We compared CrowdStrike Falcon and Fortinet FortiEDR based on our user's reviews in several parameters.
CrowdStrike Falcon is praised for its strong threat detection capabilities, advanced technology, and effective incident response, with user-friendly interface and proactive threat hunting. Fortinet FortiEDR offers advanced threat detection, efficient security, and seamless integration, with emphasis on improving user interface and usability. CrowdStrike Falcon focuses on real-time monitoring, while Fortinet FortiEDR highlights flexible deployment options and scalability.
Features: CrowdStrike Falcon stands out for its robust threat detection, advanced machine learning, and proactive threat hunting capabilities. Fortinet FortiEDR excels in advanced threat detection, efficient endpoint security, and flexible deployment options with scalability.
Pricing and ROI: The setup cost for CrowdStrike Falcon is described as straightforward and hassle-free, requiring minimal effort. Users appreciate the flexible and customizable licensing options. Meanwhile, Fortinet FortiEDR also offers a straightforward setup process with minimal effort required. Customers are satisfied with the flexibility and options provided for licensing., CrowdStrike Falcon delivers significant ROI with improved cybersecurity and threat detection capabilities, while Fortinet FortiEDR also provides positive ROI according to user feedback.
Room for Improvement: CrowdStrike Falcon could improve its user interface, reporting capabilities, integration options, detection accuracy, customer support, and system performance. Fortinet FortiEDR could benefit from enhancements in its user interface, setup process, documentation, training resources, reporting capabilities, and dashboards.
Deployment and customer support: The reviews for CrowdStrike Falcon indicate that the duration to establish the tech solution varies among users, with some taking three months for deployment and others only needing a week for setup. In contrast, Fortinet FortiEDR has users reporting either three months for deployment and an additional week for setup or just one week for both., Users highly praised the customer service of CrowdStrike Falcon, finding the team responsive, knowledgeable, and reliable. On the other hand, customers expressed satisfaction with Fortinet FortiEDR's customer service, noting excellent assistance and guidance.
The summary above is based on 70 interviews we conducted recently with CrowdStrike Falcon and Fortinet FortiEDR users. To access the review's full transcripts, download our report.
"The solution can scale easily."
"Among CrowdStrike Falcon's most valuable capabilities are its UEBA and SOAR functionalities, along with its seamless integration with any other SIEM solution."
"Overall, what I found most valuable in CrowdStrike Falcon is its good mechanism. It also has a good reporting feature. CrowdStrike Falcon is an invaluable tool because, through it, you can take quick action, for example, when an OS is missing specific patches."
"The most valuable feature of CrowdStrike Falcon is its accuracy. That's very important for me. False-positive are very bad for everyone. As we are a financial institution, it's even worse. I like Falcon because it's very accurate."
"It has an extremely low footprint, so it has got minimum impact on the user end points in terms of CPU and memory usage."
"I like the feature called RTC, the remote time connector."
"Regarding features, I appreciate its integration capabilities with identity providers...Stability-wise, I rate the solution a ten out of ten."
"The solution offers great stability."
"The product detects and blocks threats and is more proactive than firewalls."
"We have FortiEDR installed on all our systems. This protects them from any threats."
"This is stable and scalable."
"Having all monitoring, response, tracking, and mitigation tools in one dashboard provides our analysts and SOC team with a comprehensive view at a glance."
"The setup is pretty simple."
"Fortinet FortiEDR's scalability is quite good, and you can add licenses to the solution."
"The main thing is that I feel safe. Because the processes that have been used to get a handle on the attackers are much better than other competitors"
"Fortinet FortiEDR made our clients feel secure and more at ease, knowing that they had an EDR solution that would close the gap in their security posture."
"Falcon could include more integrative features."
"There are some areas where some customers would prefer a different service."
"We'd like to see more integration capabilities."
"There is room for improvement in managing multiple customer IDs."
"There are some aspects of the UI that could use some improvement, e.g., working in groups. I build a group, then I have to manually assign prevention policies, update policies, etc., but there is no function to copy that group. So, if I wanted to make a subgroup for troubleshooting or divide workstations into groups of laptops and desktops, then I have to manually build a brand new group. I can't just copy a build from one to another. Additionally, in order to do any work within a group, I have to first do the work on the respective prevention policy page or individual policy page, then remove the group if the group is assigned to a different prevention policy, remove the prevention policy, and then add the new one in. So, it can get a little hectic. It would be easier if I could add and remove things from the group page rather than having to go into the policy pages to do it."
"The performance could be better."
"I would like them to improve the correlation of data in the search algorithms. When we run an investigation, malware, phishing, etc., I want to look at multiple endpoints at once to correlate that data to see the likenesses, e.g., how are they not alike or what systems and processes are running across those systems? I don't want to have to run the same search in their Spotlight module five, 10, 15, or 100 times to get 100 different results, copy that data out, and then correlate it on my own. In a very simple way, I want to be able to load up a comma-delimited list giving me the spotlight data on these X amount of hosts, letting me search for it quickly. We have had to go back to CrowdStrike, and say, "Our search are taking far too long for even one host." They did bump up the cores and that did improve performance, but it is still kind of slow to get that Spotlight data. That is probably our biggest pain point. I think that needs some help. I understand this kind of information access is probably not the easiest thing to do. It is probably a big ask depending on how their back-end is setup."
"We can't do scanning audits or device blocking or application control."
"The only minor concern is occasional interference with desired programs."
"To improve Fortinet, we need to see more features and technology areas at the endpoint level introduced."
"The solution is not stable."
"Cannot be used on mobile devices with a secure connection."
"We've had a lot of false positives; things incorrectly flagged that require manual configuration to allow. Even worse, after we allow a legitimate program, it sometimes gets flagged again after an update. This has caused a lot of extra work for my team."
"We'd like to see more one-to-one product presentations for the distribution channels."
"Once, we had an event that was locked and blocked, but information about it came to us two or three days later."
"I think cloud security and SASE are areas of concern in the product where improvements are required. The tool's cloud version has to be improved in terms of the security it offers."
CrowdStrike Falcon is ranked 3rd in Endpoint Detection and Response (EDR) with 104 reviews while Fortinet FortiEDR is ranked 13th in Endpoint Detection and Response (EDR) with 30 reviews. CrowdStrike Falcon is rated 8.6, while Fortinet FortiEDR is rated 8.0. The top reviewer of CrowdStrike Falcon writes "Easy to set up with good behavior-based analysis but needs a single-click recovery option". On the other hand, the top reviewer of Fortinet FortiEDR writes "A proactive solution that works as a proactive upgrade from a firewall". CrowdStrike Falcon is most compared with Microsoft Defender XDR, Darktrace, Microsoft Defender for Endpoint, Trend Micro Deep Security and VMware Carbon Black Endpoint, whereas Fortinet FortiEDR is most compared with Fortinet FortiClient, Microsoft Defender for Endpoint, SentinelOne Singularity Complete, Cortex XDR by Palo Alto Networks and ESET Endpoint Protection Platform. See our CrowdStrike Falcon vs. Fortinet FortiEDR report.
See our list of best Endpoint Detection and Response (EDR) vendors.
We monitor all Endpoint Detection and Response (EDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
