CrowdStrike Falcon Platform
CrowdStrikeExternal reviews
377 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Simple yet very powerful
What do you like best about the product?
CrowdStrike Falcon: Endpoint Protection is a great tool that quickly and easily enables advanced A/V capabilities through it's Endpoint Detection and Response agent. The platform is great for everyone from new users, through using their native console, to advanced users, through using the Event Search, which allows the users to use Splunk queries to search through the raw logs collected by the agents.
What do you dislike about the product?
There is a bit of a learning curve to learn how to use the platform to threat hunt using the available logs. However, there is documentation from the vendor to get you started.
What problems is the product solving and how is that benefiting you?
CrowdStrike Falcon: Endpoint Protection enables us to distribute a lightweight, yet very powerful next generation AV solution. Aside from just detection and blocking malicious software, the Endpoint Protection also looks at the behavior occurring on the system and is able to detect and block malicious/suspicious activity.
Recommendations to others considering the product:
When looking to add CrowdStrike Falcon: Endpoint Protection to your security stack, evaluate how it can integrate and provide value to your existing security stack.
Endpoint Protection Platform Done Right
What do you like best about the product?
The Falcon sensor is super lightweight and very easy to deploy. No impact to the overall stability of the system. No signature to download or rely on as it detects malicous activiites based on Machine Learnings and bahvior
What do you dislike about the product?
Reporting and metrics needs to improve. Currently there is no way to email reports and metrics. Exploit detections are difficult to troubleshoot and investigate. No phone number to call support unless it's a Priority-1 ticket.
What problems is the product solving and how is that benefiting you?
Protecting endpoints and having real time visibility into endpoint activiites.
CrowdStrike Review
What do you like best about the product?
CrowdStrike does an efficient job with saving time while investigating detections. It provides useful information that would otherwise have to be manually collected. The incidents section of CrowdStrike also does great at providing a list of IOCs for machines. This helps streamline the process of investigations too since we don't have to manually put together the bits and pieces that may point towards a machine being compromised.
What do you dislike about the product?
CrowdStrike doesn't have a way to easily remove malware from the machine, instead it just has you blacklist the hash. You can use real time response and remove malware that way, but a simple button in the UI to do that would speed up the process. Additionally, there isn't an option to automate the detection rules for certain detections. For example, there may be a detection we chose to ignore, but don't want to block the process. The detection will keep triggering alerts.
What problems is the product solving and how is that benefiting you?
CrowdStrike helps prevent malicious software from being installed on machines. We also have used it to prevent non-standard software from being blocked. The benefits are mainly related to saving time while investigating any threats CrowdStrike uncovers.
great product and quite detailed insights
What do you like best about the product?
The UI is really easy to use and navigate. Best part of EDR is having maintained list of alerts and incidents. Navigation across each alert and incidents is easy to troubleshoot and triage.
What do you dislike about the product?
Quite detailed and in depth traces which are sometimes hard to understand for someone like me who is not that much into security but security experts would be quite delighted to get this details
What problems is the product solving and how is that benefiting you?
Alerting is quite comprehensive and detailed.
Graphs and step by step process breaking is easy to understand
Graphs and step by step process breaking is easy to understand
easy for us to find the false positive and true positive. My favourite feature is network contain.😊
What do you like best about the product?
The network contain options helps us a lot. The detection of NGAV was excellent.
What do you dislike about the product?
No dislike. I really loved this tool but I faced lots of false positive.The tools has detected the internal developed script as true positive. As we are big organisation we have face lot of false positives.
What problems is the product solving and how is that benefiting you?
The benefits is finding the malware in runtime.
Recommendations to others considering the product:
It’s a Next generation Malware detection tool
CrowdStrike Falcon: Endpoint Protection One of the best EDR out there
What do you like best about the product?
Easy to use the interface and the rapidity to find the information you want
What do you dislike about the product?
Nothing to dislike the product is very useful.
What problems is the product solving and how is that benefiting you?
Investigating cybersecurity alerts on hosts. the ability to rapidly pivot and see info in the entire environment
Recommendations to others considering the product:
CrowdStrike Falcon: Endpoint Protection is a complexe
CrowdStrike has solved our problems
What do you like best about the product?
CrowdStrike monitoring is most helpful feature.
What do you dislike about the product?
Reporting is not the strong side of the tool.
What problems is the product solving and how is that benefiting you?
Endpoint solution in remote environment is working like a jam for us.
Recommendations to others considering the product:
Great product with great support team.
Easy to use and installation.
What do you like best about the product?
Installation is easy a simple click and ready to go
What do you dislike about the product?
Nothing, easy to use we replace mcafee AV
What problems is the product solving and how is that benefiting you?
Replace for the antivirus mcafee for crow strike sensor
Recommendations to others considering the product:
With CS you will have all in one system
CrowdStrike Falcon endpoint providing more security and very easy to manage
What do you like best about the product?
More Security and manage all things like desktop, user, data management
What do you dislike about the product?
Nothing dislike in crowdstrike endpoint.
What problems is the product solving and how is that benefiting you?
I realized the this endpoint protect the cyber attack
Recommendations to others considering the product:
Yes
Why should anyone choose Crowd Strike?
What do you like best about the product?
I have come across crowd strike in 2019. Things I like about crowd strike - single sensor, less resource consumption, robust EDR capability, the technology behind detection [ Machine Learning and AI] and the option to add or integrate with various custom IOC providers. When I was working in a partner company, I have recommended CS to many customer and never regretted.
What do you dislike about the product?
Consider this as suggestions. I also wish CS sensor has a scheduled scan capability. Also it would be great to see DLP and encryption capabilities. It would be like an all in one sensor which can be configured via policy
What problems is the product solving and how is that benefiting you?
- Less resource consumption
- No need of signature updates
- In depth insight into the managed environment
- Threat actors data
- No need of signature updates
- In depth insight into the managed environment
- Threat actors data
showing 161 - 170