External reviews
External reviews are not included in the AWS star rating for the product.
CrowdStrike Falcon Endpoint Protection Platform Review
What do you like best about the product?
CrowdStrike Falcon for Endpoint is a potent cybersecurity tool that improves endpoint security for businesses by providing real-time visibility and reaction, advanced threat information, a lightweight agent, preventative security measures, and professional managed threat hunting services.
What do you dislike about the product?
Some users have noted that CrowdStrike Falcon Endpoint Protection might be resource-intensive on the endpoint, which may cause system slow performance problems. Additionally, some users have remarked that it is needed to have extensive training on this platform to fully utilized it and familiarity on configuration if need. As with any cybersecurity solution, it's critical to take into account these factors and carry out extensive testing to ascertain whether the product is compatible with the needs and resources of your firm.
What problems is the product solving and how is that benefiting you?
First it offers a real-time visibility to our endpoints and knowing the current status of devices by this, it allows us cyber security analyst to check if there is existing threat present on devices. It has also customizable dashboard which we can optimized base on the requirement of our operations team.
- Leave a Comment |
- Mark review as helpful
Criwdstrike Falcon review
What do you like best about the product?
It has a very good UI and has support for different modules wuthin the same platform. The best part is enrolling the mobile devices is way simpler, just importing the email addresses and falcon mobile will be deployed.
What do you dislike about the product?
Crowdstrike sensor for non-domain machines should be enhanced as sensor sometimes doesnt detect the important details of the device.
What problems is the product solving and how is that benefiting you?
It is helping us manage our mobile devices efficiently. We can optimize the mobile policies in the console itself which is easier compared to other EDR platforms.
Crowd strike falcon review
What do you like best about the product?
The crowdstrike is very proactive in its detections and as it is highly structured with Machine learning and artificial intelligence,it has high detection rate compared to regular endpoint security solutions
What do you dislike about the product?
I don't think there is much to dislike in crowd strike,I have found it very useful so far but little problem with falcon ML detection related fps
What problems is the product solving and how is that benefiting you?
We are actively monitoring our infrastructure with crowd strike and it is easy to contain machines and separate them from network, the behavioural based detections are top notch.
Crowdstike Falcon: EDR and Threat Detector
What do you like best about the product?
Crowdstike is a next generation cloud based end point protection platform and a market leader in the cyber security space which secures end points in a variety of ways by providing end point detection and response services, anti-virus, threat detection that helps SOC teams to detect, investigate and respond sooner before any malicious artefacts becomes wide spread.
CS Falcon does not scan your endpoints, data, emails or websites like other AV solutions in the market, it analyzes the behaviors which should suffice the requirement however there are options to initiate manual scans for reporting and audit purposes.
One other thing about Crowdstrike Falcon is it's a light weight agent which can autouograde it self with out needing manual intervention.
CS Falcon does not scan your endpoints, data, emails or websites like other AV solutions in the market, it analyzes the behaviors which should suffice the requirement however there are options to initiate manual scans for reporting and audit purposes.
One other thing about Crowdstrike Falcon is it's a light weight agent which can autouograde it self with out needing manual intervention.
What do you dislike about the product?
Crowdstrike is expensive, technical support should be improved, adding any AV exclusions on the CS side cannot be easily verifyable from the endpoints and event logging on the endpoints is also limited unless one has console level access.
What problems is the product solving and how is that benefiting you?
In our environment we have a SOC operations team that heavily relies on Crowdstike for cyber security monitoring and incident response which other players in the market are not able to provide at the level with which Crowdstrike operates.
the best AV - next gen
What do you like best about the product?
light weight agent, less number of false positive
What do you dislike about the product?
Process of removing duplicates could be better
What problems is the product solving and how is that benefiting you?
The EDR solution of Crowdstrike is best in the market as per me, The sandboxing and threat analysis feature reduce lot of effort for the administrators.
Crowd strike Threat Intel and other tools
What do you like best about the product?
It's dashboard and seemless performance accross diffrent operating units is the one which make it unique.
I do triage and used this product frequently in our infra and it gives much better view inside ...
Thanks team for the support...
I do triage and used this product frequently in our infra and it gives much better view inside ...
Thanks team for the support...
What do you dislike about the product?
It's version update glitch with end point software some how make more noise when there is something alredy covered in previous version let's say big fixed ...but in upcoming version those bugs pop up again .
What problems is the product solving and how is that benefiting you?
It's give superior quality and control in single dashboard.
We can review and take action on same time and it's very easy to triage different things .even multiple angles of thinking we could do .
We can review and take action on same time and it's very easy to triage different things .even multiple angles of thinking we could do .
A very light sensor to protect your Endpoint
What do you like best about the product?
I like Crowdstrike because it is very light on the systems and doesn't consume too much CPU compared to other solutions, which protects your endpoint without affecting the system's efficiency. I also love the RTR feature that helps a Security admin take necessary actions when required from the backend.
What do you dislike about the product?
What I dislike about Crowdstrike is writing query to generate a report and feel few such reports can be generated using UI for people not good at query
What problems is the product solving and how is that benefiting you?
The best part about Crowdstrike is its ability to stop the potentially risky execution of files by using behavioural analysis. For us Crowdstrike is saviour from all kind of malicious activity that can hamper the environment
A lightweight endpoint protection tool with instant threat mitigation
What do you like best about the product?
It is a robust cloud-based endpoint protection tool that offers excellent features and protects our data from unknown threats. It is a lightweight endpoint security tool that doesn't affect the endpoint performance and smoothly runs in the background process. It provides real-time protection and takes instant action on unidentified malware mitigation. Overall, It is a trusted and intuitive solution for our organization that helps to share and access data with zero vulnerability.
What do you dislike about the product?
The user interface is tricky, and challenging to understand all the inbuilt features. I think UI can be better, which helps in a seamless navigation experience.
What problems is the product solving and how is that benefiting you?
First, It doesn't affect the endpoint devices' performance, and it is a cloud service that can efficiently operate in low configured endpoint devices. It saves our cost on highly configured devices and delivers 100% protection from all unknown threats.
Crowd strike Complete-Falcon best enterprise endpoint solution across world
What do you like best about the product?
MDM Integration and support in all platforms like Win, MAC and Linux. Global SaaS platform. Next-Gen Protection.
What do you dislike about the product?
When installed in the lower configuration of laptops, laptops become slower.
What problems is the product solving and how is that benefiting you?
MDM Integration, Next-Gen Protection, Integrated Threat Intelligence etc.
Good at blocking detections and activity but needs to improve on many features.
What do you like best about the product?
It has lots of useful features like USB blocking/logging, logging process, logs network connections/DNS requests, command line activity, and scheduled tasks. Real-Time Response is my favorite, I have used many Powershell scripts with this feature.
What do you dislike about the product?
When looking at an incident, it only shows a process tree related to the incident. In order to view the whole panorama of what was going on you need to navigate to Investigate host, which consumes more time and is slow to load. Compare that to Cisco AMP4E and they automatically give you a whole timeline of all the running processes around the time of the incident. It comes down to a 1-hour investigation vs 20 minutes compared to AMP4E.
If they could log all the processes and files on the incident page, a button that gets/quarantines the file would be useful.
Something else that needs work is the quarantine and sandbox. I see a whole list of sandbox failure logs even when manually uploaded. Generaly speaking it is very good at detecting and blocking activity but I don't understand why most files do not get quarantined. We have tuned the policies and still need to constantly do manual cleanup on the infected hosts.
If they could log all the processes and files on the incident page, a button that gets/quarantines the file would be useful.
Something else that needs work is the quarantine and sandbox. I see a whole list of sandbox failure logs even when manually uploaded. Generaly speaking it is very good at detecting and blocking activity but I don't understand why most files do not get quarantined. We have tuned the policies and still need to constantly do manual cleanup on the infected hosts.
What problems is the product solving and how is that benefiting you?
Endpoint protection. We are using Real-Time Response via the API to install other software remotely using powershell scripts.
showing 51 - 60