Reviews (1-8 of 8)
- Ransomware protection. We ran a ransomware simulation with obfuscated executables to hide malware signatures and CrowdStrike found and stopped 15 out of 15.
- Malware/adware detection. Packaged adware in official installers are instantly blocked without interfering with the install of the primary application.
- The ability to do a system-level scan like a traditional AV is missing and isn't a feature CrowdStrike is planning on implementing. Old school IT guys are going to be curious about this.
- Host management and deletion are clunky and take 45 days for a machine to fall off your subscription license.
- The balance between ease of use and granular control.
- Customer service.
- Action performed logs not included in the executive/technical report.
- Some problems and glitches with the management tool.
- Some web interface items are not very intuitive.
- Detailed explanations and break downs of detection.
- Allows for remote control of machines.
- Easy to deploy.
- Falcon isn't continuously scanning the machine, if something is downloaded and viewed as safe it won't be re-checked later.
- More dashboards and information on vulnerabilities on the machines would be helpful.
- More reports that could be given to executives would also be beneficial. There are some now, but the options are rather limited.
- Initial detection through their various proprietary methodologies.
- The graphical display of the malware and the potential impact chain is fantastic.
- We realize sensor updating is necessary, but they seem to be very frequent.
- It is not a cheap solution.
- Ease of implementation.
- Overall protection capabilities.
- Real-time system inventory function.
- Insight and intelligence of not only the threat, but the potential of the threat.
- Support staff of their managed service is excellent.
- The monitoring is great, and the emails we receive help determine when and if we need to do something on a specific machine.
- The service that the Falcon Complete Team offers is also helpful.
- I also think the recommended actions when Escalation: High Detection is determined are great.
- I have been doing an audit on machines that have or are missing Crowdstrike. MAC addresses are used but don't always match with the serial number of the machine. but Crowdstrike doesn't capture serial numbers. I have to do a manual comparison.
It is much more difficult to do a comparison with Linux and Windows machines. Trying to get the host name serial number and MAC Address are not that easy.
- Detects and automatically blocks dangerous behavior on endpoints that could be indicative of malicious activity, like executing programs from the deleted items folder, executing a SSH command in silent mode from different places in the OS, etc.
- Monitors endpoints continuously for known malware, evaluates dangerous behaviors and blocks execution based on risk tolerance settings, uses AI to draw correlations on multiple attack vectors, and has a human malware hunting element to detect known or newly detected attack vectors.
- Is easy to deploy across a large organization and manage centrally by as few as 1 person part time.
- This was the fastest and easiest implementation of an enterprise grade security system I have ever done. I pushed software to the endpoints on a Friday afternoon, and was complete by Noon on Monday, as each workstation came online, the installer completed, and we were protected.
- We get false positive detections when we run an email signature script for our users. These false positives can be a distraction. We've implemented a whitelist for those behaviors, but had some difficulty in figuring out how to configure CrowdStrike to recognize these executions since the file name and hash were always different (the executing file was firstname_lastname.exe, and that was too Vague to whitelist.
- Rapid identification of potential data security issues.
- Blocking of continued activity and lateral movement in the event that a single endpoint is suspected of compromise.
- Detailed threat intelligence and analysis from the OverWatch Team.
- Fully developed and integrated internal vulnerability scanning.
CrowdStrike Falcon Scorecard Summary
Feature Scorecard Summary
About CrowdStrike Falcon
CrowdStrike also offers a managed endpoint security solution, via Falcon Complete.
Try Falcon for free here.
CrowdStrike Falcon Competitors
CrowdStrike Falcon Pricing
- Has featureFree Trial Available?Yes
- Does not have featureFree or Freemium Version Available?No
- Has featurePremium Consulting/Integration Services Available?Yes
- Entry-level set up fee?No
- Falcon Pro $6.99 per endpoint/month (for 5-250 endpoints, billed annually) - Falcon Enterprise $14.99 per endpoint/month (minimum number of endpoints applies) - Falcon Premium $17.99 per endpoint/month (minimum number of endpoints applies) You can try Falcon for free at https://go.crowdstrike.com/try-falcon-prevent.html?utm_campaign=freetrial&utm_medium=syn&utm_source=trus.
CrowdStrike Falcon Technical Details