We use the solution for endpoint security. We use the tool to ensure the endpoints are protected from abnormal activities, people don't run different scripts, and people don't compromise endpoints and use them to get into the network.
CrowdStrike Falcon Platform
CrowdStrikeExternal reviews
377 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Robust and detects almost every malicious activity that occurs within the endpoint
What is our primary use case?
What is most valuable?
The solution's most valuable feature is that it is robust and can detect almost every malicious activity that occurs within the endpoint.
What needs improvement?
I would like a centralized deployment where I could roll out or push it to all endpoints.
For how long have I used the solution?
I have been using CrowdStrike Falcon Surface for two years.
What do I think about the stability of the solution?
CrowdStrike Falcon Surface is a very stable solution.
What do I think about the scalability of the solution?
CrowdStrike Falcon Surface is a very scalable solution. A lot of customers are using CrowdStrike Falcon Surface. One of our customers for the solution has 12,000 endpoints.
How are customer service and support?
The solution's technical support is handled centrally by CrowdStrike, and the support was also good and knowledgeable.
How was the initial setup?
I didn't deploy the solution, but I supported customers that use it. I think it took them up to six months to deploy the CrowdStrike Falcon Surface.
What was our ROI?
The solution somehow doesn't allow intrusion and minimizes fraud or cyber-attacks. Within the time we're using it, CrowdStrike Falcon Surface detected a lot of intrusion from malicious individuals. It was able to prevent a lot of insider threats where people internally will want to run some malicious scripts within the environment.
It detects those malicious attacks quickly, and we can prevent them. It minimized a lot of cyber and fraud-related activities that could have cost the bank a lot of money.
What other advice do I have?
CrowdStrike Falcon Surface is a cloud-based solution. In light of the recent global IT outage that affected CrowdStrike, they should do proper change management.
Overall, I rate the solution a nine out of ten.
Prevent unauthorized access or identity theft from external sites
What is our primary use case?
It also helps you with access, like we have dark web monitoring and admin protection management. So, the use cases can vary from organization to organization, but every organization has different value in it.
What is most valuable?
It helps to prevent unauthorized access or identity theft from external sites. If your identity is stolen, you can ban it.
Real-time monitoring is important because it runs multiple things on a single platform, like IDA, EDR, XDR, and SIM solutions. It captures all technology with one agent, which makes it easier for us to fix customer issues.
Having a single console is helpful, especially when customers have multiple vendors for their products. It's easier to manage one partner. In this case, CrowdStrike Falcon helps.
What needs improvement?
One thing that is not yet available is attack simulation. For example, if someone tries to attack your Active Directory on inactive accounts, a cyber attacker could hack those accounts and try to get into your company. This could be a feature to add. It would give a fake reply each time someone tries to hack it. Multiple companies that I know of would like that.
For how long have I used the solution?
I have been using it for two years.
What do I think about the stability of the solution?
It is a stable product.
What do I think about the scalability of the solution?
I would rate the scalability a nine out of ten. It's a scalable solution that is very easy to deploy.
It is suitable for every kind of business, including small, medium, or enterprise businesses.
How are customer service and support?
Technical support depends on a system integrator.
CrowdStrike technical support regarding Identity Protection has a team, but if there's no issue with the agent, you can work it out yourself.
The support is good.
How would you rate customer service and support?
Positive
How was the initial setup?
The initial setup is easy. We only have one option available right now: on the cloud. It gets applied to endpoints, but it's cloud-based.
It is very easy to integrate this product into our existing environment.
What's my experience with pricing, setup cost, and licensing?
It's a premium product.
What other advice do I have?
From my end, it works. But it can be recommended or viewed by a personal customer. We are not the sole user of CrowdStrike Falcon. It's the end user.
I would recommend using it. For me, it is the best product ever. Overall, I would rate it an eight out of ten.
Easy Deployment, Light, and Stellar EDR
What do you like best about the product?
Does a great job at providing robust threat detection and incident investigation capabilities.
What do you dislike about the product?
Would like more detailed reporting/options. Additional costs for add-on features.
What problems is the product solving and how is that benefiting you?
After working through some false-posititve tuning we were impressed with the machine learning capabilities. Allowing us a free trial in the environment was also helpful before full rollout. Integrated Threat Intelligence functions well, also a huge plus.
Taking Endpoint security to whole another level
What do you like best about the product?
Ease of Implementation: - Falcon sensor is easy to deploy on endpoints.Even for a large organization we can easily deploy falcon sensor with the help of deployment tools.
Ease of Integration: - We can easily integrate crowdstrike falcon with other technologies with the help of APIs and data connectors.
Frequency of Use: - Since it is an NGAV it is being used on a daily basis in our organization.
Number of Features: - Crowdstrike provide variety of features with in their falcon endpoint protection platform like USB device control, Insight of endpoints, different set of policies which gives falcon admins a granular control over their endpoints.
Ease of Integration: - We can easily integrate crowdstrike falcon with other technologies with the help of APIs and data connectors.
Frequency of Use: - Since it is an NGAV it is being used on a daily basis in our organization.
Number of Features: - Crowdstrike provide variety of features with in their falcon endpoint protection platform like USB device control, Insight of endpoints, different set of policies which gives falcon admins a granular control over their endpoints.
What do you dislike about the product?
Customer Support: - The only thing I dislike about Crowdstike is their customer support since they take a very long time to respond to customer queries.
What problems is the product solving and how is that benefiting you?
CrowdStrike Falcon monitors real time behavioral analysis to detect and repond to threats in real time. NGAV helps minimize and reduce the attacks on endpoints. It's light weight sensor is easy to deploy.
Offers good AI features to users
What is our primary use case?
I used the tool since my company wanted a product with next-generation antivirus and EDR, as it can help with the detection of malicious activities and behavior detection, and the MI and machine learning part in the tool also helps.
What needs improvement?
Only for the customized IOCs, there is a need to highlight certain aspects, and based on it, we get to block only the hash values but is not based on the file name, like .exe, or other extensions, so I can't block them, making it in an area where the solution needs to improve.
My company had raised a concern with CrowdStrike's support team when one of the antivirus applications that communicates with CrowdStrike started misbehaving. For both the aforementioned tools, the same support ticket had to be raised. If my company had to provide any suggestions regarding the whitelisting part, there was a delay of over a month when dealing with the product's support team. If the tool's support team suggests users follow certain steps, and if it is not followed or is not in progress, then after two or three days, the tool's support team needs to join a video call and provide a resolution to the users.
Some policies in the tool need to be fine-tuned. Customized IOCs need to be improved since they have certain shortcomings. With the customized IOCs, it can be made possible to block a file extension with a filename or file extension type of blocking. Providing users with the ability to customize policies would be a good improvement to the solution.
For how long have I used the solution?
I have been using CrowdStrike Falcon Threat Intelligence for a year. I am a user of the tool.
What do I think about the stability of the solution?
Stability-wise, I rate the solution an eight and a half out of ten.
What do I think about the scalability of the solution?
Scalability-wise, I rate the solution an eight out of ten.
My company's cybersecurity and IT security team use the tool. In my company, there are 15,000 users. For servers, there are 1,500 users.
Right now, there is no need to increase the usage of the tool.
How are customer service and support?
The solution's technical support is not good. I rate the technical support a four to five out of ten.
How would you rate customer service and support?
Neutral
Which solution did I use previously and why did I switch?
I have experience with Palo Alto.
The detection and other functionalities in CrowdStrike and Palo Alto are the same, but cost-wise, CrowdStrike is reasonable. Technically, I would prefer Palo Alto over CrowdStrike.
How was the initial setup?
The product's deployment phase is easy. I rate the setup phase of the tool as a ten on a scale where one is difficult and ten means it is an easy process.
The solution can be deployed in the cloud and on an on-premises model.
The solution can be initially deployed in a minute.
Considering the number of users, servers, cloud, and on-premises environment, it hardly takes 15 to 20 days. When there are laptop and desktop users who are online, and there is a need to install the agent, then there can be some issues, and with such minor things, ten days are more than enough for the installation.
What's my experience with pricing, setup cost, and licensing?
CrowdStrike is a reasonably priced tool.
What other advice do I have?
In terms of the ability of the tool to deal with threats, I would say that the product does it by around 85 percent.
The real-time response of the tool is good, and I feel it is around 90 to 95 percent.
The tool's incident-handling capability is good.
Considering the influence of the product on our company over some time, I would say that the solution is cost-effective and offers good threat detection features. The tool's interface is also good.
The tool's AI features are good, but they are not useful for our company since the area of detection is not something in our bucket right now.
If you have a big budget, go with Palo Alto. If you have a low budget and want a tool that provides more accuracy during detection, then it is better to go with CrowdStrike.
I rate the tool a nine out of ten.
new age EDR solution
What do you like best about the product?
user-friendly console
easier to install and deploy in the network
amazing customer support during and after the deployment
easier to integrate with other security solutions
easier to install and deploy in the network
amazing customer support during and after the deployment
easier to integrate with other security solutions
What do you dislike about the product?
frequency of use is not much due to its limitation of remediation as compared to its competitor
features are too confusing limiting users in confusion with so many options in the policy
features are too confusing limiting users in confusion with so many options in the policy
What problems is the product solving and how is that benefiting you?
management of endpoints is super smooth in crowdstrike with so many options and control to admin. it helped my organization in increasing its security posture. manageblity of different incidents is also good along with the data retention.
Complete Network Monitoring with CS Falcon
What do you like best about the product?
Crowdstrike Falcon maintains a database of all the systems that it monitors in the network, this database is easily accessible with basic database queries. It furthermore lets us manage the threats percieved quickly. Crowdstrike provides easy integration with 3rd party platforms for ticket management such as Okta, XSOAR through this, we were able to implement a unified dashboard for our system monitoring. The customer support from CS was onpoint as whenever a new feature or a change rolled out in the UI our entire team was kept informed and updated.Crowdstrike was our main EDR which we used frequently.
What do you dislike about the product?
Although crowdstrike provides a good api base for integration it lacks in focumentation for plugin support, If there was a no code based plugin development system for CS , analysts would be able to quickly develop CS workflows.
What problems is the product solving and how is that benefiting you?
We were using CS as our EDR, Not only did CS helped mitigate multiple threats to our network, containing the threat instantly but also its forensic capabilities helped us as a team to colloborate and get to the root cause causing the issue.
CrowdStrike Falcon provides the complete protection over you intranet and internet
What do you like best about the product?
It's provide protection over DDos attack, phishing attack and other.
What do you dislike about the product?
Thing is dislike is somtime it give frequent updates.
What problems is the product solving and how is that benefiting you?
NA
NGAV replacement
What do you like best about the product?
Easy to understand.
Customer support was best as compared to competitors
implementing it in the network was super smooth in the deployment process
As compared to competitors, it provides the best in class features in the in the policy section with user control
Integrating it with other security solutions is super easy and manage
Customer support was best as compared to competitors
implementing it in the network was super smooth in the deployment process
As compared to competitors, it provides the best in class features in the in the policy section with user control
Integrating it with other security solutions is super easy and manage
What do you dislike about the product?
i use this very often and as I see during the marketing and training competitors emphasise more on a certain feature saying it patented and they are the only OEM providing that feature but crowdstrike also do that but don't mention it to the extent competitors.
What problems is the product solving and how is that benefiting you?
Features like the protection of VSS shadow copy help my organization from threats targeting VSS shadow copy. along with controls given in the policy section, user can customise It as per the business requirement.
Probably the most effective and real time Endpoint Protection Platform
What do you like best about the product?
Its instant and real time nature of detection and execution is mind blowing. Also it is really easy to use, which gives us more time to focus on other business critical things. The overall functionality , that is the list of features offered and its performace as well are both consistent of its quality and hence offers a peace of mind to us.
What do you dislike about the product?
For some newer apps the level of integration isnt as friendly and smooth as it should be . Also Linux support can be improved.
What problems is the product solving and how is that benefiting you?
Any suspicious activities or process is detected immediately and terminated. For example, i tried to download an installation file of an application . Crowdstrike immediately alerted about it and even closed the browser session to ensure the activity is not proceeded.
showing 41 - 50