CrowdStrike Falcon Reviews and Ratings

Rating: 9.1 out of 10

Score

9.1 out of 10

Community insights

TrustRadius Insights for CrowdStrike Falcon are summaries of user sentiment data from TrustRadius reviews and, when necessary, third party data sources.

Pros

AI/ML-based detections: Users have consistently praised the clear presentation on the dashboard and easy filtering options based on various criteria like hostname, detection name, severity, date, and time. Many users find this feature to be highly intuitive and effective in managing security alerts.

Full process chain tracing: The ability to trace the complete process chain instead of just showing the source file or script is highly valued by reviewers as it significantly aids in identifying and addressing main security concerns promptly and accurately.

Enhanced security measures: Users appreciate the network segmentation for hosts and servers using firewall capabilities, USB blocking by the sensor, and IDP alerts from different domains. These features are seen as beneficial for strengthening overall security measures within their environments.

Reviews

101 Reviews

CrowdStrike Falcon - An Unified Endpoint Security Solution.

Rating: 9 out of 10

Incentivized

January 26, 2026

Use Cases and Deployment Scope

I'm a security analyst who uses CrowdStrike Falcon for day-to-day endpoint monitoring and response. There is no such problem compared to the competitors. It does its job really well. Our scope is to monitor endpoint assets, including workstations, servers, and DCs (Windows OS, Linux OS, and macOS), for any suspicious or malicious behavior or attempts.

Pros

Monitor Endpoint Assets for Anomalies using AI/ML.
Manage Threat hunting using its overwatch function.
Managing the asset inventory.
The identity protection feature detections and stop attacks that abuse user identities.
The Exposure Management function helps in identifying application and OS vulnerabilities before attackers exploit them.

Cons

The new NG-SIEM has a complex console to handle, which can be more smoother.
All the features look perfect and there is no room for improvement.

Likelihood to Recommend

Crowdstrike is a unified platform for monitoring endpoint devices, whether they're workstations, servers, cloud-native machines, or even mobile devices. It uses AI/ML to monitor anomalies and suspicious behavior, including zero-day attacks. It is suitable for large organizations but may be costlier or less appropriate for smaller organizations, those who want an on-prem EDR setup, and those who need custom scanning based on compliance requirements.

Prajwal Deshmukh

Cyber Security Analyst in Information Technology at Essen Vision Software (51-200 employees)

Vetted Review

2 years of experience

Verified on LinkedIn

Meeting every EDR requirement with Falcon.

Rating: 10 out of 10

Incentivized

January 20, 2026

Use Cases and Deployment Scope

Falcon serves as an EDR solution and is deployed at every computing endpoint. It provides realtime detection and mitigation of threats by continuously monitoring the endpoint activity telemetry data. The AI/ML features help eradicate zero-day attacks and serve as a preventive measure to protect your organisation against every possible attack vector. Having Falcon agents running on your endpoint protects your infrastructure from threat actors and reduces/negates the risk of data exfiltration and financial loss or reputational damage.

Pros

Advanced Endpoint Detection and Response.
Next Gen Antivirus.
Incident Response and Forensic Readiness.

Cons

Limited Built-In Vulnerability Management.
Complex Policy Configuration and Tuning.
Limited Offline Protection Capabilities

Likelihood to Recommend

CrowdStrike Falcon is ideal for large, cloud-native enterprises that prioritize advanced behavioral detection and have a mature SOC to manage their intelligence. However, its cloud-reliant architecture makes it a poor fit for air-gapped or offline networks. Additionally, small organizations with limited staffing may find it difficult to manage, while teams that require integrated SOAR and vulnerability management might be discouraged by the need for additional licensing to unlock those capabilities.

Verified User

Contributor in Information Technology (10,001+ employees)

Vetted Review

3 years of experience

A very valuable tool for our business.

Rating: 9 out of 10

Incentivized

January 19, 2026

Use Cases and Deployment Scope

We use it as our main endpoint protection solution, constantly working on detection and visibility within our environment. We can monitor behaviors and respond to incidents in real time, and with it, we can reduce the risks of malware/ransomware and unauthorized access. It helps our security team every day.

Utilizo como nossa principal solução de proteção de Endpoints, sempre trabalhando na detecção e visibilidade do nosso ambiente. Conseguimos verificar comportamentos e resposta a incidentes em tempo real,. com ele conseguimos reduzir os riscos de um malware/ransomware e de acessos não autorizados. Nos ajuda em todo dia a dia do nosso time de segurança.

Pros

Rapid incident response
Event correlation and visibility
Threat intelligence
Device and user control
Resposta rápida a incidentes
Correlação de eventos e visibilidade
Inteligência de ameaças
Controle de dispositivos e usuários

Cons

A clearer and more objective navigation interface.
Greater ease in creating alerts and automations.
More flexible and easier-to-view reports.
Interface de navegação mais clara e objetiva
Maior facilidade na criação de alertas e automações
Relatórios mais flexíveis e com mais facilidade de visualização

Likelihood to Recommend

I believe it is more suitable for environments that require high visibility, where it offers advanced detection and rapid response to incidents with high availability. It is less appropriate for small businesses due to the cost and their smaller IT teams; in this case, justifying the high cost would be more difficult.

Acredito que seja mais adequado para ambientes que precisam de uma alta visibilidade, onde ele possui uma detecção avançada e com rápida respostas a incidentes com alta disponibilidade. É menos apropriado para pequenas empresas devido ao custo e que possuem equipes de TI pequenas, neste caso justificar o alto custo seria mais dificil.

<i>This review was originally written in Portuguese and has been translated into English using a third-party translation tool. While we strive for accuracy, some nuances or meanings may not be perfectly captured.</i>

Verified User

Analyst in Information Technology (201-500 employees)

Vetted Review

1 year of experience

CrowdStrike Falcon Review

Rating: 9 out of 10

Incentivized

August 29, 2025

Use Cases and Deployment Scope

It is the organisation's antivirus software and is also used as DLP. In terms of USB, we have more than 1,500 clients installed on PCs and 50 servers. The USB blocking tool is what we use most on a daily basis, along with checking the backups that the servers make every day.

Pros

Bloq USB
Identification of critical modifications in system files

Cons

It could improve the information it displays about detections.
EL recognises some USB devices and makes it easier to mark them than to create exclusions, such as when a printer USB device is recognised as a mobile phone.

Likelihood to Recommend

We are very proud of how we have configured everything and how CrowdStrike Falcon works in our organisation, as well as how we use various tools. Incident detection, USB permission, vulnerability detection, etc. The tool is user-friendly and has many interesting features.

Verified User

Employee in Engineering (5001-10,000 employees)

Vetted Review

3 years of experience

CrowdStrike Falcon Complete - It really is complete

Rating: 9 out of 10

Incentivized

August 1, 2025

Use Cases and Deployment Scope

My organization uses CrowdStrike Falcon to monitor and protect all of our endpoints. This provides the team insight into any potential malicious activity based upon scripts spawning from word or excel files. CrowdStrike Falcon allows the team to get detailed analysis and records of the who, what, when, where and why that other solutions could not provide.

Pros

Granular Details
Kill Chain Analysis
Minimal impact to users

Cons

Transparency into the global outage 1-2 years ago
For a new tech, there is sometimes too many details
If there could be an AI guiding a tech where to look/review next.

Likelihood to Recommend

CrowdStrike Falcon is well suited for any size of environment. Large to small, CrowdStrike Falcon does an amazing job. The ability to have the same security as a fortune 500 company and have a solution that sees the same threats that they are seeing is amazing. I do not think that there is a company or environment that wouldn't benefit from the CrowdStrike Falcon solution.

Verified User

Manager in Information Technology (201-500 employees)

Vetted Review

4 years of experience

CrowdStrike Falcon Review

Rating: 8 out of 10

Incentivized

August 1, 2025

Use Cases and Deployment Scope

CrowdStrike in my organization is used for next-generation antivirus protection and device control. We get alerts from this tool which helps in investigation and monitoring infrastructure. Logs from these tools are logged in SIEM, which helps in troubleshooting issues related to endpoints. Overall updates and security advisory sent by CrowdStrike improve the security posture of our organization

Pros

device control
endpoint detection and response
antivirus protection

Cons

threat hunting
endpoint response
thirdparty endpoint detection

Likelihood to Recommend

CrowdStrike is best suited for organization where users are remote. It provides next-generation antivirus features to stop malware on endpoints and workloads in the cloud. CrowdStrike is a premium solution and expensive and so it is less appropriate for small organizations and it is not suited where there is no internet.

Verified User

Administrator in Information Technology (10,001+ employees)

Vetted Review

2 years of experience

CrowdStrike Review

Rating: 8 out of 10

Incentivized

August 1, 2025

Use Cases and Deployment Scope

We use CrowdStrike for our EDR solution. They have been a great partner to work with!

Pros

Malware Detection
Next Gen SIEM

Cons

I would like the Next Gen SIEM to have more API integrations
It would be nice if the Next GEN SIEM had a natural language search capabilities

Likelihood to Recommend

CrowdStrike is a great EDR tool. I would like to see their next GEN SIEM have more features.

Henry Garcia

Cybersecurity Engineer in Information Technology at ZO Skin Health (501-1000 employees)

Vetted Review

2 years of experience

An EDR that you must consider

Rating: 9 out of 10

Incentivized

July 31, 2025

Use Cases and Deployment Scope

CrowdStrike allow us to have more confidence when we go to cloud and whenever our endpoints have multiple touchpoint to the outside world. As the company get bigger, threats such as phising and other malicious attack cannot be avoid. That is why we need an active forms of defence where we can rely to help us detect, stop, limit the spread and asses damages if any and prepare us for remedial solution and actions. Their strengh are also in their services where it comes in handy after the incident or preventive way. Also, by adopting integration with other tools will boost both CrowdStrike and the other platform. Integration itself should not be a problem as CrowdStrike is a staple name in the cyber security area making adaptor and other integration are usually already ready out of the box

Pros

Detect
Find source of attack
After incident review

Cons

Android support
Ios support
BYOD scheame and personal devices

Likelihood to Recommend

Corporate and enterprise environment is the best entity to adopt it, but they have very minimal support for smaller and private business. Their top of the line license only available for company with the size of 300 and more endpoint while smaller business with limited IT resources will havr difficulties implementing it

Verified User

Manager in Information Technology (51-200 employees)

Vetted Review

3 years of experience

A Product you can Trust

Rating: 10 out of 10

Incentivized

July 31, 2025

Use Cases and Deployment Scope

We have CrowdStrike Falcon Complete installed on all devices that a user can log into, so servers, desktops, laptops, etc. CrowdStrike does a terrible job of stopping anything that is unexpected and potentially dangerous, while not impacting the users ability to get their job done. Management is relatively straight forward and notifications are timely and informative

Pros

Block malicious or suspicious activity
Isolate computers, while still maintaining administrative access to troubleshoot
Alerting of activities and interceding on our behalf when warranted to isolate or remediate

Cons

Since we have CrowdStrike installed on all endpoints, and they are already capturing data, i wish the SIEM component was included, but It's a different service

Likelihood to Recommend

CrowdStrike is the gold standard in the endpoint security space. Even after the issue they experienced last year, no one that I speak to had indicated a desire to move aware from them. They provide a very high level of protection and their customer service department is very responsible and knowledgeable

Verified User

Director in Information Technology (501-1000 employees)

Vetted Review

5 years of experience

CrowdStrike Complete - MDR that helps

Rating: 8 out of 10

Incentivized

July 31, 2025

Use Cases and Deployment Scope

The Falcon Complete acts on our behalf when a problem/incident happens. they applied the policies for us and monitor the compatibility of windows patches with their agents.

The main case for the complete is - We have a team 27/7 that verifies the alerts/incidents for us.

Pros

24/7 Monitoring
Quick response - good SLA
Compatibility with many apps
Good heuristics

Cons

Interface is not so friendly
Support could community more with us
reporting is not the best

Likelihood to Recommend

they have room for improvement related to interface and reports, but overall product is good.

Verified User

Employee in Information Technology (501-1000 employees)

Vetted Review

3 years of experience

Loading Reviews List....

Home
,
Endpoint Security
,
CrowdStrike Falcon
,
Reviews and Ratings

A very valuable tool for our business.

Rating: 9 out of 10

Incentivized

January 19, 2026

Use Cases and Deployment Scope

Pros

Rapid incident response
Event correlation and visibility
Threat intelligence
Device and user control
Resposta rápida a incidentes
Correlação de eventos e visibilidade
Inteligência de ameaças
Controle de dispositivos e usuários

Cons

A clearer and more objective navigation interface.
Greater ease in creating alerts and automations.
More flexible and easier-to-view reports.
Interface de navegação mais clara e objetiva
Maior facilidade na criação de alertas e automações
Relatórios mais flexíveis e com mais facilidade de visualização

Likelihood to Recommend

Verified User

Analyst in Information Technology (201-500 employees)

Vetted Review

1 year of experience