Skip to main content
TrustRadius
CrowdStrike Falcon

CrowdStrike Falcon

Overview

What is CrowdStrike Falcon?

CrowdStrike offers the Falcon Endpoint Protection suite, an antivirus and endpoint protection system emphasizing threat detection, machine learning malware detection, and signature free updating. Additionally the available Falcon Spotlight module delivers vulnerability assessment with no performance impact, no additional agents,…

Read more
Recent Reviews
Read all reviews

How CrowdStrike Falcon Differs From Its Competitors

Consolidation of Tools

Our users frequently installed cracked software and torrents, after CrowdStrike Falcon this has been completely eliminated since most of these are backdoored and malicious so CrowdStrike Falcon would not let them install or even download these. We also made use of exclusion module to exclude some …
Continue reading

Breadth of Solutions

It offers scalability, as a university we grow each year as more students enroll and we require more staff, as our needs grow and evolve, Falcon grows with us. The process is also very simple, just generate an agent based on target operating system and install it, this is helped us a lot to …
Continue reading

Breadth of Solutions

CrowdStrike Falcon complete has been useful for our company to get alerting and calls for critical events and detections happening on our network, it will only work for devices with the sensor deployed so it doesn't cover everything but at least it gives companies a good strategy around 24/7 SOC …
Continue reading

Consolidation of Tools

With USB Device Controll you can get rid of most DLP tools (at least for USB protection).
Also if you have some host firewall management system, it can be replaced with CS firewall management
Remote connection (not interactive or RDP like) can be also be replaced, with RTR
Unsure of the question, but …
Continue reading

Breadth of Solutions

CrowdStrike Falcon covers what we needed at the moment, which was mainly endpoint protection and response.
Also, it ofers so many other things, that can be easily implemented (same agent... just increases costs) and are really interesting. You can start with a "basic" package and start growing from …
Continue reading

Consolidation of Tools

We did not remove any tools, but as we built out our security stack - we just expanded the functionality of CrowdStrike and it was already deployed everywhere.
One solution, one environment, one source of reports and logs. Easier and quicker to find all the details.
Continue reading

Breadth of Solutions

We started with only EDR, added in firewall and device lockdown, then spotlight for vulnerabilities, and most recently Identity Protection. It is easier to expand with a platform that we trust versus finding new solutions.
Continue reading

Consolidation of Tools

We've leveraged CrowdStrike Falcon for innovative use cases, such as integrating its threat intelligence into our SIEM solution. This synergy has elevated our overall threat detection capabilities and created a more robust security ecosystem. The platform's ability to stay ahead of emerging …
Continue reading

Breadth of Solutions

Even while the user interface of CrowdStrike Falcon is, for the most part, easy to understand, there are certain complex functions that can require additional training. The continual improvements and assistance, on the other hand, contribute to an overall favorable experience for the user.
Continue reading

Consolidation of Tools

Integration with the SIEM has not been necessary. From the console it has been possible, in our case, to monitor the system and detect threats in real-time, which has allowed us to act quickly on 100% of the threats detected. However, integration with the SIEM is possible and is done in a simple …
Continue reading

Breadth of Solutions

Crowdstrike allows you to offer various optional functionalities, allowing you to adjust the solution to the needs of each client. Additionally, it offers bundles with groups of these functionalities to simplify the license acquisition processes.
Continue reading

Consolidation of Tools

For Security Solution on the clienst and servers we only use CrowdStrike Falcon. We don't need management server in our envirement. That is very convinient. We also use CrowdStrike Falcon multi factor solotion, On the this point we don't need another solution. The vulnerability managementis also …
Continue reading

Breadth of Solutions

You have one console to manage everything. That is very easy to use. You only need one sensor on the client with very low cpu requirements. The vulnerability managementis very easy to use and shows a good view of your envirement. The IPT Modul is very good for the usermanagement.
Continue reading

Consolidation of Tools

CrowdStrike Falcon replaced our traditional anti-virus software and provides more capabilities.
CrowdStrike was more or a replacement for traditional anti-virus so did not really consolidate our tools since it was not replacing multiple tools.
Continue reading

Breadth of Solutions

We are only using Falcon and later added Insight. It was convenient to be able to add EDR (as an insurance requirement) by simply enabling it in the CrowdStrike interface.
Continue reading

Breadth of Solutions

EDR abilities and CrowdStrike Falcon complete have helped rememdiate a lot of security incidents from happening even before it would happen. Additional macro-based email attachments which can potentially cause issues have been timely identified and remediated to avoid any mishaps.
Continue reading

Consolidation of Tools

Antivirus, USB Blocking tools, Password management tools, and file monitoring tools.
Ease of management has allowed the systems administrators more time to implement other solutions.
Continue reading

Breadth of Solutions

CrowdStrike Falcon's threat intelligence capabilities have provided us with insights into the evolving threat landscape. By being informed in real-time about potential threats and adversaries, we've been able to proactively adjust our security posture, making our infrastructure more resilient.With …
Continue reading

Consolidation of Tools

CrowdStrike Falcon allows the use of SOARS to help automate some specific tasks when an incident has been determined to have happened. We can automate who is notified and how they are notified. We can automate tasks such as gathering forensic data to help speed up investigations. We can run …
Continue reading

Breadth of Solutions

CrowdStrike Falcon plays an important part in our cybersecurity plans. It helps us achieve the goal of protecting our endpoints as well as protecting our user's identities. CrowdStrike Falcon also helps us reduce the overhead of administrative burdens. We can combine and automate many tasks that …
Continue reading

Consolidation of Tools

We have a full suite of Falcon. We have stopped usage of third party tools used for penetration testing exercises, red teaming, etc.
overall TCO is reduced and there is a simplicity in managing overall security operations
Continue reading

Breadth of Solutions

it helps to address penetration testing needs, red teaming needs. It offers the ideal AV replacement solution by combining the most effective prevention technologies and full attack visibility with built-in threat intelligence and better mitigation against attacks
Continue reading

Consolidation of Tools

We did not have most of the tools nor the skills to use the tools in CrowdStrike Falcon before signing up with Complete. Prior to complete we were using endpoint security. Now we have access to overwatch, Identity protection and spotlight...really the complete team sort through the info and let us …
Continue reading

Breadth of Solutions

Our goal was to protect the network and give our owner and executive team the confidence that our network was being monitored and protected. With Crowdstrike Falcon Complete we can be sure our network is being monitored in the off hours when most incursions occur. We have found that the team is …
Continue reading

Consolidation of Tools

By using the Identity protection module, i don't need to have a dedicated MFA application as CrowdStrike can provide an MFA option.
also i removed Cynet protection from the organization. CrowdStrike provide a better incident response platform, with a wider malware protection suite and zero trust …
Continue reading

Breadth of Solutions

as a result of a great threat intelligence team at CrowdStrike, they provide a comprehensive security and mitigation options.
since our team is a slim team, the ability to get immediate help from CrowdStrike support team reduces the impact of any security incidents and make it easier to secure our …
Continue reading

Consolidation of Tools

We have not purchased/implemented it yet but the EDR module will allow us to remove our other EDR product, permitting us to only run CrowdStrike on the endpoints . We will look at other modules to possibly prevent the purchase of other vendor solutions in the future as we try to improve our …
Continue reading

Breadth of Solutions

We have not implemented enough CrowdStrike solutions at this point to speak to the range and breadth of CrowdStrike solutions, although each budget cycle we revisit CrowdStrike solutions to see if there is a solution to solve a current problem. CrowdStrike is very consistent with communication …
Continue reading

Consolidation of Tools

We were able to replace our legacy type anti-virus with Falcon that provided additional capabilities. Additionally, we were able to remove vulnerability scanning agents that were replaced with Falcon Spotlight.
Overall, although there was limited cost savings, there were more human resourcing …
Continue reading

Breadth of Solutions

As a holistic product, we are able to manage cyber threats such as ransomware across our endpoint devices. One of our key objectives was to ensure we get the "prevent" pillar of the NIST framework matured and CrowdStrike Falcon assisted with this. Another objective was ensure we get vulnerability …
Continue reading

Consolidation of Tools

We removed Symantec and other Cybersecurity toolsets to manage our asset base
Efficiency in our tech stack and lowered our training cost. We now have 1 app to support and remediate.
Continue reading

Breadth of Solutions

Allows us to pick the correct platforms and grow into different areas as we need more attention to specific toolsets. Having all of the data under a single application keeps the application stack lean and we don't have to use multiple tools and installs to achieve the same process.
Continue reading

Consolidation of Tools

We generally use a multitude of tools and do not solely rely on a single product like CrowdStrike, we use this product injunction with various other security tools to minimize the threat attack surface overall.

Our tech stack is rather layered to say the least, it is better than to rely on a …
Continue reading

Breadth of Solutions

We are now able to focus less on endpoint security and actually widen our security scope by deploying more security tools to our network that aren't centered towards endpoints.
CrowdStrike Falcon's has provided us with the opportunity to integrate our security team into different clusters i.e. not …
Continue reading

Consolidation of Tools

It removes the dependency on SIEM, a SIEM tool of whatever company is tooo slow, hard to manage, does not capture process command line details, etc. On the other hand, CrowdStrike Falcon provides response capability as well as process level logging and does not need a physical device like the one …
Continue reading

Breadth of Solutions

The most important aspect is the cost here because it keeps the cost in limit and we have never faced a budget issue. This budget can then be used by us to venture into other tools areas. Also, CrowdStrike helps us to triage and remediate the attacks pretty quickly. The customer is happy too when …
Continue reading

Awards

Products that are considered exceptional by their customers based on a variety of criteria win TrustRadius awards. Learn more about the types of TrustRadius awards to make the best purchase decision. More about TrustRadius Awards

Popular Features

View all 7 features
  • Endpoint Detection and Response (EDR) (69)
    9.4
    94%
  • Malware Detection (69)
    9.3
    93%
  • Infection Remediation (67)
    8.9
    89%
  • Centralized Management (70)
    8.5
    85%

Reviewer Pros & Cons

View all pros & cons
Chris Stutzman | TrustRadius Reviewer
Chris Stutzman
IT Manager
GPRS (Construction, 501-1000 employees)
Humayoon Khan | TrustRadius Reviewer
Humayoon Khan
Team Lead Cyber Security
Lahore University of Management Sciences (LUMS) (Higher Education, 1001-5000 employees)
Return to navigation

Pricing

View all pricing

Falcon Pro

$6.99

Cloud
per endpoint/month (for 5-250 endpoints, billed annually)

Falcon Enterprise

$14.99

Cloud
per endpoint/month (minimum number of endpoints applies)

Falcon Premium

$17.99

Cloud
per endpoint/month (minimum number of endpoints applies)

Entry-level set up fee?

  • No setup fee
For the latest information on pricing, visithttps://www.crowdstrike.com/endpoint…

Offerings

  • Free Trial
  • Free/Freemium Version
  • Premium Consulting/Integration Services
Return to navigation

Features

Endpoint Security

Endpoint security software protects enterprise connected devices from malware and cyber attacks.

8.8
Avg 8.5
Return to navigation

Product Details

What is CrowdStrike Falcon?

CrowdStrike offers cloud-delivered endpoint protection. CrowdStrike aims to revolutionize endpoint protection by unifying next-generation antivirus (AV), endpoint detection and response (EDR), and a 24/7 managed hunting service — all delivered via a single lightweight agent.

The vendor states many of the world’s largest organizations use CrowdStrike, including three of the 10 largest global companies by revenue, five of the 10 largest financial institutions, three of the top 10 health care providers, and three of the top 10 energy companies.

CrowdStrike Falcon Features

Endpoint Security Features

  • Supported: Anti-Exploit Technology
  • Supported: Endpoint Detection and Response (EDR)
  • Supported: Centralized Management
  • Supported: Infection Remediation
  • Supported: Vulnerability Management
  • Supported: Malware Detection

CrowdStrike Falcon Video

CEO George Kurtz discusses challenges organizations face using legacy cybersecurity solutions & how easy, fast & effective the CrowdStrike Falcon platform is by comparison.

CrowdStrike Falcon Integrations

CrowdStrike Falcon Competitors

CrowdStrike Falcon Technical Details

Deployment TypesOn-premise, Software as a Service (SaaS), Cloud, or Web-Based
Operating SystemsWindows, Linux, Mac
Mobile ApplicationApple iOS, Android
Supported LanguagesEnglish, Japanese

Frequently Asked Questions

CrowdStrike offers the Falcon Endpoint Protection suite, an antivirus and endpoint protection system emphasizing threat detection, machine learning malware detection, and signature free updating. Additionally the available Falcon Spotlight module delivers vulnerability assessment with no performance impact, no additional agents, hardware, scheduled scans, firewall exceptions or admin credentials.

SentinelOne Singularity, Symantec Cloud Workload Protection, and VMware Carbon Black Endpoint are common alternatives for CrowdStrike Falcon.

Reviewers rate Endpoint Detection and Response (EDR) highest, with a score of 9.4.

The most common users of CrowdStrike Falcon are from Enterprises (1,001+ employees).
Return to navigation

Comparisons

View all alternatives
Return to navigation

Reviews and Ratings

(234)

Attribute Ratings

Reviews

(1-2 of 2)
Companies can't remove reviews or game the system. Here's why
November 03, 2023

One-stop solution for malware protection

Verified User
Engineer in Information Technology
Retail Company, 5001-10,000 employees
Score 9 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
CrowdStrike Falcon is used as an EDR agent and we also leverage Falcon Complete services for additional security operations assistance. Additionally, EDR logs are combined with SIEM logs to gather better insights about a security event which may or may not qualify for additional deep dive research. CrowdStrike Falcon is customizable and has a robust threat intelligence inbuilt.
Pros and Cons
  • Endpoint Detection and Response
  • Great communication to the security operations teams for triaging a security event
  • Customizable policies which can be globally applied
  • Ease of integration with SIEM
  • Ability to query endpoint logs within the Falcon portal itself
  • Sandbox can get better in my opinion.
  • Detection of source of infection in case of lateral movements recommended
  • Browser based logs/ DNS queries for getting to the root of the issue
Likelihood to Recommend
CrowdStrike Falcon can be treated as a single source for endpoint protection. With additional features, CrowdStrike Falcon has a strong use case for preventing malware infection in the infrastructure security ecosystem. CrowdStrike Falcon's complete helps get the MSSP capabilities for SOC detection and incident response from a league of experts.
CrowdStrike Falcon Feature Ratings
Endpoint Security (6)
91.66666666666666%
9.2
Anti-Exploit Technology
90%
9.0
Endpoint Detection and Response (EDR)
100%
10.0
Centralized Management
100%
10.0
Infection Remediation
90%
9.0
Vulnerability Management
80%
8.0
Malware Detection
90%
9.0
Return on Investment
  • Prevents malware infection for known malware signatures
  • AI based engine which can detect and prevent potential infections
  • Affordable in comparison with the compensation a firm might owe to the customers in case of a breach
Consolidation of Tools
McAfee & Symantec anti-virus systems
Ease of management and better implementation of Falcon software. In addition, CrowdStrike Falcon is well integrated with other tools like SentinelOne Attivo, Splunk, Zscaler, etc which helps in better detection across multiple log sources.
Breadth of Solutions
EDR abilities and CrowdStrike Falcon complete have helped rememdiate a lot of security incidents from happening even before it would happen. Additional macro-based email attachments which can potentially cause issues have been timely identified and remediated to avoid any mishaps.
Innovative Uses
  • Integration with SIEM
  • Integration with SOAR tool
  • Integration with internet proxy solution enhancing network security
  • Reporting and metrics generation
Alternatives Considered
CrowdStrike Falcon provides a single solution to complex problems along with the ability to contain a machine and remotely execute programs using admin dashboard and administrator capabilities
Other Software Used
Users and Roles
100
The people within my organization using Crowdstrike Falcons are security engineers or security analysts which use this security product for detecting any security related alarms and triaging the same. Crowdstrike portal is also used by the members of compliance team which use this tool to determine the overall compliance percentage with the security policy across the organization
Support Headcount Required
75
The people should have knowledge of security policy that needs to be applied across the organization. They also need to know the fundamentals of security which includes knowing what an endpoint detection and response (EDR) tool does and the ability to triage any alert and accurately identify the false positives. The admininstrators should be able to dive deep and add any hash/DNS entry to blocked list if needed.
Business Processes Supported
  • Malware detection and analysis
  • Triaging of any alert
  • Ability to measure the compliance within the organization
  • Analysis of a file within a sandboxed environment
Future Planned Uses
  • Vulnerability Management
  • Controlling DNS policies
  • Identity protection for the end users
Likelihood to Renew
10
Crowdstrike has a large suite of tools built for helping the engineers triage and respond to security event whenever identified. The ability to customize the security policies and implement more granular policies to different devices based on the functionality is unmatched. Crowdstrike provides so much of ability in a decent budget which ascertains the value for money or ROI.
Training Types Used
  • Online Training
  • In-Person Training
In-Person Training
9
There is limited amount of learning that can be completed in an in-person training available. In my opinion, the self-paced learning provided by Falcon portal is more useful over in-person training. The support from Falcon is great and useful to overcome difficulties, if any.
Online Training
10
The training provided by Crowdstrike Falcon is complete in terms of the depth of technical knowledge and teaches the users about going through with the platform. There are lots of jargons for different tools that Crowdstrike Falcon has and this training teaches them all which helps in managing the platform better. Plus, the regular knowledge checks are also very helpful for the end user.
June 20, 2023

Protecting my and your environment with CrowdStrike the easy way

Verified User
Professional in Information Technology
Computer & Network Security Company, 10,001+ employees
Score 9 out of 10
Vetted Review
Verified User
Use Cases and Deployment Scope
CrowdStrike Falcon Endpoint Protection is a complete cloud-native security framework to protect endpoints and cloud workloads. Falcon stops breaches and improves performance with the power of the cloud, artificial intelligence (AI), and an intelligent, lightweight single agent. The Falcon Platform is flexible and extensible. Best suitable for Hi-tech companies, Non air-gapped organizations andThin SecOps teams
Pros and Cons
  • Threat Inteligance
  • Low CPU and RAM usage
  • Malware mitigation
  • Vulnerability managment
  • Hunting
  • Ease of use
  • Identity protection
  • Air-Gapped networks
  • Mobile protection
Likelihood to Recommend
Since it is easy to deploy and use, it can be deployed and protect small and large companies immediately. best suitable for Hi-tech companies and Thin SecOps teams Falcon X threat intelligence and Threat Graph cloud-based data analytics provide the ability to detect advanced threats and analyze user and device data to spot anomalous activity.
CrowdStrike Falcon Feature Ratings
Endpoint Security (6)
88.33333333333334%
8.8
Anti-Exploit Technology
90%
9.0
Endpoint Detection and Response (EDR)
100%
10.0
Centralized Management
90%
9.0
Infection Remediation
90%
9.0
Vulnerability Management
70%
7.0
Malware Detection
90%
9.0
Return on Investment
  • Thin SecOps team needed for maintenance
  • Slow to meet the demand for security of serverless cloud
  • Systems and runtime protection for container workloads
Consolidation of Tools
By using the Identity protection module, i don't need to have a dedicated MFA application as CrowdStrike can provide an MFA option.
also i removed Cynet protection from the organization. CrowdStrike provide a better incident response platform, with a wider malware protection suite and zero trust architecture readiness.
more security to the enterprise, with better and easier workstations and servers deployment. very good CSPM feature which provides me better sight to the organization cloud environment and applications. also Identity protection enhanced our access to the company resources
Breadth of Solutions
as a result of a great threat intelligence team at CrowdStrike, they provide a comprehensive security and mitigation options.
since our team is a slim team, the ability to get immediate help from CrowdStrike support team reduces the impact of any security incidents and make it easier to secure our company.
Innovative Uses
  • great threat intelligence
  • identity protection
Alternatives Considered
Since CrowdStrike is a cloud-native platform, it reduces the need to maintain many servers on-premise and worldwide architecture. McAfee uses very high CPU and RAM resources on endpoints and servers.
Identity protection feature is a huge step towards zero trust implementation.
Other Software Used
Users and Roles
Consulting and architecture
Support Headcount Required
15
Deloitte have about 15-20 consultants that provide help and support to other organizations on how to implement CrowdStrike.
Business Processes Supported
  • incident response
  • identity protection
  • malware protection
  • device control
  • vulnerability management
Future Planned Uses
  • Mobile protection
  • CSPM
Likelihood to Renew
9
so far no major breaches occurred in the organizations that we deployed CrowdStrike at. so for me that is the biggest win
Return to navigation