External reviews
External reviews are not included in the AWS star rating for the product.
CrowdStrike: The Best Endpoint Protection Suite I have ever used!
What do you like best about the product?
I love utilizing the process chart. It allows me to understand exactly what event occurred on a machine that was identified as suspicious. I do really like that training videos that are provided.
What do you dislike about the product?
I would say the thing I like the least is having to create exceptions for false positives. This is not strictly for this application and is something that usually has to be training into a software like this. The platform is really awesome and powerful but it is a little intimidating
What problems is the product solving and how is that benefiting you?
Issues with users infecting their machines by plugging devices into their company devices, advanced scanning and monitoring to be alerted of suspicious activity before it causes damage to the end user or the company.
- Leave a Comment |
- Mark review as helpful
CrowdStrike Review
What do you like best about the product?
CrowdStrike does an efficient job with saving time while investigating detections. It provides useful information that would otherwise have to be manually collected. The incidents section of CrowdStrike also does great at providing a list of IOCs for machines. This helps streamline the process of investigations too since we don't have to manually put together the bits and pieces that may point towards a machine being compromised.
What do you dislike about the product?
CrowdStrike doesn't have a way to easily remove malware from the machine, instead it just has you blacklist the hash. You can use real time response and remove malware that way, but a simple button in the UI to do that would speed up the process. Additionally, there isn't an option to automate the detection rules for certain detections. For example, there may be a detection we chose to ignore, but don't want to block the process. The detection will keep triggering alerts.
What problems is the product solving and how is that benefiting you?
CrowdStrike helps prevent malicious software from being installed on machines. We also have used it to prevent non-standard software from being blocked. The benefits are mainly related to saving time while investigating any threats CrowdStrike uncovers.
great product and quite detailed insights
What do you like best about the product?
The UI is really easy to use and navigate. Best part of EDR is having maintained list of alerts and incidents. Navigation across each alert and incidents is easy to troubleshoot and triage.
What do you dislike about the product?
Quite detailed and in depth traces which are sometimes hard to understand for someone like me who is not that much into security but security experts would be quite delighted to get this details
What problems is the product solving and how is that benefiting you?
Alerting is quite comprehensive and detailed.
Graphs and step by step process breaking is easy to understand
Graphs and step by step process breaking is easy to understand
Must have for Enterprise. A phenomenal Tool with great addition of Machine Learning capabilities.
What do you like best about the product?
Best part of Falcon Crowdstrike is to detect the potential Malicious activities attributing with Mitre Att&ck framework which covers upto date adversaries Tactics, Techniques and Procedures. Capability to analyze a malware wit Machine Learning Sensor is a great addon feature. Threat Hunting feature to detect the undetected threats in the network excites me as an analyst. Great Learning.Support like Overwatch & TAC made this Crowdstrike a Numer Uno EDR in the industry.
What do you dislike about the product?
Personally i felt there is nothing much to dislike about Crowdstrike . UI Could have been better. We have rarely found few misconfigurations during weekends and but it got fixed immediately with a request to Crowdstrike.
What problems is the product solving and how is that benefiting you?
We were able to detect every malicious activity from sophisticated threat actors with this EDR. Very feasible for event based Hunting and TTP Based Hunting. It has completely resolved the problem of maintaining a Separate AV, Threat Intel and EDR platforms as Crowd strike itself is a Threat Intelligence Platform , AV & EDR.
Recommendations to others considering the product:
It gets my strong recommendation to every enterprise which is looking for securing against every malicious activity .It has great features , ease of use, phenomenal support from Crowdstrike like Overwatch , TAC . Crowdstrike is capable of Catching a small keylogger program to ransomwares . The ability to detect and prevent the malicious code durting the time of execution what makes the product worth implementing in the enterprise.
EDR at it's best
What do you like best about the product?
The assistance for performing real-time response, documentation, crowdstrike support.
What do you dislike about the product?
User management within child CIDs needs to be improved.
What problems is the product solving and how is that benefiting you?
managed Endpoint detection and response, real-time response, threat intelligence are the good features I saw.
Recommendations to others considering the product:
Crowdstrike was feature in the Gartner's quadrant and definitely a worthy product.
I have never seen this high level protection with almost no impact on system performance.
What do you like best about the product?
We are getting all the protection with detailed EDR report with zero performance impact on endpoint.
What do you dislike about the product?
Little bit costly as compared to other security companies
What problems is the product solving and how is that benefiting you?
Zero day protection...CS also catches malware, virus which are completely new and could not catch by legacy AV.
easy for us to find the false positive and true positive. My favourite feature is network contain.😊
What do you like best about the product?
The network contain options helps us a lot. The detection of NGAV was excellent.
What do you dislike about the product?
No dislike. I really loved this tool but I faced lots of false positive.The tools has detected the internal developed script as true positive. As we are big organisation we have face lot of false positives.
What problems is the product solving and how is that benefiting you?
The benefits is finding the malware in runtime.
Recommendations to others considering the product:
It’s a Next generation Malware detection tool
CrowdStrike Falcon: Endpoint Protection One of the best EDR out there
What do you like best about the product?
Easy to use the interface and the rapidity to find the information you want
What do you dislike about the product?
Nothing to dislike the product is very useful.
What problems is the product solving and how is that benefiting you?
Investigating cybersecurity alerts on hosts. the ability to rapidly pivot and see info in the entire environment
Recommendations to others considering the product:
CrowdStrike Falcon: Endpoint Protection is a complexe
Cyber Security Manager
What do you like best about the product?
TTP updates and correlation with latest threat IOC's
What do you dislike about the product?
I think look and feel i.e GUI could be more than current one
What problems is the product solving and how is that benefiting you?
Helping in detection of all endpoint threats based on the TTP
CrowdStrike has solved our problems
What do you like best about the product?
CrowdStrike monitoring is most helpful feature.
What do you dislike about the product?
Reporting is not the strong side of the tool.
What problems is the product solving and how is that benefiting you?
Endpoint solution in remote environment is working like a jam for us.
Recommendations to others considering the product:
Great product with great support team.
showing 231 - 240