CrowdStrike Falcon

We use CrowdStrike Falcon as our exclusive EDR platform. CrowdStrike Falcon has been amazing! Not only is the application extremely lightweight, but it also catches all anomalous activity and can immediately stop it. It also gives you excellent visibility on the host machine and what has transpired. It has brought our organization great peace of mind!

I use CrowdStrike Falcon as the main source of monitoring threats originating from operating systems used by our servers, workstations, staff laptops and guest users machines.
Our organization being a university where thousands of students and hundreds of staff turn up daily, puts our critical assets at risk of being compromised by an insider. CrowdStrike Falcon helps us identify the source of a threat accurately, blocks the triggering file or script before it can cause damage. The AI / ML based detections are very helpful because they catch threats that other vendors may fail at. The scope of our use case is endpoint monitoring and threat management.

It's been used as ERD solution. Great ability to achieve network segmentation via the host firewall. We also used the IdP module and Horizon for cloud security. Data protection is a product we're still testing but looking promising. The visibility and telemetric getting from each sensor is great and the CrowdStrike Falcon complete visibility is pretty reliable.

Our EDR and its operations utilize CrowdStrike Falcon as the cornerstone of security. Currently, people are concerned about the protection of IDs.

CrowdStrike is the corporate protection against known (and unknown) malware and bad people.
We were using other solution and we were forced to change it really quick.
The process has been really simple, and for the moment we are really happy with how it works and how it performs.
It can be used both on computers and servers, and it supports quite good both Windows & Linux

We deployed CrowdStrike Falcon across our organization to strengthen our cyber defenses. The use cases ranged from endpoint protection to threat intelligence, covering a broad spectrum of security needs. The deployment was organization-wide, safeguarding endpoints and critical systems against evolving cyber threats. The reduction in manual tasks and real-time updates contribute to time savings for our security team.

We use Crowdstrike to protect the company's servers and keep them safe from as many threats as possible.

We use CrowdStrike Falcon as our Security Solution for the Clients an the Server. Also we do vulnerability management with CrowdStrike Falcon. We also use the Identy Modul to secure oour Active Directory Accounts. We also use the multi factor autorisation of CrowdStrike Falcon. In the Future we plan to use CrowdStrike Falcon in our cloud envirements.

We use CrowdStrike Falcon to detect potential malicious activity on both end user computers and servers.

CrowdStrike Falcon is used as an EDR agent and we also leverage Falcon Complete services for additional security operations assistance. Additionally, EDR logs are combined with SIEM logs to gather better insights about a security event which may or may not qualify for additional deep dive research. CrowdStrike Falcon is customizable and has a robust threat intelligence inbuilt.

We use endpoint protection, MFA anywhere and identity management to protect our organization. Falcon complete oversees all of the system to make sure we are protected at all times. We feel confident in the protection the platform provides and have nothing negative to say about the product. We have had great success.

We use it to protect all of our computers and servers.

Fully Managed Security Service that investigates detections and either escalates or deals with them directly for us.

We use CrowdStrike as an end-point protection application. We also use CrowdStrike's Identity Threat Protection module, which allows us to gain greater insight into and secure our end user by tying into our IAM solution. This helps us achieve our new cybersecurity goals of providing a primary focus on protecting user's identities and not putting the main focus on protecting endpoints. By implementing CrowdStrike Falcon Complete, we are able to monitor security for our endpoints and our user identities 24/7. This is a big plus for us as we are not staffed 24/7 and can rely on a reputable SOC from CrowdStrike to oversee and monitor security for all of our endpoints and our identities.

we use the product to protect computers and servers. We have a 7x24 soc service, crowdstrike allows us to detect, investigate and respond to incidents in a few minutes.decreased and the facilities for sharing information and research have allowed the soc to reduce response times.playbooks have made it possible to respond on other platforms

CrowdStrike Falcon is installed on all endpoints and Server VMs at our end.It helps us to stop security breaches as well as prevent all types of attacks (including malwares, ransomwares and many other such attacks)

We use Crowdstrike Falcon for the below points
1. To prevent Ransomware
2. Device Control
3. Protection of Workstations and servers
4. Advanced protection for Zeroday
4. To find malicious activities on systems

We use CrowdStrike Falcon Complete to augment our IT staff. Using complete gives us the 24X7 protection we need without burdening our already time challenged staff. The combination of CrowdStrike Falcon on our endpoints and monitoring by Crowdstrike Falcon complete gives us the coverage we need.

CrowdStrike Falcon Endpoint Protection is a complete cloud-native security framework to protect endpoints and cloud workloads. Falcon stops breaches and improves performance with the power of the cloud, artificial intelligence (AI), and an intelligent, lightweight single agent. The Falcon Platform is flexible and extensible. Best suitable for Hi-tech companies, Non air-gapped organizations andThin SecOps teams

We use it for endpoint protection from malware and viruses on all PC's and laptops within the organization for both on premises and work from home users. The product is small footprint on the clients and is not noticed by the end users. It looks for not only known malware but also for patterns/IOCs that may indicate a zero day attack.

We use Falcon to ensure we protect all our endpoint devices across the whole globally distributed organisation. We aim to utilise Falcon capabilities to prevent malware being distributed and exploited on all endpoint devices. Falcon Spotlight assists with getting visibility of the number of vulnerabilities we have on our endpoints to address by ensuring robust patch management capabilities.

Deployed CS Falcon in a higher education research environment. We needed to leverage a tool that can build a models and be on the advancement of technology due to the nature of higher education and BYOD. We installed the CS Falcon on all machines and worked with the CS team to build a Gov Cloud for research equipment that required a different set of cloud protocols.

We use CrowdStrike Falcon as an endpoint sensor to detect vulnerabilities throughout our organizations endpoints, in this day and age vulnerabilities come in all shapes and sizes from all different kinds of directions bet it from; an e-mail that contains a malicious link, an infected file you unintensionally downloaded from the web, existing programs with old or new vulnerabilities that are installed on our endpoints etc.CrowdStrike Falcon really addresses these issues on a wider proportion making sure we stay up to date with new CVEs and that our endpoints are secured.

We use CrowdStrike Falcon to analyze alerts originating in our client's environment. These are purely security alerts based on information security use cases such as identifying persistence, exploits, lateral movement, pup based attacks and a lot other categories. Falcon does a great job in identifying these and provides various ways to analyze these some of which are checking out the process tree, checking out the parsed fields on osint like hashes on vt, ips on abuse db, file names, path parent processes, child processes, etc. We also use this product to take a remote session of endpoints to triage and remediate in case of attacks.