoint protection without adding operational complexity. The initial setup was easy, requiring only the installation of a lightweight agent, and endpoints were protected almost immediately. The cloud-based console meant there was no on-prem infrastructure to manage, and most default policies worked well out of the box, allowing the team to get up and running quickly. I also appreciate its excellent integration with SIEM tools, identity platforms, and ticketing systems to streamline monitoring, investigations, and incident response workflows. Switching from a traditional antivirus solution to CrowdStrike Falcon gave us better visibility, faster detection, and stronger protection against modern threats.
What do you dislike about the product?
Reporting and alert tuning can feel complex for new users, and advanced features are costly. Offline protection and granular policy customization could be improved. Reporting and alert tuning have a steep learning curve and need better templates. Advanced features are expensive and would benefit from more flexible pricing.
What problems is the product solving and how is that benefiting you?
I use CrowdStrike Falcon for real-time threat detection, prevention, and response. It solves the challenge of detecting advanced threats and gives clear endpoint visibility. It reduces response time, eliminates on-prem infrastructure, and simplifies threat investigation with centralized insights.
Cloud-Native, Real-Time EDR with Fast Threat Detection and Lightweight Performance
What do you like best about the product?
CrowdStrike falcon is its cloud native architecture with real time EDR which provides fast threat detection automated response and lightweight endpoint performance without slowing down devices.
What do you dislike about the product?
CrowdStrike falcon is its high cost for small business and they heavy.
What problems is the product solving and how is that benefiting you?
CrowdStrike falcon solves malware ransomware and advanced threat detection problems benefiting users by providing real-time endpoint protection rapid incident response and improved overall security posture.
Powerful Cloud-Native EDR with Real-Time Detection and Centralized Management
What do you like best about the product?
CrowdStrike Falcon endpoint protection platform and it is could native architecture real time threat detection and response.
CrowdStrike provides powerful EDR capabilities, fast incident visibility, minimal system performance impact and centralized management
CrowdStrike provides powerful EDR capabilities, fast incident visibility, minimal system performance impact and centralized management
What do you dislike about the product?
the CrowdStrike falcon endpoint protection platform is its high cost and limited visibility without premium modules which can make it difficult.
What problems is the product solving and how is that benefiting you?
CrowdStrike Falcon solves advanced malware and breach detection problems, offering fast threat response, real time endpoint visibility, and automated isolation. It benefits with stronger security and less manual work
Lightweight, Invisible Agent with Powerful One-Click Network Containment
What do you like best about the product?
The best part is definitely the single, lightweight agent. Unlike our old antivirus, which used to slow down laptops and require constant reboots for updates, Falcon is almost invisible to end users. I also really love the 'Network Containment' feature being able to isolate an infected machine from the network with one click (while still keeping the connection to the console) is a huge stress reliever for our team.
What do you dislike about the product?
It’s a 'premium' product with a premium price tag. If you’re a smaller shop, it’s hard to justify the cost compared to something like SentinelOne or even Defender for Business. Also, the learning curve is pretty steep. The query language (FQL) is powerful but it isn't exactly intuitive—you really have to spend time in the documentation to do anything beyond basic alert checking. I also wish the reporting templates were a bit more flexible without having to export data elsewhere.
What problems is the product solving and how is that benefiting you?
The biggest problem Falcon solved for us was 'alert fatigue.' Before switching, we were drowning in notifications from our legacy AV that mostly turned out to be false positives. Falcon’s behavioral AI is much more accurate—it filters out the noise so when my team gets an alert, they actually take it seriously. It’s also saved us a ton of time on deployment. We can push the agent to hundreds of remote machines without a reboot, which means no more scheduling late-night maintenance windows just to update our security.
All-in-One protection with easy handling
What do you like best about the product?
I appreciate that all CrowdStrike modules are unified in one platform. I particularly like the auto-update function of the endpoint sensor and the ease of operation and administration. The platform requires little CPU and RAM, which is very helpful. I also find it good that the analyst has many options to respond to attacks and receives numerous log files. The initial setup was very easy because the platform is intuitive and there are many guides available.
What do you dislike about the product?
The UI is partially overloaded and not modern enough, sometimes the UI reaches its limits.
What problems is the product solving and how is that benefiting you?
I use CrowdStrike Falcon Endpoint Protection Platform for the detection of next-generation attacks with integrated threat response. All CrowdStrike modules are unified in one platform. The auto-update function, easy operation and administration, and low CPU and RAM usage are useful.
Cloud-Native Security Solution
What do you like best about the product?
I like the cloud-native architecture of CrowdStrike Falcon Endpoint Protection Platform, as it eliminates the need for on-premise management with hardware. The lightweight agent and the fact that a single agent manages both EPP and XDR is a big plus for me. It's always up-to-date, which is great. Fast incident investigation is another feature that I find beneficial. I also appreciate the provision with the tenant provided by CrowdStrike, mass deployment with MDM solutions, and policy creation according to best practices.
What do you dislike about the product?
The solution is very good, but there are support challenges I'm facing. When I raise a ticket in the support portal with a priority 1 issue, there's a response delay and I often have to provide multiple logs.
What problems is the product solving and how is that benefiting you?
I use CrowdStrike Falcon Endpoint Protection Platform for agent connectivity and analyzing threats. I like its cloud-native architecture, lightweight agents, and fast incident investigation.
CrowdStrike Falcon Endpoint Protection Platform is amongst the best out there!
What do you like best about the product?
Crowdstrike Falcon Endpoint Protection's interface is extremely intuitive.
What do you dislike about the product?
In all honesty, I love the product. My only dislike, i would say, is my fear they may repeat their mishap with Windows Updates.
What problems is the product solving and how is that benefiting you?
CrowdStrike Falcon Endpoint Protection Platform has helped us secure all of our endpoints across multiple platforms.
showing 1 - 10