CrowdStrike Falcon Reviews

CrowdStrike is an anti-virus solution, and we use it to protect our users from malware.

This solution has made the lives of the IT staff much easier, compared to the previous one. This is the lightest client available that is compatible with different versions of the OS.

The most valuable feature is that our systems are monitored and we are alerted to any unusual behavior.

I would like to see the machine learning feature enhanced.

So far, the solution has been stable. It did not clash with any other product that we have. Also, it is very light, and the users do not have the impression that anything is slowing down their system.

This is simply a client that you have to roll out, so it is fully scalable.

All of the people in our company use this solution.

Technical support for this solution is good.

We did use another solution previously, but technologies keep changing. We found that CrowdStrike meets our requirements.

Our implementation was straightforward, and it was completed within one week.

The first step was to uninstall the old anti-virus solution, and then the CrowdStrike protection was enabled. There was a brief period where both of the solutions were running at the same time.

The implementation was handled by the consultants from CrowdStrike. Everything was done by their staff, from their end and according to their recommendation. The consultants and their service were excellent.

This solution has a very competitive price.

We evaluated solutions by TrendMicro, Kaspersky, Carbon Black, and SentinelOne.

My advice for anybody implementing this solution is to understand the requirements. Look at their vision, and understand how the technology is changing in the market in order to meet the threat of cyber attack. They need to follow the latest standards.

I would rate this solution a ten out of ten.

We are currently using this solution as an ERD tool to control and remediate threat from the endpoint remotely, it serves as a next-gen antivirus solution. It can also be used in a forensic investigation, threat hunting, trend analysis, malware analysis, etc.

• CrowdStrike is a SaaS-based solution which means it can be operated from anywhere, which gives the admins access to control the endpoints from multiple endpoints.
• It has a very low footprint, using 1-2 % CPU and around 40 Mb of RAM, and the agent size is small and easy to deploy as well.
• It has segregation of roles at various levels for the analysts, admins, SMEs, etc.

• It can connect to host and isolate it from the network if needed; this feature helps us to investigate the endpoint without visiting the endpoint and then testing. 
• It saves time and helps to contain the threat in less time.
• complete visibility into the endpoint 

The current version of Falcon does not support DLP which is a may be a good to have in a EDR Solution. It must be included in the future version if possible. There must be a on-premise versions. MDM is also coming soon must also have ability to be controled from same dashboard.

The solution is pretty stable, and it does pretty accurate work. I have never encountered any issue in this dept.

The solution is scalable to multiple thousands of systems at once. There is no restriction for that.

The support portal of CrowdStrike is active and helpful if needed.

We compared multiple solutions in EDR and out of them, CrowdStrike gave the most features and value for money.

It is pretty straightforward and without any complex mechanism.

We as a team implemented the solution on our own, with the help of the manual and help desk.

It helps to manage a lot of threats with pretty less manpower and in a graceful way.

The setup of CrowdStrike is very simple. It supports all three platforms (Windows, MacOS, Linux), and it has support for the specific version of the above OS. Which means sometimes, a particular OS won't be compatible with the CrowdStrike version.

Before choosing the solution, we evaluated various products from the Gartner magic quadrant for endpoint protection platforms (EDR and MDR).

It comes with various modules, so you can choose the module that you need on the basis of the costing it comes with. This is definitely not cheap; it comes with a cost which may depend on the organization if they need it.

The primary use case is detection and forensics.

The product is cloud-based, so we use the latest build which is available.

We are now able to find the root cause analysis on any threat. We can figure out where the issue came in versus just dealing with where it is at the moment.

The most valuable feature is its forensics capability.

It probably needs more integration with firewall vendors. 

It needs integration with other technologies. It doesn't play well with anything else. It is more of a standalone solution. Therefore, integration with other technologies would be great.

It is extremely stable. It has been around for many years. We have been a customer for almost five years.

It has met every scale need that we have come across.

The technical support is excellent. Though, as the company has grown, the technical support has felt less personal.

Our previous detection software, Webroot, was letting too much stuff through.

The initial setup is very straightforward. It just required an agent being installed. After that, it was self-managing.

We did the deployment directly with the vendor.

The solution has helped to increase staff productivity by probably 25 percent.

We are at about $60,000 per year.

We also looked at Cylance and SentinelOne. We went with CrowdStrike based on our own experimentation with it. We threw our own vulnerabilities at it, and it performed the best.

It does everything that it claims, making our life significantly easier. Definitely consider CrowdStrike. It will probably save you from a lot of threats that other products wouldn't catch.

Our security program is relatively immature, but this product has definitely been one of the keystones of our program.

Our primary use case is as an endpoint protection service. 

We get a notification when there are some malicious activities on our PC whenever we have a detection. The other administrator and I can log in to check the exact details of what happened, what was running, and what caused the detection. We know exactly what was happening on the end user's PC and we can tell if it's something that we actually need or something that's malicious.

When something is detected you can log into the GUI and you can get very specific details about what happened. It's very helpful for investigating incidents and this sort of thing.

The GUI can use improvement, it's cloud-based so sometimes the interface can be a bit slow. The interface could use a little bit more speed. 

When I change the policies for some users, I would like to have an option to apply that policy immediately. Right now, I have to wait for the users to connect to the cloud to take the new policy. I would like for them to develop the ability to have an option to apply the post the policy immediately.

It's very stable, we haven't had any issues so far.

We haven't had any issues when it comes to scalability. We have thirty to forty users.

We haven't had to use their technical support. 

The initial setup was very straightforward. You just download the agent and install it; that's it. The deployment took two to three hours. We have two admins. One of us logs in and sees what happened.

I would advise someone considering this solution to just read the documentation. You should start with the documentation, it's very clear and very simple. Anything you need is in the documentation.

I would rate it a nine out of ten. 

We use it for threat management.

We are now able to pick up more alerts than we were with McAfee. A lot of things were being missed by our security team using McAfee. 

We are happier with CloudStrike's ease of use and touch notification than McAfee's.

I noticed that the performance hits on our operating systems are a more minimal than they were on McAfee.

We have had to open a case with the technical support to get some issues and bugs resolved, but they were resolved relatively quickly.

The scalability has been good so far. We have been using it on-premise and on the cloud. We can move it to a different cloud platform, because it is cloud agnostic.

We just moved over from McAfee to CrowdStrike, which detected a lot of things that McAfee did not. We detected a malicious code on our on-premise system, even though we are migrating our application to the cloud. It was able to detect it right away to send us what the code had tried change and execute. 

Our company decided to make the switch between the two products, and I have seen the value-add since then.

It was pretty easy to set up. We baked it into our subscripts during the start-up process.

Its integration has been pretty seamless.

I would anyone to look at this product based on our company's experience so far.

We have both the on-premise and AWS versions of the product.

It's security-related product. A security environment based on AIML. It is not like the older stuff, which used to have signature-based updates.

It has helped us with security and managing threats that we see currently in our environment.

Because it is security product and acts like an AIML smart product, not merely based on daily/weekly updates and signatures.

Unfortunately, native applications are not supported.

It manages around a few thousand endpoints and servers in our environment, and it is doing well so far.

There are no issues in terms of scalability. 

We can call the tech support, if needed. Then, they have a dedicated rep for us.

It went well. We just installed an app on all the endpoints or devices. They have a good console which helps do this. So, it is as simple as that.

We are using this for endpoint security, so it doesn't need to integrate with anything else.

We evaluated three to four other vendors.

During the PoC, we figured out that this product is far better, and it met our requirements. That is why we went for CrowdStrike. With our PoC, they did a good job in explaining the product. So, the PoC went well, and we were able to achieve what we intended to with it.

Do a thorough PoC. Don't go ever go by the sales team unless you have tested it and know it works for your environment, because every environment is unique. The sales guy will promise you the moon. Only unless you have tested, you know it delivers.

The product has met its purpose for us.

We use both the on-premise and AWS versions. They are both good products and very simple to move, install, and configure.

It logs automatically and generates alerts. It is all automatically integrated with the cloud.

CrowdStrike will detect any malicious malware attack on the machine. It will end the attack, and immediately alert us to the issue. I would say it catches the attacks 99% of the time.

I think the automatic alert feature is the most important feature. 

The management  and log aggregation need some improvement. We have had some issues with the logs. 

It is stable.

It is a scalable solution.

The setup was very straightforward. We just had to install it. We did not have to do the dependencies. 

I do not have experience with the cost or licensing of the product.

The primary use case is threat protection.

It improves a lot of our security operations for threat management. It provides a lot for our day-to-day operations too.

The most valuable feature is its threat analysis.

I would like CrowdStrike to provide some correlation in the threat analysis, so we can visualize things better.

It is quite stable. However, whenever there is a feature release (upgrade) where we push to all the endpoints, it causes something to be blocked without us knowing.

We have not put that much stress on it, about 20 percent.

Scalability is good. We have had no issues with it.

Currently, we have about 4800 resources in the cloud.

Their technical support is good and helpful.

The AWS integration is good, and its configuration is straightforward.

We have seen ROI.

Purchasing the product through the AWS Marketplace is just a click away. Since we were using the on-premise version of the product, we continued on the cloud by purchasing it through the AWS Marketplace.

I would like them to further reduce the price, because it is quite pricey at the moment.

I would recommend CrowdStrike as a first option product, but to look at others as well.

The new features that they have released were not bad.

AWS is better than the on-premise version because it can support cloud resources.