Real-Time Threat Protection with Minor Dashboard Complexity
What do you like best about the product?
I appreciate the CrowdStrike Falcon Endpoint Protection Platform for its lightweight performance, which operates quickly without causing system slowdowns. The real-time threat detection is incredibly valuable as it allows us to identify security threats instantly and respond swiftly, which is crucial for maintaining the safety of our IT infrastructure. Moreover, I find the strong endpoint protection feature to be a significant asset, providing robust security measures that ensure all endpoints remain secure from potential malware attacks. The platform was easy to set up, which made the initial deployment seamless and efficient. Overall, these features make CrowdStrike Falcon an integral part of our security protocol, and I confidently rate it a 10 for recommendation.
What do you dislike about the product?
I find the dashboard complex for new users. It feels overwhelming at first, and could greatly benefit from being simplified. Providing clear tutorial videos would enhance the user experience for beginners.
What problems is the product solving and how is that benefiting you?
I find CrowdStrike Falcon Endpoint Protection Platform effective for real-time threat detection and malware protection, ensuring fast performance without slowing systems. It secures all our endpoints robustly.
Real-Time Threat Detection That Delivers
What do you like best about the product?
It provide the real-time threat detection.
What do you dislike about the product?
Sometimes it generates false positive alerts.
What problems is the product solving and how is that benefiting you?
It helps to detect, prevent, and respond to advanced endpoint threats in real time.
Excellence in Workflow Automation and Asset Management
What do you like best about the product?
The most useful features of CrowdStrike are its workflow automation, host containment, and asset management capabilities. CrowdStrike’s most valuable features include workflow management, host containment, and asset management.workflow automation, host containment, and asset management
What do you dislike about the product?
We are using the most user-friendly option, and I don't think anyone would dislike it.
What problems is the product solving and how is that benefiting you?
We are working on security features focused on host blocking, threat monitoring, IOA analysis, workflow integration, and automated script execution. Our work focuses on enhancing security through host blocking, threat monitoring, IOA detection, workflow integration, and script automation. We are developing advanced security features, including host containment, real-time threat monitoring, IOA-based detection, workflow automation, and script execution capabilities.
Advanced and effective protection against threats on endpoints
What do you like best about the product?
The ability to identify and stop advanced threats in real time, preventing them from spreading, is remarkable.
What do you dislike about the product?
The cost of the license is high, which can represent a barrier for medium or small-sized organizations.
What problems is the product solving and how is that benefiting you?
CrowdStrike Falcon solves the problem of lack of visibility and late threat detection on endpoints. With its real-time monitoring and cloud-based rapid response capability, we are now able to identify and contain incidents much more efficiently.
Crowdstike Falcon EDR: A SOC Analyst 's Hands-On review
What do you like best about the product?
As a SOC Analyst, I really value CrowdStrike Falcon’s real-time threat detection and visibility. The threat graph and behavioral analytics make it easier to investigate incidents and correlate activities quickly. I also like how lightweight the agent is—it doesn’t slow down endpoints, and updates are seamless. The dashboard is intuitive, and the detailed telemetry gives deep insights for hunting and responding to threats.
What do you dislike about the product?
The main drawback is the steep learning curve for new analysts, especially when diving into advanced hunting queries. Some of the alerts can be very noisy, requiring fine-tuning to avoid false positives. The pricing is also on the higher side compared to other EDR solutions, which might be challenging for smaller organizations.
What problems is the product solving and how is that benefiting you?
CrowdStrike Falcon helps us detect and respond to endpoint threats in real-time. It provides detailed telemetry and behavioral analytics that improve our investigation speed and reduce dwell time. The cloud-based architecture ensures scalability and seamless updates. Overall, it has strengthened our SOC capabilities by giving us better visibility, faster containment, and reduced risk of data breaches.
State-of-Art solution that provides Visibility, Threat Analysis and Response
What do you like best about the product?
Falcon offers visibility, detection and response, and integration within a single agent. It is easy to deploy across different platforms and brings everything together in a unique central management console for threat analysis and orchestration. This setup allows for the creation of automatic and proactive responses to adversaries and other threats.
What do you dislike about the product?
Falcon Crowdstrike Marketplace apps are not updated regularly, which can be frustrating when trying to get a response from vendor integration during a proof of concept. The lack of timely updates sometimes makes the process more challenging than it should be.
What problems is the product solving and how is that benefiting you?
Visibility, integration, and protection are among the key benefits of using FALCON. These features enhance the way threat hunting, data analysis, and extended response are carried out within IT Security Architecture, offering solutions for every layer of security.
CS deployment is very straight forward, they are not only an endpoint but also a top security firm
What do you like best about the product?
The ease of implementation stood out. Deployment was fast with minimal disruption. The interface is intuitive, and the lightweight agent doesn’t impact system performance. Its broad feature set (threat detection, EDR, vulnerability management) is robust, and the frequency of use is daily since it runs seamlessly in the background. Customer support has been responsive and knowledgeable, and integration with other security tools has been straightforward.
What do you dislike about the product?
The cost can be somewhat concerning, particularly when considering the price of additional modules such as IAM and SOAR. I hope they will consider offering free access for at least 50 to 100 devices to allow users to test their features, as this could encourage customers like me to take their product more seriously. Overall, I like their product and believe it is worth the investment.
What problems is the product solving and how is that benefiting you?
CrowdStrike Falcon addresses the challenge of advanced endpoint protection by detecting and stopping threats that traditional antivirus solutions often overlook. It gives us real-time visibility into attacks, suspicious activities, and vulnerabilities across all our endpoints, whether on-premises or remote.
This has led to a noticeable reduction in security incidents, less downtime, and better compliance with internal and regulatory security standards. Since it is cloud-native, we avoid the need to maintain heavy infrastructure, and updates are applied seamlessly. As a result, our IT and security teams now spend less time responding to incidents and can focus more on proactive defense.
Protect your enterprise network with CrowdStrike Falcon
What do you like best about the product?
Deploying CrowdStrike Falcon Endpoint Protection Platform agents across all computers in the network was easy and fast. CrowdStrike provide end point protection for your devices and ensure no malware gets access to your network.
Integration with Active directory is easy, and you can manage access and users. implementing on new devices with only agents to be installed,
As for the customer support if you have any issue, you can raise ticket with customer support, and they will sort out your issues with top technician.
What do you dislike about the product?
CrowdStrike utilize your device resources, so you need devices with high specs to avoid slowness and unusual performance for the computers.
What problems is the product solving and how is that benefiting you?
CrowdStrike helped our environment by protecting or end users' devices, and it control the access of end points such as USB and CD from Uknown sources.
Powerful and Reliable Endpoint Protection for Modern SOC Operations
What do you like best about the product?
What I like best about CrowdStrike Falcon is how fast and reliable it is when detecting threats. Just recently, it flagged a suspicious PowerShell script running on one of our endpoints. Within minutes, we had a full timeline of the activity, including the parent process and command line details. That helped us respond quickly and avoid any impact.
As a SOC analyst , I also appreciate how easy it is to navigate. The interface is clean, and the alerts are well-organized, which makes it easier to learn and understand real-world attack patterns. It doesn’t just throw alerts—it gives context, which is super helpful when you're still building your skills.
What do you dislike about the product?
While CrowdStrike Falcon is a powerful and reliable platform, some features can be a bit overwhelming for new users. It takes time to get used to the interface and understand how to use all the modules effectively. Also, the filtering options in the investigation tab could be improved—sometimes it's hard to narrow down alerts quickly when you're dealing with a large volume.
A helpful improvement would be to make the search and filtering more flexible and user-friendly, especially in the event timeline and process tree views. That would make investigations faster and smoother, especially for SOC teams handling multiple incidents.
What problems is the product solving and how is that benefiting you?
CrowdStrike Falcon helps us solve one of the biggest challenges in cybersecurity: detecting and responding to threats in real time across multiple endpoints. Before using Falcon, it was hard to get visibility into what was happening on devices, especially during suspicious activity. Now, we can track everything—from process execution to network connections—with detailed timelines and context.
As a SOC analyst trainee, this has been a huge benefit. It allows me to learn from real incidents while contributing to investigations. The platform also helps reduce false positives, so we can focus on actual threats instead of wasting time chasing noise. Overall, it’s made our team faster, more efficient, and more confident in our response.
Efficient threat detection and seamless deployment improve overall security
What is our primary use case?
We are using CrowdStrike Falcon because it has very low surface impact and minimal consumption of our resources, and we mainly use it for our endpoint protection.
CrowdStrike Falcon helps with endpoint protection by having very low memory utilization and processor usage, so it doesn't impact the computer system performance, and the computer system works very fast compared to all other endpoint protection solutions.
We find it very unique that CrowdStrike Falcon, which we deployed in many countries wherever our offices are, can be installed very quickly, maintained on a single console, single panel of console, and it's really easy to use and deploy. We primarily use it for endpoint protection.
What is most valuable?
The single panel console of CrowdStrike Falcon is very user-friendly, which is what we are looking for. Having multiple administrators between various offices with this single console gives us the ability to see all offices, branch offices, and partners, making it very useful to detect machines, identify machines, and check security risks. Everything in the single console is very useful.
CrowdStrike Falcon has positively impacted our organization in terms of efficiency because it's very lightweight, easy to deploy, easy to manage, and works very efficiently. It quickly detects issues and doesn't have a signature-based system, so it works fast and takes immediate action.
What needs improvement?
I don't think anything is missing in CrowdStrike Falcon, but if they can manage their SOC solution instead of users or the end users or customers doing that, it will be very useful, just as Sophos does.
For how long have I used the solution?
We have been using CrowdStrike Falcon for the past seven years.
What do I think about the stability of the solution?
CrowdStrike Falcon is stable; I have not had any issues with reliability or downtime.
What do I think about the scalability of the solution?
For scalability, CrowdStrike Falcon deserves a perfect score of ten out of ten.
How are customer service and support?
Regarding customer support, our experience has been really positive as they are very quick to assist us.
The customer support deserves a rating of ten out of ten.
How would you rate customer service and support?
Which solution did I use previously and why did I switch?
We were previously using Symantec Endpoint because we were not getting proper quotations, pricing, or support, particularly in India, which is why we wanted to switch.
What was our ROI?
In terms of return on investment, we find that CrowdStrike Falcon has ROI covered because less manpower is required. It's very easy to deploy without many IT admins, saving time, and while I cannot specify the money saved, the time saved is money in terms of manpower. This makes it very useful, quick to run, quick to install, easy to manage, and easy to deploy.
What's my experience with pricing, setup cost, and licensing?
We do not find any price challenges or setup costs with CrowdStrike Falcon; everything is smooth.
Which other solutions did I evaluate?
We evaluated three products, which were Sophos, CrowdStrike Falcon, and Trend Micro, before choosing CrowdStrike Falcon.
What other advice do I have?
In some cases, we have Excel files with VBA code inside, and CrowdStrike Falcon detects that it's a bit risky for us. When people download EXE files that are threats to our organization, it detects them very quickly. It also detects threats under ZIP files and can show us the path from where it came and where it goes, allowing us to easily see where the infection is and where it has spread.
My advice for others looking into using CrowdStrike Falcon is that as an endpoint protection solution, Falcon is always reliable, and I can recommend that this is the product you can deploy and forget all the worries.
We are an end user customer of CrowdStrike Falcon; we are not a partner or reseller, and we are not receiving any gift card or incentive for this review. We are just sharing our experience as an end user and as an IT Manager.
I rate CrowdStrike Falcon 9 out of 10.
