CrowdStrike Falcon Pro - A truly Next Gen AV you can trust.
CrowrdStrike Falcon Use Case was very simple in terms of utilization of computing power during the scheduled scan. With Falcon Pro, we …
CrowdStrike Falcon
Top Rated
CrowdStrike Falcon Endpoint Protection
Starting at $6.99 per endpoint/month (for 5-250 endpoints, billed annually)
View PricingOverview
Recent Reviews
Reviewer Sentiment
N/A
Positive ()
N/A
Negative ()
Awards
Popular Features
View all 7 featuresEndpoint Detection and Response (EDR) (32)
9.7
97%
Malware Detection (33)
9.5
95%
Centralized Management (33)
9.3
93%
Infection Remediation (33)
9.2
92%
Reviewer Pros & Cons
View all pros & consVideo Reviews
Leaving a video review helps other professionals like you evaluate products. Be the first one in your network to record a review of CrowdStrike Falcon, and make your voice heard!
Pricing
View all pricingFalcon Pro
$6.99
Cloud
per endpoint/month (for 5-250 endpoints, billed annually)
Falcon Enterprise
$14.99
Cloud
per endpoint/month (minimum number of endpoints applies)
Falcon Premium
$17.99
Cloud
per endpoint/month (minimum number of endpoints applies)
Entry-level set up fee?
- No setup fee
For the latest information on pricing, visithttps://www.crowdstrike.com/endpoint…
Offerings
- Free Trial
- Free/Freemium Version
- Premium Consulting / Integration Services
Features Scorecard
Endpoint Security
9.2
92%
Product Details
What is CrowdStrike Falcon?
CrowdStrike offers cloud-delivered endpoint protection. CrowdStrike aims to revolutionize endpoint protection by unifying next-generation antivirus (AV), endpoint detection and response (EDR), and a 24/7 managed hunting service — all delivered via a single lightweight agent.
The vendor states many of the world’s largest organizations use CrowdStrike, including three of the 10 largest global companies by revenue, five of the 10 largest financial institutions, three of the top 10 health care providers, and three of the top 10 energy companies.
CrowdStrike Falcon Features
Endpoint Security Features
- Supported: Anti-Exploit Technology
- Supported: Endpoint Detection and Response (EDR)
- Supported: Centralized Management
- Supported: Infection Remediation
- Supported: Vulnerability Management
- Supported: Malware Detection
CrowdStrike Falcon Video
CEO George Kurtz discusses challenges organizations face using legacy cybersecurity solutions & how easy, fast & effective the CrowdStrike Falcon platform is by comparison.
CrowdStrike Falcon Integrations
- Akamai Enterprise Application Access
- Cloudflare
- Attivo ThreatDefend Detection & Response Platform (a brand)
- Exabeam Fusion
- Splunk Enterprise Security (ES)
- Sumo Logic
- Swimlane
- AttackIQ Security Optimization Platform
- EclecticIQ Platform
- IntSights Cyber Intelligence, from Rapid7
- ThreatConnect SOAR
- Armis
- The Forescout Platform
- Claroty
- ThreatQuotient
- Panther
- Forescout
- Illusive Networks
- Netskope
- Okta
- Proofpoint
- Vectra
- zscaler
- ExtraHop
- Mimecast
- ServiceNow
- IBM Resilient Security Orchestration
- Automation and Response (SOAR)
- Arcsight Interset
- DF Labs
- LogRhythm
- Securonix
- Anomali
- Centripetal
- King & Union
- ThreatStop
- Dragos
- Medigate
CrowdStrike Falcon Competitors
CrowdStrike Falcon Technical Details
| Deployment Types | On-premise, SaaS |
|---|---|
| Operating Systems | Windows, Linux, Mac |
| Mobile Application | Apple iOS, Android |
| Supported Languages | English, Japanese |
Comparisons
View all alternativesCompare with
Frequently Asked Questions
What is CrowdStrike Falcon?
CrowdStrike offers the Falcon Endpoint Protection suite, an antivirus and endpoint protection system emphasizing threat detection, machine learning malware detection, and signature free updating. Additionally the available Falcon Spotlight module delivers vulnerability assessment with no performance impact, no additional agents, hardware, scheduled scans, firewall exceptions or admin credentials.
What are CrowdStrike Falcon's top competitors?
SentinelOne Singularity, McAfee Endpoint Security, and Symantec Cloud Workload Protection are common alternatives for CrowdStrike Falcon.
What is CrowdStrike Falcon's best feature?
Reviewers rate Endpoint Detection and Response (EDR) highest, with a score of 9.7.
Who uses CrowdStrike Falcon?
The most common users of CrowdStrike Falcon are from Enterprises (1,001+ employees) and the Information Technology & Services industry.
Reviews and Ratings
(97)
Reviews
(1-25 of 36)- Popular Filters
Companies can't remove reviews or game the system. Here's why
CrowrdStrike Falcon Use Case was very simple in terms of utilization of computing power during the scheduled scan. With Falcon Pro, we have achieved it and the result is fabulous. All endpoints are working normally and the security they have been provided is outstanding. I don't have to manage a single infrastructure for Anti Virus Management. The whole solution is cloud-based and everything you can manage from anywhere in the world. That is the beauty of this product.
- Complete Cloud based Solution - A truly Next Gen AV
- Less or Nil Compute Power Use
- Integrated Threat Intelligence with Threat Severity Assessment
- Complete visibility on USB Device Usage with Falcon Device Control
- Device Control required more comprehensive
- Prices needs to match with other peers
- Migration Part needs more improvement
CrowdStrike Falcon Endpoint Protection is a complete cloud-native security framework to protect
endpoints and cloud workloads. Falcon stops breaches and improves performance
with the power of the cloud, artificial intelligence (AI), and an intelligent,
lightweight single agent. The Falcon Platform is flexible and extensible. Best
suitable for:
Hi-tech
companies, Non
air gapped organizations andThin
SecOps teams
- Threat Inteligance
- Low CPU and RAM usage
- Malware mitigation
- Vulnerability managment
- Hunting
- Ease of use
- Air-Gapped networks
February 23, 2022
My experience with CrowdStrike Falcon Endpoint Protection
The platform is installed on all endpoints and servers. I respond to alerts and check the "threat" chain down to activities, who, when, what, how, and why the action was reported/stopped. In addition, I use the sandbox ability of the system to triage suspicious content. While using the Sandbox, it could be either zip files, such as an archive, or individual files. I also know that there is an ability to triage URL's although I have not done so, I will do so when required. I also use other reports that are generated.
- Terminate suspicious activity
- Sandbox detonation
- RT reporting
- The user GUI; I had a hard time adapting to the look and feel of the platform
- Integration should have had additional user usage training
We had a need for a leading endpoint protection platform with EDR capabilities to protect against modern threats. Further, we had a need to have 24x7x365 coverage with subject matter experts working around the clock. Because we, as many security teams are, running very lean there was a requirement to have a fully managed solution to help ensure our alignment with best practices but to also have eyes on our environment at all times.
- Protection against modern threats.
- Elimination of false positives.
- Very well-managed solution, the complete team is great to work with!
- Device control capabilities (USB device control) are easy to implement.
- The UI while very comprehensive is a bit cluttered.
- Could be a little more intuitive to set up device groups.
- A little clearer definition of what is available to admins in the complete offering would be nice.
January 18, 2022
AIML based leader EDR- Crowdstrike
Crowdstrike Falcon Endpoint protection is best EDR ( Endpoint Detection and Response) tool we have. It prevents attacks on our organization endpoints and follows the complete detection and response strategy. It's completely based on AIML ( Artificial Intelligence and Machine learning) technology and gives enhanced security for our office and remote users working from home as well.
- Artificial Intelligence
- Behaviour Analytics
- Threat Detection
- It's a best threat Detection tool but sometimes it lacks in real-time prevention
- Sandboxing
- TAC support
January 13, 2022
Robust system full of useful resources
We use this to monitor any issues that come regarding the execution of scripts or files that we would otherwise not be aware of. The detailed reports and alerts they send are perfect to ensure that none of our user's workstations get affected or attacked in ways we would not know about if we didn't have CS.
- Reporting
- Alerting
- Monitoring
- Some of the alerts could be a little more clear - layman's terms for some items would help
- Some of the menu options are a bit confusing and clunky
- Support is great but can be challenging to access
December 07, 2021
Stress and worry-free protection
Crowdstrike Falcon was a top candidate for our organization to replace our anti-virus at the time. It beat out all the other options we were testing out. It addresses our need for an endpoint antivirus for our entire fleet of managed endpoints, which includes macOS, Windows, and Linux. This includes 10,000 endpoints and hundreds of servers.
- Deployment.
- Incident Reporting.
- Machine Learning incident response.
- GUI for the dashboard. It's a lot.
- More mac and linux features that windows has.
- Reinstallation double entries.
December 07, 2021
CrowdStrike Falcon Delivers As Expected
We have utilized Crowdstrike Falcon for just over a year enterprise-wide across our server and VDI infrastructure with great success. This replaced an older signature-based solution. In the 1st few weeks we have seen an approx. 17% increase in detections. Support has been great through the implementation and initial tightening of rules and removing false positives. Highly recommend CrowdStrike and their managed support.
- Initial detection through their various proprietary methodologies.
- The graphical display of the malware and the potential impact chain is fantastic.
- We realize sensor updating is necessary, but they seem to be very frequent.
- It is not a cheap solution.
October 07, 2021
A forever product
We use it to scan potentially bad web pages and files on our network and laptops. This has allowed us to avoid major outages. The continued business supports ourselves and our customers. This has allowed us to sign on more new customers as we have continued to have no major incidents bringing any of our systems down.
- Business continuity
- No lost files or systems
- Confidence of not having any breaches or malware issues
- Easier to manually scan files
- Send a weekly report on any scans that find issues
August 31, 2021
CrowdStrike [Falcon] Endpoint Protection can be counted on!
We are using CrowdStrike in our endpoint protection on all our desktops and server devices. CrowdStrike is used across our whole organization in every department. It is used for antivirus and malware protection on each device. It provides us with security to know [that] our devices are protected from outside cyber-attacks.
- Endpoint protection
- Device monitoring
- Alert notifications
- Visibility into devices and threats
- Some features are hard to locate in the system.
- The ability to uninstall without restarting the device would be beneficial.
- Quicker load times on some management screens
August 31, 2021
CrowdStrike Falcon Endpoint Protection Cybersecurity Review
We are using the Falcon Endpoint Protection Pro Flexible Bundle across our whole organization. We use it to prevent, control and respond to threats. We use it for our desktop, laptops and servers. The detection and machine learning it does is very beneficial for our organization. The product also prevents malware for us in real-time. The detail it gives us regarding potential threats is must have valuable information.
- Detects threats and gives in depth information regarding [the] threat.
- Prevents malware in realtime
- Configurable prevention policies
- Dashboard reporting of detections and activity
- Ability to contain and lock down a endpoint
- More information provide[d] on emails sent regarding a detection.
- Updated Activity Dashboard
- Additional out of the box Prevention Policies
It is a replacement for other endpoint solution. It solves the ransomware issue with a modern protection approach with integrated AI, also with it's cloud based agent the protection is always updated. It has been used by the whole organization. It addresses the endpoint protection ready to integrate with the most complete cybersecurity ecosystem.
- Massive Deployment.
- Online Endpoint Protection.
- Zero Day Attacks Protection.
- Less intrusive desktop notifications.
- Agentless protection.
- Less expensive protection bundles.
I've been working with CrowdStrike for the last 2 years, and it has been a UNIQUE and learning experience. The portfolio that they offer to support and fit with our business needs it's just amazing. It's our GLOBAL-approved solution, and we have implemented it across the globe in complex environments with minimum to low business disruptions. It has helped the IR team with visibility and lowers the time for remediation.
- Detections Management
- Compatibility with other Software
- Lightweight Sensor
- Device Control
- Legacy OS Support
- Integration with AD
- User Roles Management
June 23, 2021
Crowdstrike, clearly the leader in EDR
We are currently using the CrowdStrike [Falcon Endpoint Protection] on any device that is capable of running the agent in our environment. We needed a better solution than traditional AV. Falcon provides a low resource impact product while not having to rely just on signatures to detect suspicious activity.
- Does not perform signature based scans that often cause resource issues
- Allows for a number of incident response actions such as Real Time Response
- User friendly interface which makes it easy to administer
- SOAR capabilities such as immediate network containment
- Price
- Search for events not in the main console is difficult (based on Splunk)
We are using it across our entire organization as our primary end-point protection product. Our last product was beginning to fail and cause serious issues with unneeded blocks as well as performance issues with time-critical systems. We were highly interested in the EDR aspects not involved in traditional anti-malware functions as well as the intelligence functions by CrowdStrike Falcon Endpoint Protection.
- Provides actionable detection data.
- Lightweight and forgiving agent. We've had zero failures when deploying the agent across our organization.
- The searches in the Discovery module are extremely useful for reporting purposes. For us, it satisfies a lot of HiTrust requirements.
- Some search speeds are pretty slow. Having to wait a long time for results.
- Sometimes [ I feel] the data being presented in detection is not obvious as to why it is being considered malicious.
June 03, 2021
Don't call it AV!
CrowdStrike Falcon is used as an advanced AV and EDR solution. It is used across all departments to address security controls.
- Malware detection
- Lightweight agent
- Easy installation
- Visibility into all modules
- VDI provisioning
CrowdStrike Falcon is used by the whole of the company. The goal was to centralize onto one platform that added more value, gave no performance degradation like traditional AV scanners, allowed true EDR data capturing capability, as well as allowing for adversarial behavior tracking. Over time CrowdStrike was able to provide host level insight that took multiple agents to perform. This gave us lighter pressure on the endpoint to capture all of the data that was needed as well as allowing cross team collaboration on business use cases and needs.
- Endpoint Isolation - instead of hoping an adversary was blocked in time. CrowdStrike locks down the endpoint beyond using the Windows Firewall. Allowing a whitelist of IPs brings additional management of that endpoint to another level that most other tools don't have.
- Rich Data Recording - CrowdStrike is best described as a giant tape recorder in the sky. When it lands on the box, it truly provides insight into the those that other tools could only dream of.
- Extensive APIs - CrowdStrike understands that they are not your only security vendor, so they have API usage for everything in their platform to automate and integrate to your heart's desire.
- Cloud Visibility - CrowdStrike's cloud monitoring capabilities are agnostic of cloud platform. No longer does one need to worry about putting all their eggs in one basket because the endpoint tool prefers one platform over another.
- Vulnerability Management - CrowdStrike is trying really hard in this space but it is really falling short. Often times the data is off or incorrect. Reporting is lack luster, and it wasn't until recently that API usage to pull vulnerabilities was introduced.
- The Little Things - CrowdStrike is plagued by a number of nice to haves that after a while is irritating at best. Items such as determining primary IP address for the device is selected at "random".
- Nickel and Diming - It is one thing to have a product and sell that product and all the functions it does and providing a service for said product... its another when you nickel and dime every. new. feature. that. is. release.
We use CrowdStrike Falcon Endpoint Protection across our whole organization as our primary endpoint AV product. It gives us the unprecedented ability to see all actions taken by a user or malicious actor in order to determine the root cause of an incident. With the ability to quickly isolate a machine from the network we can keep minor issues from becoming larger ones.
- Phenomenal EDR capability
- Lightweight and easy to deploy sensor
- Impressive machine learning and IOA based detections
- Lots of add-on features add up the cost
- Requires some training to fully utilize
- Requires some false positive tuning initially
May 15, 2021
Hands down the best in endpoint protection.
CrowdStrike Falcon was deployed across the enterprise to replace a legacy on-prem based known signature product. The three key problems solved are prevention of malicious processes before they can do damage, enhanced autonomous response (seconds), and alleviation of lengthy remediation of infected endpoints (having to run additional tools and/or re-imaging endpoints).
- The ability to write custom block and exception rules.
- Endless possibilities and increased capability with the sensor data already collected.
- A cloud native Saas protection solution.
- None
CrowdStrike is used across the entire organization for all of our endpoint protection needs. In addition, we have recently deployed the firewall protection module. While it doesn't have the needed firewall feature for FQDN rules, we know that this feature will be coming in the near future. In all, CrowdStrike has been a great product and one that I would highly recommend.
- Endpoint Protection
- Indication of Compromise Investigations
- Central Administration
- Firewall needs to have FQDN rules
May 03, 2021
Crowdstrike for family run business
We used Falcon Crowd Strike as a competitor to Sophos when looking for replacements, it was so extremely sophisticated and advance it was a major competitor. It was going to be used by the whole of the group across 3 sites in the uk to be our main form of AV. It helps us become more cyber secure.
- Zero Day Protection
- Management Portal
- Support Given by crowdstrike
- Cost point was too high
- Deployment couldn't uninstall sophos as part of the installation
- Some times a bit complicated to get your head round
April 26, 2021
A Complete EDR Solution
We're using Falcon Endpoint Protection across the organization, on user workstations (both on premises and remote) as well as Windows and Linux servers. It helps us prevent threats as well as provide intel to investigate threats.
- It's strong with its EDR capabilities. It's able to collect very useful information for an investigation.
- Very lightweight agent doesn't interfere with user activities.
- Customizable to get the amount of alerts that can be investigated without getting overwhelming.
- CrowdStrike University doesn't have a lot of content, it can be completed in a few hours.
Crowdstrike is used across the entire business to provide protection against malware and next generation threats, and to allows us to monitor our estate and help decide who we should be focusing our time on giving additional support.
- Simple deployment process
- Works on all platforms
- Small footprint
- Fast
- Regularly updated
- Great support
- Lack of native M1 support on Mac (does work via Rosetta 2 but native would be a lot better).
- Communication around changes to the system after Big Sur OS release could have been better.
- Expensive additional modules.
February 01, 2021
CrowdStrike Falcon Endpoint Protection Review
We are currently using it on our enterprise production servers to both detect, protect and inform of any security breaches
- Detailed Dashboards
- Ability to take deep dives into identified attacks
- Real time notifications
- Hands on initial orientation may have helped get us set up quicker
January 16, 2021
Best Endpoint protection!!!
CrowdStrike [Falcon] Endpoint Protection is being used in my organization for monitoring of endpoint devices across all of our enterprise data centers globally. The agents are installed on all of our Linux/Windows servers and they're constantly monitoring for potential threats and vulnerabilities.
- Automatically detect threats and issue alerts
- Identifies types of attacks based on the integrated Threat Intelligence that is built-in
- Superior threat response techniques that are fully customizable
- Licensing could be simplified
- Scanning time could be improved
- Better documentation and training could be provided to its users