CrowdStrike Falcon Reviews

Name: CrowdStrike Falcon
Brand: CrowdStrike
Rating: 4.3 (136 reviews)

Vendor: CrowdStrike

4.3 out of 5

136 reviews
97% willing to recommend

Leave a review

What is CrowdStrike Falcon?

CrowdStrike Falcon offers robust endpoint protection and threat detection, leveraging cloud-native architecture and AI-driven capabilities for advanced security. Its design ensures minimal system impact, making it a preferred choice for organizations seeking efficient protection solutions.

Get the CrowdStrike Falcon Buyer's Guide and find out what your peers are saying about CrowdStrike Falcon, Wazuh, Microsoft Defender for Endpoint and more!

CrowdStrike Falcon is the #1 ranked solution in endpoint security software, #1 ranked solution in top Threat Intelligence Platforms, #1 ranked solution in EDR tools, #1 ranked solution in XDR Security products, #1 ranked solution in top Attack Surface Management (ASM) solutions, #1 ranked solution in top Identity Threat Detection and Response (ITDR) solutions, #1 ranked solution in top AI-Powered Cybersecurity Platforms solutions, and #6 ranked solution in top Security Information and Event Management (SIEM) solutions. PeerSpot users give CrowdStrike Falcon an average rating of 8.6 out of 10. CrowdStrike Falcon is most commonly compared to Wazuh: CrowdStrike Falcon vs Wazuh. CrowdStrike Falcon is popular among the large enterprise segment, accounting for 51% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a computer software company, accounting for 13% of all views.

Helped 879,259 peers since 2012

Featured CrowdStrike Falcon reviews

Waleed Omar

Information Security Specialist at Arab Open University

Some features such as device control, firewall management, and file analysis are standalone products that we need to purchase separately. If these features came out of the box within the product, it would be much more beneficial for us. Other providers such as SentinelOne include these features in their base product. We attended a CrowdStrike Falcon event where they discussed some shallow AI features, but we cannot see these in our panel yet. We work with different solutions such as Darktrace and SocRadar, where AI features are automatically displayed in our dashboards after release. However, for CrowdStrike Falcon, we cannot see these features.

Read full review

Sumanth Kandanuru

Security Analyst at NTT Ltd

Obviously, when checking in the SIEM, not all logs are available. In CrowdStrike, unlike SIEM, actions are clearly defined. For example, a regular AV like Symantec might indicate a file was quarantined or failed to quarantine, but in CrowdStrike, I can verify the action. As an incident response analyst, I can use CrowdStrike to perform actions like directly wiping a file from a host if given access. I can investigate by accessing the customer's host based on the RTR environment and utilize host search to know details for the past seven days, including logins, processes, file installations, malicious processes, and network connections. Event search also allows for detailed investigations, showing accessed files and remote installations.

Read full review

Shubham Sinha.

Senior Principal Information Security Analyst at Veritas Technologies LLC

The best benefit of CrowdStrike Falcon is 99% MITRE coverage. It detects suspicious or undetected activities on the system and provides protection for zero-day vulnerabilities. If there is a sudden rise in CPU consumption or abnormal storage use, it helps us by creating a ticket, allowing us to investigate any abnormal behavior present. We can look into the machine and investigate. It reduces the false negatives common with other technologies. The real-time response helps with MTTR. We achieve faster detection and response times. It helped prevent breaches. In the past, there was abnormal consumption of RAM along with CPU on a server. It also started communicating with other subnets. CrowdStrike Falcon triggered an alert. We did our investigation and found that we had ransomware. We successfully mitigated it.

Read full review

CrowdStrike Falcon mindshare

Product category:

As of December 2025, the mindshare of CrowdStrike Falcon in the Extended Detection and Response (XDR) category stands at 11.0%, down from 17.4% compared to the previous year, according to calculations based on PeerSpot user engagement data.

Extended Detection and Response (XDR) Market Share Distribution
Product	Market Share (%)
CrowdStrike Falcon	11.0%
Wazuh	8.8%
Darktrace	6.9%
Other	73.3%

Extended Detection and Response (XDR)

PeerResearch reports based on CrowdStrike Falcon reviews

Type	Title	Date
Category	Extended Detection and Response (XDR)	Dec 29, 2025	Download
Product	Reviews, tips, and advice from real users	Dec 29, 2025	Download
Comparison	CrowdStrike Falcon vs Microsoft Defender XDR	Dec 29, 2025	Download
Comparison	CrowdStrike Falcon vs Trend Vision One	Dec 29, 2025	Download
Comparison	CrowdStrike Falcon vs Wazuh	Dec 29, 2025	Download

Valuable Features

CrowdStrike Falcon stands out for its endpoint detection and response capabilities, real-time analytics, and AI-driven threat intelligence. Users appreciate its lightweight agents that minimize performance impact and its robust cloud-native architecture that ensures flexibility and scalability. Its ability to connect remotely, execute real-time responses, and provide detailed threat analysis and reporting enhances security operations. Its centralized management console facilitates easy integration and proactive threat hunting.

"CrowdStrike Falcon has helped my customers predict and prevent potential breaches because of its proactive approach."
"CrowdStrike Falcon helps with endpoint protection by having very low memory utilization and processor usage, so it doesn't impact the computer system performance, and the computer system works very fast compared to all other endpoint protection solutions."
"CrowdStrike Falcon has positively impacted my organization by providing good protection, logs, and reports, which I find very good."

Room for Improvement

CrowdStrike Falcon users suggest enhanced integration capabilities and reduced false positives. Input methods for customization need refinement, and the interface requires simplicity and speed. Improved management reporting would be beneficial. Enhancements in compatibility with various operating systems and streamlined deployment processes are also desired. Users report that technical support could be more responsive and that pricing adjustments may be necessary to match market demands across different regions.

"I don't think anything is missing in CrowdStrike Falcon, but if they can manage their SOC solution instead of users or the end users or customers doing that, it will be very useful, just as Sophos does."
"One area for improvement in CrowdStrike Falcon could be the user interface and reports; it requires some improvements to be easily handled."
"I recommend that some deep-dive trainings are required for the NG SIEM, specifically for their next-generation SIEM module, as they need some basic trainings for that."

ROI

CrowdStrike Falcon enhances efficiency by reducing manpower and operational costs with increased staff productivity and decreased system downtime. It lowers support requests and maintenance overhead. Users report improved security, detecting and preventing threats while minimizing resource use. CrowdStrike Falcon provides a cost-effective alternative to previous solutions. Time savings in deployment and threat management lead to increased return on investment, with users noting significant improvements in security and operational expense reductions.

Pricing

Enterprise buyers evaluating CrowdStrike Falcon often find the product's pricing to be on the higher end compared to similar solutions, although it offers substantial value for larger organizations due to its comprehensive security features. The licensing model is flexible, with costs typically calculated per device and dependent on the modules chosen. Users appreciate the predictability of costs, but some express a need for price reduction or negotiated deals, particularly for small to medium-sized enterprises.

"It is expensive compared to SentinelOne, but as the market leader, it is worth it."
"The solution's pricing is great for us."
"The product is expensive."

Popular Use Cases

CrowdStrike Falcon is primarily used for endpoint security, focusing on malware detection, antivirus functions, and threat intelligence. Organizations utilize it for advanced threat protection, forensic investigations, and real-time ransomware prevention. They deploy it across multiple devices and operating systems, monitoring activity to prevent breaches. Its cloud-based features support next-generation antivirus capabilities, reducing resource consumption while enhancing security measures with AI-driven insights for a comprehensive protection strategy.

Service and Support

CrowdStrike Falcon’s customer service is generally quick and effective, with a knowledgeable and responsive team. Users appreciate the proactive approach and detailed insights provided during interactions. While many rate support highly, noting rapid responses and resolution skills, some mention room for improvement in terms of response times and communication. Complex cases may experience delays, and there are suggestions for faster feedback loops and more consistent expertise across all modules.

Deployment

CrowdStrike Falcon's initial setup is consistently described as straightforward and efficient by users. Deployment involves installing an agent on endpoints, often completed swiftly with minimal manpower. Cloud-based architecture simplifies the process, and many employ automated deployment tools like Microsoft SCCM. While most find the setup simple, some report initial challenges, especially with complex environments. Many praise the seamless integration, ease of updates, and minimal maintenance required post-deployment.

Scalability

CrowdStrike Falcon excels in scalability. Many attest its cloud-based design allows seamless expansion without performance issues. Organizations with thousands of users report no problems, easily deploying across diverse environments. Whether small or large, businesses appreciate its flexibility and quick deployment. It's praised for handling growing security needs efficiently. CrowdStrike requires minimal management effort, often being manageable by a small team. Cost considerations exist, but scalability remains robust, supporting various endpoints easily.

Stability

Users consistently report strong stability with CrowdStrike Falcon, with very few experiencing interruptions. It efficiently manages thousands of endpoints. Some mention issues during updates or occasional compatibility concerns, yet these seem quickly resolved. Users appreciate its cloud-based nature, finding it reliable and less resource-intensive compared to previous solutions. Despite a couple of noted glitches, those using N-1 versions maintain smooth operation. CrowdStrike Falcon continues to be seen as dependable and scalable.

These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.

Download our CrowdStrike Falcon Buyer's Guide for additional reliable information.

Review data by company size

By reviewers
Company Size	Count
Small Business	41
Midsize Enterprise	28
Large Enterprise	56

By reviewers

By visitors reading reviews
Company Size	Count
Small Business	2622
Midsize Enterprise	1538
Large Enterprise	4405

By visitors reading reviews

Top industries

By visitors reading reviews

Computer Software Company

13%

Financial Services Firm

10%

Manufacturing Company

Government

Retailer

University

Healthcare Company

Educational Organization

Comms Service Provider

Insurance Company

Media Company

Real Estate/Law Firm

Construction Company

Energy/Utilities Company

Outsourcing Company

Non Profit

Wholesaler/Distributor

Performing Arts

Hospitality Company

Legal Firm

Transportation Company

Recreational Facilities/Services Company

Consumer Goods Company

Pharma/Biotech Company

Marketing Services Firm

Logistics Company

Compare CrowdStrike Falcon with alternative products

Learn more about CrowdStrike Falcon

CrowdStrike Falcon provides comprehensive security features, including endpoint detection and response, real-time threat insights, and advanced AI-driven detection mechanisms. Its cloud-native architecture facilitates effortless scalability and seamless integration with cloud services, securing endpoints, servers, and roaming users. While Falcon delivers strong threat intelligence and automated detection, it faces challenges in operating system compatibility, reports require enhancements, and integration with some technologies is limited. High pricing and occasional false positives are noted areas for improvement, along with expanded support for older systems.

What are the key features of CrowdStrike Falcon?

Endpoint Detection and Response: Offers real-time threat tracking and quick reaction capabilities.
AI-Driven Threat Detection: Utilizes machine learning for identifying sophisticated threats.
Cloud-Native Architecture: Ensures seamless scalability and integration with cloud platforms.
Lightweight Design: Minimizes impact on system performance for efficient operation.
Remote Access and Isolation: Facilitates remote endpoint management and network protection.

What benefits or ROI should users look for?

Comprehensive Dashboards: Provides detailed insights for informed decision-making.
Scalability: Handles expansion effortlessly as organizational needs grow.
Threat Intelligence: Enhances security strategies with robust data.
Reduced Resource Consumption: Operates efficiently, saving on system resources.

In industries requiring fortified cybersecurity measures, CrowdStrike Falcon is deployed for endpoint protection and incident response. It offers advanced threat defense and integrates well with cloud services, making it a suitable replacement for traditional antivirus solutions. For sectors engaging in forensic investigations and real-time malware defense, Falcon's capabilities align with their security demands, serving industries from healthcare to finance.

CrowdStrike Falcon was previously known as CrowdStrike Falcon, CrowdStrike Falcon XDR, CrowdStrike Falcon Threat Intelligence, CrowdStrike Identity Protection, CrowdStrike Falcon Surface, CrowdStrike Falcon Platform.

Product Categories

Extended Detection and Response (XDR)

Security Information and Event Management (SIEM)

Endpoint Protection Platform (EPP)

Threat Intelligence Platforms (TIP)

Endpoint Detection and Response (EDR)

Attack Surface Management (ASM)

Identity Threat Detection and Response (ITDR)

AI-Powered Cybersecurity Platforms

Popular Comparisons

Wazuh vs CrowdStrike Falcon

Microsoft Defender for Endpoint vs CrowdStrike Falcon

Fortinet FortiEDR vs CrowdStrike Falcon

Splunk Enterprise Security vs CrowdStrike Falcon

Darktrace vs CrowdStrike Falcon

Microsoft Sentinel vs CrowdStrike Falcon

SentinelOne Singularity Complete vs CrowdStrike Falcon

IBM Security QRadar vs CrowdStrike Falcon

HP Wolf Security vs CrowdStrike Falcon

Cortex XDR by Palo Alto Networks vs CrowdStrike Falcon

Microsoft Defender XDR vs CrowdStrike Falcon

Elastic Security vs CrowdStrike Falcon

Varonis Platform vs CrowdStrike Falcon

Tanium vs CrowdStrike Falcon

WatchGuard Firebox vs CrowdStrike Falcon

See all alternatives

CrowdStrike Falcon Reviews Summary
Author info	Rating	Review Summary
Information Security Specialist at Arab Open University	3.5	At Arab Open University, we use CrowdStrike Falcon for endpoint protection, valuing its active response and behavior analysis. However, device control and AI features require separate purchases. We rate our ROI at about 60% on a scale of one to ten.
Security Analyst at NTT Ltd	4.5	I use CrowdStrike Falcon as an EDR integrated with SIEM for real-time investigations. It offers comprehensive features like remote host connection and detailed event search. While the querying system requires learning, it still enhances incident response capabilities significantly.
Senior Principal Information Security Analyst at Veritas Technologies LLC	4.0	I use CrowdStrike Falcon for endpoint and cloud security, valuing its machine learning for anomaly detection and MITRE coverage. Despite challenges with deployment and the evolving GUI, it's worthwhile and better for workflow implementation than SentinelOne.
Group Manager at HCLSoftware	2.5	I evaluate and deploy new solutions like CrowdStrike Falcon for our organization. It's an effective EDR tool offering visibility and real-time response. However, it needs improvements in threat prevention, false positive reduction, and resolution time. We considered SentinelOne and Palo Alto.
IT Manager at Jord International Pty Ltd	4.5	We've used CrowdStrike Falcon for seven years due to its low resource usage, easy deployment, centralized management, and fast threat detection, making it a reliable endpoint protection solution with good ROI and excellent customer support.
Vice President, Technology Operations at InfoEdge India Ltd	4.0	I use CrowdStrike Falcon mainly as an EDR solution, appreciating its 24/7 managed monitoring and automated threat detection. While integration enhances security, I recommend adding agentless capabilities. Despite evaluating alternatives, Falcon's protection meets my expectations.
IT consultant at Asuransi Ramayana	4.0	I use CrowdStrike Falcon for our various devices including servers and find it easy to install, manage, and effective in stopping breaches. While the price is high for SMBs, its value in preventing breaches is undeniable.
Section Head at Galaxy Chemicals Egypt	4.0	I've used CrowdStrike Falcon for three years to protect our company from threats; it's stable, integrates well with other tools, and offers good logs, though the UI and reports could be more user-friendly and targeted.

Title	Rating	Mindshare	Recommending
Wazuh	3.7	8.8%	81%	50 interviews Add to research
Microsoft Defender for Endpoint	4.1	N/A	95%	210 interviews Add to research

CrowdStrike Falcon Reviews

What is CrowdStrike Falcon?

Featured CrowdStrike Falcon reviews

CrowdStrike Falcon mindshare

PeerResearch reports based on CrowdStrike Falcon reviews

Valuable Features

Room for Improvement

ROI

Pricing

Popular Use Cases

Service and Support

Deployment

Scalability

Stability

Review data by company size

Top industries

Compare CrowdStrike Falcon with alternative products

Learn more about CrowdStrike Falcon

Related questions

Product Categories

Popular Comparisons