CrowdStrike Falcon Reviews and Ratings

Use Cases and Deployment Scope

I'm a security analyst who uses CrowdStrike Falcon for day-to-day endpoint monitoring and response. There is no such problem compared to the competitors. It does its job really well. Our scope is to monitor endpoint assets, including workstations, servers, and DCs (Windows OS, Linux OS, and macOS), for any suspicious or malicious behavior or attempts.

Likelihood to Recommend

Crowdstrike is a unified platform for monitoring endpoint devices, whether they're workstations, servers, cloud-native machines, or even mobile devices. It uses AI/ML to monitor anomalies and suspicious behavior, including zero-day attacks. It is suitable for large organizations but may be costlier or less appropriate for smaller organizations, those who want an on-prem EDR setup, and those who need custom scanning based on compliance requirements.

Use Cases and Deployment Scope

Falcon serves as an EDR solution and is deployed at every computing endpoint. It provides realtime detection and mitigation of threats by continuously monitoring the endpoint activity telemetry data. The AI/ML features help eradicate zero-day attacks and serve as a preventive measure to protect your organisation against every possible attack vector. Having Falcon agents running on your endpoint protects your infrastructure from threat actors and reduces/negates the risk of data exfiltration and financial loss or reputational damage.

Likelihood to Recommend

CrowdStrike Falcon is ideal for large, cloud-native enterprises that prioritize advanced behavioral detection and have a mature SOC to manage their intelligence. However, its cloud-reliant architecture makes it a poor fit for air-gapped or offline networks. Additionally, small organizations with limited staffing may find it difficult to manage, while teams that require integrated SOAR and vulnerability management might be discouraged by the need for additional licensing to unlock those capabilities.

Use Cases and Deployment Scope

We use it as our main endpoint protection solution, constantly working on detection and visibility within our environment. We can monitor behaviors and respond to incidents in real time, and with it, we can reduce the risks of malware/ransomware and unauthorized access. It helps our security team every day.

Utilizo como nossa principal solução de proteção de Endpoints, sempre trabalhando na detecção e visibilidade do nosso ambiente. Conseguimos verificar comportamentos e resposta a incidentes em tempo real,. com ele conseguimos reduzir os riscos de um malware/ransomware e de acessos não autorizados. Nos ajuda em todo dia a dia do nosso time de segurança.

Likelihood to Recommend

I believe it is more suitable for environments that require high visibility, where it offers advanced detection and rapid response to incidents with high availability. It is less appropriate for small businesses due to the cost and their smaller IT teams; in this case, justifying the high cost would be more difficult.

Acredito que seja mais adequado para ambientes que precisam de uma alta visibilidade, onde ele possui uma detecção avançada e com rápida respostas a incidentes com alta disponibilidade. É menos apropriado para pequenas empresas devido ao custo e que possuem equipes de TI pequenas, neste caso justificar o alto custo seria mais dificil.

<i>This review was originally written in Portuguese and has been translated into English using a third-party translation tool. While we strive for accuracy, some nuances or meanings may not be perfectly captured.</i>

Use Cases and Deployment Scope

It is the organisation's antivirus software and is also used as DLP. In terms of USB, we have more than 1,500 clients installed on PCs and 50 servers. The USB blocking tool is what we use most on a daily basis, along with checking the backups that the servers make every day.

Likelihood to Recommend

We are very proud of how we have configured everything and how CrowdStrike Falcon works in our organisation, as well as how we use various tools. Incident detection, USB permission, vulnerability detection, etc. The tool is user-friendly and has many interesting features.

Use Cases and Deployment Scope

My organization uses CrowdStrike Falcon to monitor and protect all of our endpoints. This provides the team insight into any potential malicious activity based upon scripts spawning from word or excel files. CrowdStrike Falcon allows the team to get detailed analysis and records of the who, what, when, where and why that other solutions could not provide.

Likelihood to Recommend

CrowdStrike Falcon is well suited for any size of environment. Large to small, CrowdStrike Falcon does an amazing job. The ability to have the same security as a fortune 500 company and have a solution that sees the same threats that they are seeing is amazing. I do not think that there is a company or environment that wouldn't benefit from the CrowdStrike Falcon solution.

Use Cases and Deployment Scope

CrowdStrike in my organization is used for next-generation antivirus protection and device control. We get alerts from this tool which helps in investigation and monitoring infrastructure. Logs from these tools are logged in SIEM, which helps in troubleshooting issues related to endpoints. Overall updates and security advisory sent by CrowdStrike improve the security posture of our organization

Likelihood to Recommend

CrowdStrike is best suited for organization where users are remote. It provides next-generation antivirus features to stop malware on endpoints and workloads in the cloud. CrowdStrike is a premium solution and expensive and so it is less appropriate for small organizations and it is not suited where there is no internet.

Use Cases and Deployment Scope

We use CrowdStrike for our EDR solution. They have been a great partner to work with!

Likelihood to Recommend

CrowdStrike is a great EDR tool. I would like to see their next GEN SIEM have more features.

Use Cases and Deployment Scope

CrowdStrike allow us to have more confidence when we go to cloud and whenever our endpoints have multiple touchpoint to the outside world. As the company get bigger, threats such as phising and other malicious attack cannot be avoid. That is why we need an active forms of defence where we can rely to help us detect, stop, limit the spread and asses damages if any and prepare us for remedial solution and actions. Their strengh are also in their services where it comes in handy after the incident or preventive way. Also, by adopting integration with other tools will boost both CrowdStrike and the other platform. Integration itself should not be a problem as CrowdStrike is a staple name in the cyber security area making adaptor and other integration are usually already ready out of the box

Likelihood to Recommend

Corporate and enterprise environment is the best entity to adopt it, but they have very minimal support for smaller and private business. Their top of the line license only available for company with the size of 300 and more endpoint while smaller business with limited IT resources will havr difficulties implementing it

Use Cases and Deployment Scope

We have CrowdStrike Falcon Complete installed on all devices that a user can log into, so servers, desktops, laptops, etc. CrowdStrike does a terrible job of stopping anything that is unexpected and potentially dangerous, while not impacting the users ability to get their job done. Management is relatively straight forward and notifications are timely and informative

Likelihood to Recommend

CrowdStrike is the gold standard in the endpoint security space. Even after the issue they experienced last year, no one that I speak to had indicated a desire to move aware from them. They provide a very high level of protection and their customer service department is very responsible and knowledgeable

Use Cases and Deployment Scope

The Falcon Complete acts on our behalf when a problem/incident happens. they applied the policies for us and monitor the compatibility of windows patches with their agents.

The main case for the complete is - We have a team 27/7 that verifies the alerts/incidents for us.

Likelihood to Recommend

they have room for improvement related to interface and reports, but overall product is good.