CrowdStrike Falcon Endpoint Protection
CrowdStrikeExternal reviews
361 reviews
from
and
External reviews are not included in the AWS star rating for the product.
It just works!
What do you like best about the product?
It's very easy to create and alter policies and apply them to different groups.
What do you dislike about the product?
I wish Reports were easier to navigate to.
What problems is the product solving and how is that benefiting you?
We needed an effective endpoint protection solution that was easy to implement and manage.
Recommendations to others considering the product:
So much easier to use than older on-prem products.
Top Product for Next Generation Antivirus and Malware Protection
What do you like best about the product?
The user interface allows you to truly understand what was detected and why it should be a cause for concern within your organization.
What do you dislike about the product?
The only dislike was that it did not have support for obsolete operating systems. like Windows XP.
What problems is the product solving and how is that benefiting you?
We use Falcon to protect all of our endpoints and servers from malware. It has an incredibly low false-positive rate and we spend a lot less time on alerts than with our previous enterprise AV product.
Recommendations to others considering the product:
We did a bakeoff against two other competitors and CrowdStrike was hands-down better than their closest challenger.
Fast to implement, Set & forget
What do you like best about the product?
It was very easy to setup, just took a couple days to roll out for about 1500 PCs
Once it was all set and configured, it stopped a lot of malware that wouldnt have been detected by traditional AV solutions
The support is awesome
Once it was all set and configured, it stopped a lot of malware that wouldnt have been detected by traditional AV solutions
The support is awesome
What do you dislike about the product?
So, far everything has been great. It has been a good experience only
What problems is the product solving and how is that benefiting you?
Nex Gen Endpoint protection has proved better than the traditional signature-based AV solutions. The EDR is very helpful too
Exceptional Endpoint Protection
What do you like best about the product?
There are multiple facets to this question. The agent is compact, but that does not diminish the capabilities it offers. The "cloud" aspect of the tool is not for everyone but it does provide huge benefits on data collection and correlation. The platform is neat and the ability to pivot from one section to another is easy. It is all in a single one stop shop. Organizations also have a range of talent; the console presents data in such a way that even junior security analysts can handle while giving deeper capabilities to senior analysts.
What do you dislike about the product?
I personally am not a fan of the nickel and diming aspect. New offerings get slotted into whole new tables which requires a new contract. Also bummed by the "secret sauce" mindset that CS employs. Behavioral detections, signatures, etc are all locked away behind very high level descriptions which prevents architects, engineers, and senior analysts to extend the product in areas where there may be gaps. The product stands its ground due its capabilities, there is no need to lock this knowledge away.
What problems is the product solving and how is that benefiting you?
Business need is next generation endpoint protection. We are clearly realizing where static signature detections are the way of the past. Using CrowdStrike we have solved a number of security needs out of the gate from new asset identification, vulnerability management, etc. We have also extended the capabilities for general IT usage around software inventory and basic device details.
Recommendations to others considering the product:
Consider a proper bake off of the product in your environment and make sure that it meets the business need. If you have the capability to extend out for more modules, they are worth their value and give administrators and users alike the information they need to be successful. There are a few short comings so be sure to make sure they are not deal breakers for your organization. Roll out was exceptionally easy, and upkeep is easy considering other products.
Simple yet very powerful
What do you like best about the product?
CrowdStrike Falcon: Endpoint Protection is a great tool that quickly and easily enables advanced A/V capabilities through it's Endpoint Detection and Response agent. The platform is great for everyone from new users, through using their native console, to advanced users, through using the Event Search, which allows the users to use Splunk queries to search through the raw logs collected by the agents.
What do you dislike about the product?
There is a bit of a learning curve to learn how to use the platform to threat hunt using the available logs. However, there is documentation from the vendor to get you started.
What problems is the product solving and how is that benefiting you?
CrowdStrike Falcon: Endpoint Protection enables us to distribute a lightweight, yet very powerful next generation AV solution. Aside from just detection and blocking malicious software, the Endpoint Protection also looks at the behavior occurring on the system and is able to detect and block malicious/suspicious activity.
Recommendations to others considering the product:
When looking to add CrowdStrike Falcon: Endpoint Protection to your security stack, evaluate how it can integrate and provide value to your existing security stack.
Endpoint Protection Platform Done Right
What do you like best about the product?
The Falcon sensor is super lightweight and very easy to deploy. No impact to the overall stability of the system. No signature to download or rely on as it detects malicous activiites based on Machine Learnings and bahvior
What do you dislike about the product?
Reporting and metrics needs to improve. Currently there is no way to email reports and metrics. Exploit detections are difficult to troubleshoot and investigate. No phone number to call support unless it's a Priority-1 ticket.
What problems is the product solving and how is that benefiting you?
Protecting endpoints and having real time visibility into endpoint activiites.
CrowdStrike Review
What do you like best about the product?
CrowdStrike does an efficient job with saving time while investigating detections. It provides useful information that would otherwise have to be manually collected. The incidents section of CrowdStrike also does great at providing a list of IOCs for machines. This helps streamline the process of investigations too since we don't have to manually put together the bits and pieces that may point towards a machine being compromised.
What do you dislike about the product?
CrowdStrike doesn't have a way to easily remove malware from the machine, instead it just has you blacklist the hash. You can use real time response and remove malware that way, but a simple button in the UI to do that would speed up the process. Additionally, there isn't an option to automate the detection rules for certain detections. For example, there may be a detection we chose to ignore, but don't want to block the process. The detection will keep triggering alerts.
What problems is the product solving and how is that benefiting you?
CrowdStrike helps prevent malicious software from being installed on machines. We also have used it to prevent non-standard software from being blocked. The benefits are mainly related to saving time while investigating any threats CrowdStrike uncovers.
great product and quite detailed insights
What do you like best about the product?
The UI is really easy to use and navigate. Best part of EDR is having maintained list of alerts and incidents. Navigation across each alert and incidents is easy to troubleshoot and triage.
What do you dislike about the product?
Quite detailed and in depth traces which are sometimes hard to understand for someone like me who is not that much into security but security experts would be quite delighted to get this details
What problems is the product solving and how is that benefiting you?
Alerting is quite comprehensive and detailed.
Graphs and step by step process breaking is easy to understand
Graphs and step by step process breaking is easy to understand
easy for us to find the false positive and true positive. My favourite feature is network contain.😊
What do you like best about the product?
The network contain options helps us a lot. The detection of NGAV was excellent.
What do you dislike about the product?
No dislike. I really loved this tool but I faced lots of false positive.The tools has detected the internal developed script as true positive. As we are big organisation we have face lot of false positives.
What problems is the product solving and how is that benefiting you?
The benefits is finding the malware in runtime.
Recommendations to others considering the product:
It’s a Next generation Malware detection tool
CrowdStrike Falcon: Endpoint Protection One of the best EDR out there
What do you like best about the product?
Easy to use the interface and the rapidity to find the information you want
What do you dislike about the product?
Nothing to dislike the product is very useful.
What problems is the product solving and how is that benefiting you?
Investigating cybersecurity alerts on hosts. the ability to rapidly pivot and see info in the entire environment
Recommendations to others considering the product:
CrowdStrike Falcon: Endpoint Protection is a complexe
showing 151 - 160