Overview
What is CrowdStrike Falcon?
CrowdStrike offers the Falcon Endpoint Protection suite, an antivirus and endpoint protection system emphasizing threat detection, machine learning malware detection, and signature free updating. Additionally the available Falcon Spotlight module delivers vulnerability assessment with no performance impact, no additional agents,…
CrowdStrike Falcon - An innovative product to prevent security breaches
Best Nex-Gen XDR solution, way better than it's competitors
1. To prevent Ransomware
2. Device Control
3. Protection of Workstations and servers
4. …
CrowdStrike Falcon Complete is all the protection you need
Protecting my and your environment with CrowdStrike the easy way
CrowdStrike - good value for a good product
Efficient and effective endpoint detection and response
Crowdstrike Falcon in Higher Ed
Lightweight yet Robust Security Solution
CrowdStrike, the leader of EDRs
On the best automated threat protection solution
CrowdStrike Falcon Complete - world-class EDR managed-service without the hefty price tag!
EDR as it should be
Our most trusted endpoint protection tool for threat detection and response
EDR for any size business
How CrowdStrike Falcon Differs From Its Competitors
Consolidation of Tools
Breadth of Solutions
Consolidation of Tools
Breadth of Solutions
Consolidation of Tools
Breadth of Solutions
Automated protection and remediation
Improved threat intelligence
Consolidation of Tools
Breadth of Solutions
Consolidation of Tools
also i removed Cynet protection from the organization. CrowdStrike provide a better incident response platform, with a wider malware protection suite and zero trust …
Breadth of Solutions
since our team is a slim team, the ability to get immediate help from CrowdStrike support team reduces the impact of any security incidents and make it easier to secure our …
Consolidation of Tools
Breadth of Solutions
Consolidation of Tools
Breadth of Solutions
Consolidation of Tools
Breadth of Solutions
Consolidation of Tools
Our tech stack is rather layered to say the least, it is better than to rely on a …
Breadth of Solutions
CrowdStrike Falcon's has provided us with the opportunity to integrate our security team into different clusters i.e. not …
Consolidation of Tools
Breadth of Solutions
Consolidation of Tools
Breadth of Solutions
Consolidation of Tools
Breadth of Solutions
Consolidation of Tools
Consolidation of Tools
But we are …
Breadth of Solutions
We have been lucky to have a decent security budget and headcount, but also efficient in exploiting the security arsenal that we are provided with.
As long as I have been with …
Consolidation of Tools
Breadth of Solutions
Consolidation of Tools
Breadth of Solutions
Consolidation of Tools
Breadth of Solutions
Consolidation of Tools
Breadth of Solutions
Consolidation of Tools
Rapid7 InsightIDR
Windows GPO for Firewall
Windows GPO for USB
Breadth of Solutions
Consolidation of Tools
Also if you have some host firewall management system, it can be replaced with CS firewall management
Remote connection (not interactive or RDP like) can be also be replaced, with RTR
Breadth of Solutions
Also, it ofers so many other things, that can be easily implemented (same agent... just increases costs) and are really interesting. You can start with a "basic" package and start growing from …
Consolidation of Tools
Breadth of Solutions
Breadth of Solutions
Introduction to CrowdStrike
Introduction to CrowdStrike
Introduction to CrowdStrike
Awards
Products that are considered exceptional by their customers based on a variety of criteria win TrustRadius awards. Learn more about the types of TrustRadius awards to make the best purchase decision. More about TrustRadius Awards
Popular Features
- Endpoint Detection and Response (EDR) (55)9.494%
- Malware Detection (56)9.292%
- Infection Remediation (55)9.090%
- Centralized Management (56)8.787%
Reviewer Pros & Cons
Video Reviews
Leaving a video review helps other professionals like you evaluate products. Be the first one in your network to record a review of CrowdStrike Falcon, and make your voice heard!
Pricing
Falcon Pro
$6.99
Falcon Enterprise
$14.99
Falcon Premium
$17.99
Entry-level set up fee?
- No setup fee
Offerings
- Free Trial
- Free/Freemium Version
- Premium Consulting / Integration Services
Features
Endpoint Security
Endpoint security software protects enterprise connected devices from malware and cyber attacks.
- 9.1Anti-Exploit Technology(49) Ratings
In-memory and application layer attack blocking (e.g. ransomeware)
- 9.4Endpoint Detection and Response (EDR)(55) Ratings
Continuous monitoring and response to advanced internet threats by endpoint agents.
- 8.7Centralized Management(56) Ratings
Centralized management supporting multi-factor authentication, customized views, and role-based access control.
- 8.2Hybrid Deployment Support(4) Ratings
Administrators should be able to choose endpoint security on-premise, cloud, or hybrid.
- 9Infection Remediation(55) Ratings
Capability to quarantine infected endpoint and terminate malicious processes.
- 8.3Vulnerability Management(43) Ratings
Vulnerability prioritization for fixes.
- 9.2Malware Detection(56) Ratings
Detection and blocking of zero-day file and fileless malware.
Product Details
- About
- Integrations
- Competitors
- Tech Details
- FAQs
What is CrowdStrike Falcon?
CrowdStrike Falcon Features
Endpoint Security Features
- Supported: Anti-Exploit Technology
- Supported: Endpoint Detection and Response (EDR)
- Supported: Centralized Management
- Supported: Infection Remediation
- Supported: Vulnerability Management
- Supported: Malware Detection
CrowdStrike Falcon Video
CrowdStrike Falcon Integrations
- Akamai Enterprise Application Access
- Cloudflare
- Attivo ThreatDefend Detection & Response Platform (a brand)
- Exabeam Fusion
- Splunk Enterprise Security (ES)
- Sumo Logic
- Swimlane
- AttackIQ Security Optimization Platform
- EclecticIQ Platform
- IntSights Cyber Intelligence, from Rapid7
- ThreatConnect SOAR
- Armis
- The Forescout Platform
- Claroty
- ThreatQuotient
- Panther
- Forescout
- Illusive Networks
- Netskope
- Okta
- Proofpoint
- Vectra
- zscaler
- ExtraHop
- Mimecast
- ServiceNow
- IBM Resilient Security Orchestration
- Automation and Response (SOAR)
- Arcsight Interset
- DF Labs
- LogRhythm
- Securonix
- Anomali
- Centripetal
- King & Union
- ThreatStop
- Dragos
- Medigate
CrowdStrike Falcon Competitors
CrowdStrike Falcon Technical Details
Deployment Types | On-premise, Software as a Service (SaaS), Cloud, or Web-Based |
---|---|
Operating Systems | Windows, Linux, Mac |
Mobile Application | Apple iOS, Android |
Supported Languages | English, Japanese |
Frequently Asked Questions
Comparisons
Compare with
Reviews and Ratings
(199)Attribute Ratings
Reviews
(1-25 of 59)Great product
- Identifícate IOA
- Facilita to investigate
- Playbooks
- Vulnerability magnament
- Logscale
- Xdr
- It helps us to stop security breaches as well as prevent all types of attacks (including malwares, ransomwares and many other such attacks)
- It helps in Adversary Emulation Exercise
- it helps in Red Team / Blue Team Exercise
- should improve threat visibility
- its overall TCO should be reduced
- seamless integration with solutions like SIEM
It helps in Red Team / Blue Team Exercise.
Threat visibility is something where it is less appropriate.
1. To prevent Ransomware
2. Device Control
3. Protection of Workstations and servers
4. Advanced protection for Zeroday
4. To find malicious activities on systems
- Overwatch feature is amazing
- Accuracy to identify True Positive
- Powerful AL based detection method
- RFM issue
- Certificate Pinning, older sensor versions stops communicating
- Sensor Duplication
- Staff did a great job pointing our IT workers to areas that needed remediation.
- CrowdStrike Falcon Endpoint consistently blocks incursions from compromised websites and prevents PUPs from installing
- Complete Staff is very attentive and makes whitelist changes quickly which allows our staff to be productive.
- The Dashboard can become overwhelming at times, too much information to absorb
- Computers that may have made it out into the field without the endpoint sensor are very difficult to find
- As with all systems that rely on machine learning false positives occurr
- Threat Inteligance
- Low CPU and RAM usage
- Malware mitigation
- Vulnerability managment
- Hunting
- Ease of use
- Identity protection
- Air-Gapped networks
- Mobile protection
CrowdStrike - good value for a good product
- Runs on clients without causing application issues
- matches files patterns/behaviors to look for unknown attacks
- contains potentially infected hosts
- The user interface is terrible
- permit users to see licensed products in the console
- less false positives. files such as Malwarebytes scanning modules should be known as safe
- make it easier to create scanning exclusions that actually work
Efficient and effective endpoint detection and response
- Efficiently picking up and preventing malware threats on endpoints
- Prompt notification capabilities on any issues
- Ability to "set and forget" with minimal maintenance required
- Falcon Spotlight integrations with automatic patching solution would be a good feature
- LogScale with SIEM functionalities would be an added feature
- Simplified one dashboard with all high-level information
Crowdstrike Falcon in Higher Ed
- Monitoring
- Notification
- Device Management
- Have an executive dashboard
- better reporting cadence
- ability to tag devices with end user names
Lightweight yet Robust Security Solution
- Host machine vulnerability detection
- Threat mitigation
- Activity monitoring
- Constantly releases alerts or notifications
- Behavourial analytics
- Endpoint manual scan
- Malware analysis needs improving
- Requires some level of expertise to use its features
However, CrowdStrike isn't your typical anti-virus solution it does not provide you with the ability to control it manually like you would with some products out there.
CrowdStrike, the leader of EDRs
- Remote session
- Remediation killing quarantining the process/files
- Graphical process tree
- Splunk backend searches with all details
- Various dashboards
- Suppression to weed out false positives
- Can have some AI incorporated
- Support can be introduced
- Searching the related events require splunk knowledge which can be a show stopper
On the best automated threat protection solution
- The Log analysis is very detailed and easy to use.
- Prevent and block all type of malwares.
- Great threat intelligence which is very up-to-date with the recent cyber attacks
- very user friendly in access and management
- Automated feature of detecting, taking action and closing incidents using fusion workflow.
- The False positive alerts can be minimized
- The UI can be made better and easy to access.
- Customer support can be made better
CrowdStrike Falcon Complete - world-class EDR managed-service without the hefty price tag!
- Updates are seamless and rarely fail compared to past products
- The tool leverages the largest Cybersecurity threat database in the world
- The response to a potential threat or inquiry by the managed services team is lightning fast
- Extremely thorough responses from the managed services team on potential threats
- Onboarding quick and painless
- Sometimes updates to sensor versions fail, which requires manual intervention by internal staff members
- The variety of different administrative privilege levels is vast and sometimes confusing
- Proactive notifications confirming the health of the environment would be great instead of just reporting on potential issues
EDR as it should be
- We have very few false positives
- We are alerted with a script runs, such as a powershell commands
- It blocks rogue software from running
- it looks for patterns such as items that spread
- More customizable dashboards for each admin user
With the majority of our users working in hybrid mode we needed a strong security control that could provide top-class protection with the minimum amount of False Positives (and, of course, of True Positives).
Falcon provides full visibility on processes, communication flows and all sorts of activities that are happening on the endpoints. It works smoothly with other tools that we have co-deployed, like DLP, DNS protection, SWG/CASB, App monitoring and Control.
Recently we added to our arsenal the Identity Protection and the Cloud Protection modules, driven by the business needs to reduce the number of vendors, tools and dashboards while achieving maximum protection and synergy/consolidation.
We believe that as a company, Crowdstrike sits on top of the range of security vendors that we work with, has the right vision and keeps delivering excellence.
We are quite happy with their Customer Success Management and Support Services and look forward to trialling their new functions: LogsScale and External Surface Risk Management.
- Endpoint Security
- Threat Detection, Protection, Reporting
- Malware Analysis
- Continuous fast delivery of new features and improvements
- Customer awareness, learning and support
- Device Control
- Identity Protection
- Identity Protection - plenty of small improvements which have been suggested by our side. Long list to mention them here. If needed I can forward you the email/presentation sent for the occassion to the Production team.
- They recognised our contribution / remarks , by providing a discount on the initial offer, which we were happy to accept.
- Our company went through an MnA with another pharmaceutical. Both companies had Crowdstrike EDR installed on endpoints, but on different Tenants.
- Unfortunately there was not an official technical solution for migrating the endpoints to a unique tenant. We had to Uninstall the existing agent from the acquired company and then Reinstall it again, which was laborious and time-consuming. I wish they had a solution for such cases :-)
- Attack Surface Management (demoed recently) doesn't seem to be fully matured yet, but they definitively are on a good path.
The learning curb is a bit steep, but if time can be dedicated to attending Workshops and Learning modules on Crowdstrike University, then 3-6 months is a realistic timeframe to yield expected outcomes.
Clear blueprints for product rollout are provided to customers based on your specific environment.
EDR for any size business
- Detects activities on the endpoint and raises incidents if this is deemed needed.
- Does not decrease the performance of the endpoint
- Can easily identify vulnerabilities as they become known
- There are a lot of menu items for Falcon complete. This does mean navigating the menu to find them is slightly tricky and requires constant use to get familiar with it.
- A system tray icon would be useful to see its installed and running. I currently use a desktop background tool to show the service status and version for peace of mind.
- When searching endpoints, would be nice to be able to edit the hostname rather than delete it and start typing it all again.
- Firewall rules and policy that are cloud-managed is great to ensure devices are in compliance.
- Low engineering time spent after implementation, we don't have to babysit the product. It just works.
- Low amount of false positives.
- I would like an option to be able to scan files/folders. I understand, however, that this isn't really the way the product is designed and that it is designed around actively running processes. But it would be great to have a way to scan incoming media before loading it on our systems.
The perfect next generation firewall solution is here!
- Identify and remove 3rd party browsers like wave browser.
- Gives a single pane of glass to access details about a particular machine.
- Allows me to be able to stop a machine from accessing the internet once it is infected.
- Actively blocks and takes actions without me intervening.
- The dashboard can be overwhelming it could simplified more.
- Making the installer package easier to remotely deploy it.
- It is hard to come up with these. The product is amazing.
Leader In Threat Pevention & Trusted Solution
- Threat Intelligence
- Prevention Controls
- Ability To Search For Logs
- With respect to API reporting capabilities
- Device control
- Threat detection
- Simplicity of handling on the console
- Event investigation through the EDR feature
- Under Host Management, have a Device Users column.
- It could have ready-made example Workflows for us to use.
- The Identity Protection module could support Okta.
Crowdstrike Falcon: The Only way to Fly!
- 2 years 100% malware detection and prevention
- Extremely easy to use
- Falcon Complete is exceptionally responsive
- Most data only goes back 90 days (we would like to be able to track trends over more time)
- Exported reports are not visual (mostly CSV or JSON)
- Trend tracking is not easy to access in native tool (need BI)
Great product, great performance, you get what you pay for (not cheap but worth it)
We were using other solution and we were forced to change it really quick.
The process has been really simple, and for the moment we are really happy with how it works and how it performs.
It can be used both on computers and servers, and it supports quite good both Windows & Linux
- Protection against all kind of malware
- Performance
- Real Time Response
- Custom IOC Management
- Notifications to end users
- Tray Icon
It seems to work pretty well and protects you from almost everything tested.
Maybe RFM can be improved, specially with patch Tuesdays, but nothing to worry too much about.
- Detecting malicious endpoint behaviors
- Providing thorough, timely cyber threat intelligence
- Integrate effectively between modules and with other security platforms
- Event Search is built on Splunk which requires some SPL knowledge to be effective
- Detections sometimes lack important information (e.g. hash of payload vs. hash of executing application)
- Overlap between modules (e.g. Insight and Discover for login activity) aren't always presented in a unified/integrated way
Incredible detection, protection and additional features
- endpoint detection and protection
- machine insights
- log collection
- honestly nothing
CrowdStrike Falcon Pro - A truly Next Gen AV you can trust.
- Endpoint protection
- Endpoint management
- Complete insight
- Complete cloud base solution
- Simple and effective UI
- Notification of events
- Customer Support
- Complete Cloud based Solution - A truly Next Gen AV
- Less or Nil Compute Power Use
- Integrated Threat Intelligence with Threat Severity Assessment
- Complete visibility on USB Device Usage with Falcon Device Control
- Device Control required more comprehensive
- Prices needs to match with other peers
- Migration Part needs more improvement