External reviews
External reviews are not included in the AWS star rating for the product.
Crowdstrike is the Best NextGen Endpoint Protection
What do you like best about the product?
Crowdstrike is the best endpoint solution to stop breaches. It uses the IOA (Indicators of Attack) to detect an attack. An it is the very light weighted endpoint protection that I have seen when comparing with other products.
What do you dislike about the product?
There are no any dislike to me whe it comes to Crowdstrike all the features and the technology it has are very much liked.
What problems is the product solving and how is that benefiting you?
Ransomware is the major problem we faces. Crowdstrike helps to be prevented by all types of ransomware attack. Still no any ransomware attacks are happened when Crowdstrike NextGen endpoint is used.
Recommendations to others considering the product:
If your choosing crowdstrike you dont need to worry about breaches. You will be protected.
- Leave a Comment |
- Mark review as helpful
Product is very good ... but interface is bit old
What do you like best about the product?
Perfect is all manner other then support and sales team
What do you dislike about the product?
Support & sales teams are not that supportive and response
What problems is the product solving and how is that benefiting you?
Software it self is pretty much mature and works perfect performance wise
It's a great tool with detailed logs and good detection capabilities
What do you like best about the product?
EDR is the best it's great capability of alert mechanism
What do you dislike about the product?
Sometimes , Crowdstrike does not give a detailed report on registry changes
What problems is the product solving and how is that benefiting you?
All malware are safely terminated
Crowdstrike Falcon - A lightweight agent with superb EDR capabilities and easy management
What do you like best about the product?
The agent is extremely lightweight and it never takes huge resources on the system. Management is extremely easy with easy dashboard. The alerts are extremely well detailed, so any L2 system administrator can understand them and take appropriate actions starting from marking them as malicious or false positive, quarantining the alert to network containing the host. If you are still on conventional AV, switch to Crowdstrike EDR for the best secured experience. It is also one of the leaders in Gartner magic quadrant.
What do you dislike about the product?
The threat advisory part is a little hard to understand for the L2 administrators. So it can be simplified into different attacks and their hashes and ioc which can be blocked easily across the organisation. Its again not a part to dislike but still something which can be improved or modified based on my personal choice.
What problems is the product solving and how is that benefiting you?
Endpoint and host security real time device level log analysis and threat behaviour with seamless machine learning analysis. These capabilities lacked in a conventional antivirus product which was entirely dependent on virus definition signature. With crowdstrike edr, each amd every system event is being analyzed which prevents in the origin of a malicious event.
Recommendations to others considering the product:
Switch to Crowdstrike edr for seamless security and event monitoring. It is a single pane of glass to manage host security instead of depending on a range of products like threat prevention, web filter, firewall etc. which takes up unnecessary resources on system.
Great Tool for Endpoint Protection
What do you like best about the product?
How efficiently and effectively it captures the process details and changes made in the endpoint. It captures detctions and co-relate them though time and presents the detection and a very details graph as well as provides details process tree. Also it is really easy and simple to deploy through out the network. Writing custom rules and blacklisting and whitelisting is fairly simple as well.. It proivdes great protection from zero-day attacks as well as know APT groups. Integration with log collection tools like SIEM & UEBA tools is fairly simple and effective. The Overwatch detection functionality support is also a gem.
What do you dislike about the product?
The crowdstrike console looks a bit congested. A lot of information is put on a single screen. Another reason for someone to opt for other EDR solution would be the price, Crowdstrike as a solution is little bit on the expensive side
What problems is the product solving and how is that benefiting you?
We are utilizing EDR for real-time detections and protections. Also we are utilizing for threat management, zero-day covergae. Also it also help in Asset Management. Threat Hunting can also be performed very effectively using Crowdstrike.
Recommendations to others considering the product:
If we are looking for andy EDR solution, crowdstrike should defenitely be an option because it can not only be an EDR piece but can remove the requirement for a seperate AV solution all together. The Threat detection and the Thret Hunting module really adds up a lot value to the overall security controls in the environment.
The next gen cloud based AV that works
What do you like best about the product?
We have been pleased with the capabilities of the product as well as the ease of installation of the agents that does not require a reboot affecting production. Support has been great and the analytics from the product provides great insights. Policies and groups are easily managed. The control and insights you get from your endpoint is great! The sandboxing feature is also a favorite feature to talk about. The ability to hunt, search, and monitor malware as well as tracing the instrusion makes this product stand out alot. Since Crowdstrike analyzes and stops similar threats from all customer's devices, it builds a big repository to harden security and prevention. The graphs and charts makes it easy to understand and to see where the trends are for Indicators of Attacks.
What do you dislike about the product?
All the modules are not free and that's understandable. Each module does a specific task and requirement based on your needs.
What problems is the product solving and how is that benefiting you?
CrowdStrike Falcon Endpoint Protection helped us gain better visibility in our network and helps us with the intrusion through the ML prevention methods and expert review of our metadata for recommendations of prevention. The sandboxing capability as well as the malware hunt is great.
Recommendations to others considering the product:
Ask for a demo and test it out to see if it's suitable for your environment.
About Crowdstrike
What do you like best about the product?
Its a very secure and advanced technology to protect system in all threating like malware protection, can work as an AV, even system got non compliance it can block network also to prevent unauthorised access which os very good
What do you dislike about the product?
Sometimes its got more challenging to work on web as its blocks many websites to access
What problems is the product solving and how is that benefiting you?
If system not updated properly it will block network which is good even ot can work as AV, DLP endpoint with latest cloud based through a single lightweight agent
Best NextGen Antivirus I used
What do you like best about the product?
Install and forget about it. 90% of the tasks prevent anything malicious. Hats off to the developers on studying the patterns and implementing such machine learning algorithms.
What do you dislike about the product?
With CrowdStrike I don't have the ability to scan the system on demand.
What problems is the product solving and how is that benefiting you?
Prevention even before the Virus enters the system.
Mandatory solution to monitor and protect endpoints.
What do you like best about the product?
Amazing detection, easy to use interface and timely support.
What do you dislike about the product?
Sometimes the web portal searches are slow. Also no native support for multitenancy.
What problems is the product solving and how is that benefiting you?
Endpoint protection is quite a challenging task as the malware can reside for years once it bypasses perimeter level protection. Crowdstrike helps doscover and detect abnormalities for corrective action.
A great AV for small and large businesses alike
What do you like best about the product?
For our purposes since we do not have a NOC team, I like the relatively hands-off approach you can take with this. It does require an initial setup, and as the central Falcon page updates with more features, and/or if your configuration of Crowdstrike's recommended settings doesn't match what you have set, they'll send you emails about what to turn on and off, or raise or lower how aggressive the AV is acting or reporting. They'll even call you and remote share your screen so they can give you tips about the UI and what to look for. There is some self-management involved; you need to be able to make sure your sensors are up to date and keep an eye out for malicious activity, and if you have EDR, investigate the root cause.
What do you dislike about the product?
I dislike the UI to be honest. I think navigating to some of the pages isn't intuitive and needs to be cleaner and easier to get to. There are some elements that make little sense as far as where you need to go to look up a certain report, and when they told me I needed to go to Legacy dashboards to find something they wanted me to frequent, I thought that was odd. Also, it has a dark theme but it only works on the main page--once you start going into sub-navigation it returns white.
What problems is the product solving and how is that benefiting you?
we're solving the problem of not having to be too hands on with making sure agents are up to date (not having to worry about signature updates failing on a lot of computers, for example). Sometimes agent sensors don't update properly but there is a good report for seeing which ones haven't updated and rectifying it is easy. The benefit is it gives us a better sense of security so we can focus on other tasks without having to invest too much time into micromanaging devices.
showing 181 - 190