External reviews
External reviews are not included in the AWS star rating for the product.
A very light sensor to protect your Endpoint
What do you like best about the product?
I like Crowdstrike because it is very light on the systems and doesn't consume too much CPU compared to other solutions, which protects your endpoint without affecting the system's efficiency. I also love the RTR feature that helps a Security admin take necessary actions when required from the backend.
What do you dislike about the product?
What I dislike about Crowdstrike is writing query to generate a report and feel few such reports can be generated using UI for people not good at query
What problems is the product solving and how is that benefiting you?
The best part about Crowdstrike is its ability to stop the potentially risky execution of files by using behavioural analysis. For us Crowdstrike is saviour from all kind of malicious activity that can hamper the environment
- Leave a Comment |
- Mark review as helpful
A lightweight endpoint protection tool with instant threat mitigation
What do you like best about the product?
It is a robust cloud-based endpoint protection tool that offers excellent features and protects our data from unknown threats. It is a lightweight endpoint security tool that doesn't affect the endpoint performance and smoothly runs in the background process. It provides real-time protection and takes instant action on unidentified malware mitigation. Overall, It is a trusted and intuitive solution for our organization that helps to share and access data with zero vulnerability.
What do you dislike about the product?
The user interface is tricky, and challenging to understand all the inbuilt features. I think UI can be better, which helps in a seamless navigation experience.
What problems is the product solving and how is that benefiting you?
First, It doesn't affect the endpoint devices' performance, and it is a cloud service that can efficiently operate in low configured endpoint devices. It saves our cost on highly configured devices and delivers 100% protection from all unknown threats.
Crowd strike Complete-Falcon best enterprise endpoint solution across world
What do you like best about the product?
MDM Integration and support in all platforms like Win, MAC and Linux. Global SaaS platform. Next-Gen Protection.
What do you dislike about the product?
When installed in the lower configuration of laptops, laptops become slower.
What problems is the product solving and how is that benefiting you?
MDM Integration, Next-Gen Protection, Integrated Threat Intelligence etc.
Good at blocking detections and activity but needs to improve on many features.
What do you like best about the product?
It has lots of useful features like USB blocking/logging, logging process, logs network connections/DNS requests, command line activity, and scheduled tasks. Real-Time Response is my favorite, I have used many Powershell scripts with this feature.
What do you dislike about the product?
When looking at an incident, it only shows a process tree related to the incident. In order to view the whole panorama of what was going on you need to navigate to Investigate host, which consumes more time and is slow to load. Compare that to Cisco AMP4E and they automatically give you a whole timeline of all the running processes around the time of the incident. It comes down to a 1-hour investigation vs 20 minutes compared to AMP4E.
If they could log all the processes and files on the incident page, a button that gets/quarantines the file would be useful.
Something else that needs work is the quarantine and sandbox. I see a whole list of sandbox failure logs even when manually uploaded. Generaly speaking it is very good at detecting and blocking activity but I don't understand why most files do not get quarantined. We have tuned the policies and still need to constantly do manual cleanup on the infected hosts.
If they could log all the processes and files on the incident page, a button that gets/quarantines the file would be useful.
Something else that needs work is the quarantine and sandbox. I see a whole list of sandbox failure logs even when manually uploaded. Generaly speaking it is very good at detecting and blocking activity but I don't understand why most files do not get quarantined. We have tuned the policies and still need to constantly do manual cleanup on the infected hosts.
What problems is the product solving and how is that benefiting you?
Endpoint protection. We are using Real-Time Response via the API to install other software remotely using powershell scripts.
The product provides excellent protection.
What do you like best about the product?
The av mechanism of this cloud delivered endpoint protection platform is what got me to explore this product. It provides next gen protection with its advanced protection setting.
What do you dislike about the product?
There are not much that i would say are disliking feature of this endpoint protection product. the edr could use some work as it takes time to get the logs updated.
What problems is the product solving and how is that benefiting you?
It is helping us in maintaining our company's security by detecting any malwares that have penetrated the user system. Also its feature of quarantine allows us to examine the malware and take further action to safeguard our internal network.
Malware Killer
What do you like best about the product?
Falcon Console is user friendly and it has very powerful AI & ML detection methods.
It is very accurate detection merhods.
It is very accurate detection merhods.
What do you dislike about the product?
As such no dislikes but support portal do not show tickets opened by Admin
What problems is the product solving and how is that benefiting you?
It has addressed Certificate pinning issue so it is helping to reduce non reporting & older sensors
Best Next Gen EDR with Powerful Threat Intel and Remediation
What do you like best about the product?
The User interface and the threat modelling and the detection techniques are very good compared to the competitors within the market. Threat remediation and automation/playbooks is finest.
What do you dislike about the product?
a bit of complex integration with the other products in the market. Like SIEM and other analytics tools. Reporting should be developed much more to give meaningful insights.
What problems is the product solving and how is that benefiting you?
It is protecting our endpoints against the latest and complex threats in the cyber space. Threat remediation is being easily handled via playbooks/isolation controls.
All rounder EDR with good support
What do you like best about the product?
Falcon records a great detail of events and in case of a detection or investigating a process activity, the host search comes in super handy with classification of events.
What do you dislike about the product?
Being a cloud instance it's a bit slow to load results for my environment. For example if I'm looking for hosts with a particular application installed, it does take a few minutes or even more (depending upon the total count of assets, in the example I described the count was over 100k)
What problems is the product solving and how is that benefiting you?
Crowdstrike does provide instant support whenever a support case is raised. Sometimes it takes more than a few back and forths, however I've realized they always do respond very quickly.
Fabulous EDR Tool
What do you like best about the product?
Crowdstrike Falcon was the best EDR tool we'd use in our company. So far it was really easy to understand and use. All the monthly reports were generated pretty well and the results were always accurate. We mainly used it for generating various spotlight reports as well for using dashboards were shared accross different BU's. By far this was simplest tool.
What do you dislike about the product?
There was nothing to dislike. But major demerit was after the recent UI changes we found it little difficult to use instead of older UI. Rest all is good.
What problems is the product solving and how is that benefiting you?
As i mentioned our main priority was for generating vulnerability reports, as well as for using dashboard. Our need was fully sastisfied.
Amazing EDR Tool With Best Functionality
What do you like best about the product?
Crowdstrike Falcon is one of the best EDR tools currently in market. It offers best in class functionalities like ODS, Threat Intelligence, Discovery, Spotlight Reports etc.
What do you dislike about the product?
I couldn't find any points for which i would dislike this tool. So my answer would be NA
What problems is the product solving and how is that benefiting you?
EDR is our primary purpose for this tool. Host management has become very much easier. For fetching apps installed over endpoint and for finding systems which are behind on patches even we use this tool.
showing 51 - 60