Try our new research platform with insights from 80,000+ expert users

CrowdStrike Falcon vs Morphisec vs Symantec Endpoint Security comparison

CrowdStrike and Morphisec are both solutions in the Endpoint Protection Platform (EPP) category. CrowdStrike is ranked #2 with an average rating of 8.6, while Morphisec is ranked #55. CrowdStrike holds a 10.6% mindshare in EPP, compared to Morphisec’s 0.4% mindshare. Additionally, 96% of CrowdStrike users are willing to recommend the solution, compared to 100% of Morphisec users who would recommend it.
CrowdStrike Falcon
Read 132 CrowdStrike Falcon reviews
  • 55,388 Views
  • 23,817 Comparison Views
96% willing to recommend
Morphisec
Read 21 Morphisec reviews
  • 1,854 Views
  • 1,075 Comparison Views
100% willing to recommend
Symantec Endpoint Security
Read 144 Symantec Endpoint Security reviews
  • 10,537 Views
  • 8,956 Comparison Views
80% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between CrowdStrike Falcon, Morphisec, and Symantec Endpoint Security based on real PeerSpot user reviews.

Find out what your peers are saying about Microsoft, CrowdStrike, SentinelOne and others in Endpoint Protection Platform (EPP).

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Endpoint Protection Platform (EPP) Report (Updated: July 2025).
Buyer's Guide
Endpoint Protection Platform (EPP)
July 2025
Download the complete report
Helped 862,077 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Mindshare comparison

As of July 2025, in the Endpoint Protection Platform (EPP) category, the mindshare of CrowdStrike Falcon is 10.6%, up from 9.6% compared to the previous year. The mindshare of Morphisec is 0.4%, up from 0.3% compared to the previous year. The mindshare of Symantec Endpoint Security is 3.9%, down from 4.8% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Endpoint Protection Platform (EPP)
 

Featured Reviews

Waleed Omar - PeerSpot reviewer
Provides effective real-time threat detection with potential for cost optimization
Some features such as device control, firewall management, and file analysis are standalone products that we need to purchase separately. If these features came out of the box within the product, it would be much more beneficial for us. Other providers such as SentinelOne include these features in their base product. We attended a CrowdStrike Falcon event where they discussed some shallow AI features, but we cannot see these in our panel yet. We work with different solutions such as Darktrace and SocRadar, where AI features are automatically displayed in our dashboards after release. However, for CrowdStrike Falcon, we cannot see these features.
Read full review
Rick Schibler - PeerSpot reviewer
Offers in-memory protection at a lower price than competitors
Morphisec's in-memory protection is probably the most valuable feature because it stops malicious activity from occurring. If something tries to install or act as a sleeper agent, Morphisec will detect and stop it. Morphisec's Moving Target Defense is critical to hardening our attack surface. If it detects something, it indicates whether it's valid. That means you've got a breach requiring investigation. It detects anomalies but doesn't necessarily point to what caused them. You still need to do that work. The solution is reasonably easy to administer. They made some changes last year, adding a cloud-based monitoring solution that makes deploying and monitoring our endpoints easy.
Read full review
MohammadAlshatreet - PeerSpot reviewer
Resolve support issues promptly while optimizing system resource usage
I use the solution primarily for scanning and identifying threats, which is essential in determining the percentage of resources used, such as CPU and hard disk. It's important to balance resource consumption to maintain operational efficiency. Furthermore, the incident response capabilities allow me to resolve authentication and support issues promptly, ensuring the system operates without downtime.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The most valuable feature of CrowdStrike Falcon is its accuracy."
"It's very easy to set up."
"The CS falcon agent is a lightweight agent compared with other agents of EDR products."
"The most valuable features in CrowdStrike Falcon are the full EDR with antivirus, hunting, reporting, and RTR remote control."
"The detection is very reliable. Also, OverWatch is a great feature."
"CrowdStrike Falcon's most valuable feature is the fact that it's not getting in the way of our workforce and their workflow."
"We haven't had any infections or down time."
"The most valuable feature is that we don't need to re-image machines as much as we had to."
More CrowdStrike Falcon pros
"Morphisec also provides full visibility into security events for Microsoft Defender and Morphisec in one dashboard... in the single pane of glass provided by Morphisec, it's all right there at your fingertips: easy to access and easy to understand. And if you choose to go down further to know everything from the process to the hash behind it, you can."
"What's valuable is really the whole kit and caboodle of the Morphisec agent. What it does is genius, in a way, until the bad guys get wise to it. You set it up and then you watch the dashboard. There isn't really much tinkering."
"Morphisec Guard enables us to see at a glance whether our users have device control and disk encryption enabled properly. This is important because we are a global company operating with multiple entities. Previously, we didn't have that visibility. Now, we have visibility so we can pinpoint some locations where there are machines that are not really protected, offline, etc. It gives us visibility, which is good."
"Morphisec makes use of deterministic attack prevention that doesn’t require investigation of security alerts. It changes the memory locations of where certain applications run. If you think of Excel, opening a PDF, running an Excel macro, or opening a webpage and clicking on a link, all of those actions run in a certain area of memory. Morphisec changes the memory locations of where those run."
"Morphisec is a straightforward solution that is efficient and very stable."
"The fact that Morphisec uses deterministic attack prevention that does not require human intervention has affected our security team's operations by making things much simpler. We don't have to really track down various alerts anymore, they've just stopped. At that point, we can go in and we can clean up whatever needs to be cleaned up. There are some things that Morphisec detects that we can't really remove, it's parts of Internet Explorer, but it's being blocked anyway. So we're happy with that."
"The biggest feature is that it hides everything from your operating system that's running in-memory from anything to try to run against it. That's the most unique thing that's on the market. There's nothing else out there that's quite like that. That's a big selling point and why we went with it. It does exactly what the design does. If you can't find it, you can't execute against it."
"I really like the integration with Microsoft Defender. In addition to having third-party endpoint protection, we're also enabling Defender... I like the reporting that we get from Defender, when it comes in. I like that it's one console showing both Morphisec and Defender where it provides me with full visibility into security events from Defender and Morphisec."
More Morphisec pros
"The application and device control functionality is good. We are able to see which applications are installed using the product management dashboard."
"Their threat protection is very good. We are managing a good number of users thanks to the solution and we are pretty satisfied with it."
"I like the intrusion prevention and Sonar features."
"The solution is easy to use."
"The most valuable feature of Symantec Endpoint Security is the protection of our systems."
"The IPS function (with no firewall needed to be installed in the SEP client) is quite good."
"The solution can be scaled to handle different threats."
"The tool has predefined rules, like which actions to block or allow. This makes it easy because I don't have to figure out what policies to deploy."
More Symantec Endpoint Security pros
 

Cons

"They offered a white glove service that was extremely costly. When we got into it, we saw it was relatively easy. If I was being nitpicky, I'd say that I don't like being sold something that's unnecessary. That's the only downside I've seen to the solution."
"CrowdStrike Falcon could improve the EDR functionality. Once the functionality of the solution improves, it will be even better in the market and able to compete with Carbon Black."
"I'm concerned about the recent issue that involved a faulty update."
"The management reporting functionality needs to be improved."
"Basically, they don't cover legacy OS or applications. That's the only issue we're concerned about"
"The skillsets needed to run CrowdStrike Falcon are extensive if you want to get the most value out of the tool."
"In terms of features, I would like them to add detailed logging functionality in CrowdStrike. Currently, CrowdStrike detects the threats immediately based on the IOCs and the signature-based policies or many threat behaviors, but in terms of logging those threats, it is not very good. The information that they provide in the logs is very little. They can build more analytics into it."
"The GUI can use improvement, it's cloud-based so sometimes the interface can be a bit slow. The interface could use a little bit more speed."
More CrowdStrike Falcon cons
"The dashboard is the area that requires the most improvement. We have about, I would say 5,500 computers currently, and searching through all of those takes some time to filter. So as soon as you apply the filter, it takes a few seconds. It crunches, it thinks, and then it brings up the clients that match."
"The weakest point of this product is how difficult it is to understand the reasons for an alert. This is a problem because it is hard to determine whether an attack is real or not."
"From a company standpoint, a little more interaction with the customers throughout the year might be beneficial. I would like check-ins from the Morphisec account executives about any type of Morphisec news as well as a bit more interaction with customers throughout the year to know if anything new is coming out with Morphisec, e.g., what they are working on in regards to their development roadmap. We tend not to get that up until the time that we go for a yearly renewal. So, we end up talking to people from Morphisec once a year, but it is usually at renewal time."
"Morphisec is a venture startup. They are still early in their growth stage. They need to get mature on their customer support and on how they interface with system tools. For example, they need to get multifactor in place and an API for the major multi-factor systems, e.g., Okta, Duo, Ping, and Microsoft. They don't have them built in yet. They are working on them. It is just not there yet. Also, their stability, customer support, and processes need improvement, which is just part of maturity."
"We have only had four attacks in the last year, "attacks" being some benign PDF from a vendor that, for some reason, were triggered. There were no actual attacks. They were just four false positives, or something lowly like adware. There have been false positives with both the on-premises solution and the cloud solution."
"We started in the Linux platform and we deployed to Linux. The licensing of that has been kind of confusing between Linux licensing and Windows licensing. The overall simplicity of licensing or offering an enterprise license to just cover everything and then we don't have to count needs improvement."
"We sometimes have to depend on the support team to know what action we should take. If the solution for an alert can be built into the report that we are getting, it will save time, and the interaction with support would be less. At times, corrective action is required, but at times, we don't need to take any action. It would be good if we get to know in the report that a particular infection doesn't require any action. It will save us time and effort."
"In the Windows Defender integration, they have put in a report of computers that need Windows Defender updates. If those updates could be kicked off directly from the dashboard, instead of having to go to another system entirely, that would be good."
More Morphisec cons
"The solution's reporting could be improved."
"They need to develop a multi-language interface."
"This solution needs better compatibility with services and applications."
"The agent shouldn't use up so many resources at the endpoint when scanning and protecting."
"There have been some complaints about the visibility of current licensing, as sometimes it does not show all the seats, and customers have trouble getting a complete overview of Symantec licenses."
"If Symantec wants to improve, they should have a single event for all their products."
"In a few cases, when we enable the IPS/IDS feature, there are performance-related issues on the end devices. If we run quite a few features of Symantec, especially the IPS/IDF, it consumes a lot of processing and memory capacity."
"The whitelisting feature does not work as expected."
More Symantec Endpoint Security cons
 

Pricing and Cost Advice

"The pricing and licensing are reasonable. I don't think we are getting charged more than what it is worth. It is fair, but I do not like how it is a la carte. I realize they do that so other organizations can buy and get the agent, getting it cheaper than you could otherwise. However, if you want the main core package, which has all the main features with the exception of maybe the multi-cloud protections, that can get pricier for an organization. So, you have to pick and choose what you want. I do not care for a la carte pricing."
"There is an annual license required to use this solution."
"Years ago, when we bought CrowdStrike, you got everything it had. I was a little concerned when they broke this out into a la carte modules where you can buy EDR, Spotlight, etc., picking and choosing off the menu. I was a little worried that the solution would get watered down. However, I realized in my previous organization when we had the full suite that there were a bunch of features in it that we didn't have time to operationalize. So, I warmed up to it. I get the whole, "Look, you can pick and choose. Okay, everybody buys a steak, but do you want mashed potatoes, or do you want lobster mac and cheese?" So, you can pick the sides that you want, so you can buy the solution that you want and operationalize versus paying a lot of money and getting a bunch of things, but not using 60 percent of the tools in the box."
"CrowdStrike is well priced. On a yearly basis, it costs between $60 and $100 per user."
"The cost is usually a challenge in the industry. I think we pay around sixty-eight dollars."
"The price of CrowdStrike Falcon could be better. It is very expensive, we pay approximately $900 per month for the licenses. There are not any additional fees."
"CrowdStrike Falcon offers excellent value for the money for our organization, particularly given our lean IT team."
"CrowdStrike Falcon can be more expensive than some competitors, and its base price doesn't cover every feature."
More CrowdStrike Falcon pricing and cost advice
"Compared to their competitors, the price of Morphisec is not that high. You can easily deploy it on a large-scale or small-scale network."
"We are still using a separate tool. I know for our 600 or I think we're actually licensed for up to 700 users, it runs me 23 or $24,000 a year. When you're talking to that many users plus servers being protected, that's well worth the investment for that dollar amount."
"Morphisec is reasonably priced because our parent company's other subsidiaries use different products like CrowdStrike. CrowdStrike is four or five times more expensive than Morphisec. The competitive pricing saves us money in our overall security stack."
"It is an annual subscription basis per device. For the devices that we have in scope right now, it is about $25,000 a year."
"The pricing is definitely fair for what it does."
"It does not have multi-tenants. If South Africa wants to show only the machines that they have, they need their own cloud incidence. It is not possible to have that in a single cloud incidence with multiple tenants in it, instead you need to have multiple cloud incidences. Then, if you have that, it will be more expensive. However, they are going to change that, which is good."
"It is a little bit more expensive than other security products that we use, but it does provide us good protection. So, it is a trade-off."
"Licenses are per endpoint, and that's true for the cloud version as well. The only difference is that there is a little extra charge for the cloud version."
More Morphisec pricing and cost advice
"We have some customers on a one-year license and others on a three-year license."
"Licensing is per user. Therefore, it makes it easy to do licensing."
"The price of the product is competitive if compared to its competitors in the market."
"The pricing is as per the environment. If all the features are there, there will be a cost for them. There were no additional costs for me. Support and other things were included in the pricing."
"It is the better product, even if it is a little on the higher side."
"The prices fluctuate, but this year I think it was maybe around $12,000."
"It's pretty awesome price-wise. That's why we give it to most of our clients. It isn't very expensive. Compared to Cisco AMP, which is very expensive, its price is okay. It's also cheaper than Malwarebytes."
"Pricing and licensing for our country is very good. It's not that expensive and the endpoint security is very good. It's not as cheap as some others, but they are not as good."
More Symantec Endpoint Security pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Endpoint Protection Platform (EPP) solutions are best for your needs.
See recommendations
862,077 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
15%
Financial Services Firm
10%
Manufacturing Company
9%
Government
7%
Outsourcing Company
14%
Computer Software Company
12%
Financial Services Firm
10%
Manufacturing Company
9%
Computer Software Company
14%
Financial Services Firm
12%
Manufacturing Company
10%
Comms Service Provider
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Comparing CrowdStrike Falcon to Cortex XDR (Palo Alto)
Cortex XDR by Palo Alto vs. CrowdStrike Falcon Both Cortex XDR and Crowd Strike Falcon offer cloud-based solutions th...
See all answers
How does Crowdstrike Falcon compare with Darktrace?
Both of these products perform similarly and have many outstanding attributes. CrowdStrike Falcon offers an amazing u...
See all answers
How does Microsoft Defender for Endpoint compare with Crowdstrike Falcon?
The CrowdStrike solution delivers a lot of information about incidents. It has a very light sensor that will never pu...
See all answers
Ask a question
Earn 20 points
Which is better - Cortex XDR or Symantec End-User Endpoint Security?
Aqua Security is easy to use and very manageable. Its main focus is on Kubernetes and Docker. Security is a very valu...
See all answers
Which offers better endpoint security - Symantec or Microsoft Defender?
We use Symantec because we do not use MS Enterprise products, but in my opinion, Microsoft Defender is a superior sol...
See all answers
What do you like most about Symantec End-User Endpoint Security?
Symantec have everything – documentation, videos, data sheets.
See all answers
 

Comparisons

Microsoft Defender for Endpoint vs CrowdStrike Falcon Logo
Microsoft Defender for Endpoint vs CrowdStrike Falcon
Compared 5% of the time
Kaspersky Endpoint Detection and Response vs CrowdStrike Falcon Logo
Kaspersky Endpoint Detection and Response vs CrowdStrike Falcon
Compared 3% of the time
Darktrace vs CrowdStrike Falcon Logo
Darktrace vs CrowdStrike Falcon
Compared 3% of the time
Wazuh vs CrowdStrike Falcon Logo
Wazuh vs CrowdStrike Falcon
Compared 3% of the time
Jamf Protect vs CrowdStrike Falcon Logo
Jamf Protect vs CrowdStrike Falcon
Compared 2% of the time
More CrowdStrike Falcon Competitors
Halcyon vs Morphisec Logo
Halcyon vs Morphisec
Compared 17% of the time
SentinelOne Singularity Complete vs Morphisec Logo
SentinelOne Singularity Complete vs Morphisec
Compared 12% of the time
Hyver vs Morphisec Logo
Hyver vs Morphisec
Compared 9% of the time
Tanium vs Morphisec Logo
Tanium vs Morphisec
Compared 7% of the time
Cisco Secure Endpoint vs Morphisec Logo
Cisco Secure Endpoint vs Morphisec
Compared 6% of the time
More Morphisec Competitors
Microsoft Defender for Endpoint vs Symantec Endpoint Security Logo
Microsoft Defender for Endpoint vs Symantec Endpoint Security
Compared 18% of the time
Trend Micro Deep Security vs Symantec Endpoint Security Logo
Trend Micro Deep Security vs Symantec Endpoint Security
Compared 8% of the time
Kaspersky Endpoint Security for Business vs Symantec Endpoint Security Logo
Kaspersky Endpoint Security for Business vs Symantec Endpoint Security
Compared 7% of the time
Bitdefender GravityZone EDR vs Symantec Endpoint Security Logo
Bitdefender GravityZone EDR vs Symantec Endpoint Security
Compared 5% of the time
Cortex XDR by Palo Alto Networks vs Symantec Endpoint Security Logo
Cortex XDR by Palo Alto Networks vs Symantec Endpoint Security
Compared 5% of the time
More Symantec Endpoint Security Competitors
 

Product Reports

Buyer's Guide
CrowdStrike Falcon
July 2025
CrowdStrike Falcon reportDownload CrowdStrike Falcon product report
Buyer's Guide
Morphisec
June 2025
Morphisec reportDownload Morphisec product report
Buyer's Guide
Symantec Endpoint Security
June 2025
Symantec Endpoint Security reportDownload Symantec Endpoint Security product report
 

Also Known As

CrowdStrike Falcon, CrowdStrike Falcon XDR, CrowdStrike Falcon Threat Intelligence, CrowdStrike Identity Protection, CrowdStrike Falcon Surface
Morphisec, Morphisec Moving Target Defense
Symantec EPP, Symantec Endpoint Protection (SEP)
 

Overview

CrowdStrike Falcon provides endpoint protection and threat intelligence using a cloud-based platform for real-time detection and response. Its minimal impact on system performance and ease of deployment are key benefits along with advanced logging and reporting for compliance and forensic analysis.

CrowdStrike Falcon is known for its efficacy in identifying malware, ransomware, and sophisticated cyber threats. The platform's cloud-native architecture and advanced AI capabilities ensure comprehensive endpoint visibility and rapid response times. Users appreciate the lightweight agent and seamless deployment process, along with detailed reporting features. Integration with security tools and efficient customer support are essential features.

What are the key features of CrowdStrike Falcon?

  • Real-time Threat Detection: Provides immediate threat identification and response.
  • Lightweight Agent: Minimal impact on system performance.
  • Cloud-native Architecture: Ensures flexibility and scalability.
  • Advanced AI Capabilities: Enhances threat detection and prevention.
  • Comprehensive Endpoint Visibility: Complete insight into endpoint activities.
  • Detailed Reporting: Facilitates compliance and forensic analysis.
  • Security Tool Integration: Seamless integration with other tools.
  • Efficient Customer Support: Robust support services.

What are the benefits or ROI of CrowdStrike Falcon?

  • Improved Threat Detection: Identifies sophisticated threats, reducing risk.
  • Enhanced System Performance: Lightweight agent ensures minimal disruption.
  • Faster Response Times: Swift reaction to incidents minimizes damage.
  • Better Compliance: Detailed logs meet regulatory requirements.
  • Streamlined Deployment: Easy to implement with minimal downtime.

In industries like finance, healthcare, and retail, CrowdStrike Falcon is often used for critical security due to its robust threat detection capabilities. Financial firms value its rapid response and detailed reporting for compliance, while healthcare providers appreciate the minimal system performance impact. Retailers benefit from its comprehensive endpoint visibility and integration with other security tools.

CrowdStrike

Morphisec integrates seamlessly with platforms like Microsoft Defender, offering signatureless protection against zero-day threats and ransomware. It enhances existing endpoint solutions with minimal maintenance through its set-and-forget deployment, providing heightened security and reduced false positives.

Morphisec strengthens defense strategies by merging memory morphing and signatureless protection to effectively block zero-day attacks and ransomware. It operates efficiently within existing infrastructure, reducing system impact and maintenance needs. Users find its full visibility dashboard invaluable. Despite its strengths, cloud deployment and reporting features can be improved. Stability, alerts, and integration with other systems pose challenges for users, impacting usability and support quality.

What are Morphisec's key features?

  • Seamless Integration: Works with Microsoft Defender for comprehensive dashboard visibility
  • Memory Morphing: Hides processes to reduce attack surfaces
  • Signatureless Protection: Prevents threats without impacting performance
  • Automatic Threat Blocking: Uses inbuilt intelligence to detect risks
  • Set-and-Forget Deployment: Simplifies management and reduces maintenance

What benefits should users consider in reviews?

  • Quick Deployment: Fast setup without disrupting operations
  • Enhanced Protection: Provides an additional defense layer against advanced threats
  • Cost-Effectiveness: Works with existing licenses, minimizing extra investments
  • Improved Compatibility: Integrates smoothly with current antivirus systems
  • Minimal System Impact: Operates efficiently without overloading resources

In security-focused industries, Morphisec is crucial for protecting workstations and servers against sophisticated attacks like ransomware. Its signatureless technology offers early threat detection, while compatibility with existing systems ensures seamless integration, providing advanced protection without additional licensing costs.

Morphisec

Symantec Endpoint Security is a robust and reliable product that provides complete protection against viruses, malware, Trojans, and malicious files. It offers application and device control, ease of use in deploying and updating, a central control console, stability, scalability, auto-discovery capabilities, patch management, endpoint detection and response capabilities, intrusion detection module. 

The Symantec Global Intelligence Network (GIN) provides threat intelligence and detection across endpoints, email, and web traffic. It has helped organizations reduce downtime, increase productivity, and improve security posture. Symantec Endpoint Security is easy to use, has a flexible administration, and offers more value than expected.

Broadcom
 

Sample Customers

Information Not Available
Lenovo/Motorola, TruGreen, Covenant Health, Citizens Medical Center
Audio Visual Dynamics, Red Deer Advocate, Asia Pacific Telecom Co. Ltd., Kibbutz Ein Gedi, and AMETEK, Inc.
Buyer's Guide
Endpoint Protection Platform (EPP)
July 2025
Download Free Report
Find out what your peers are saying about Microsoft, CrowdStrike, SentinelOne and others in Endpoint Protection Platform (EPP). Updated: July 2025.
DOWNLOAD NOW
862,077 professionals have used our research since 2012.