TrustRadius Insights for CrowdStrike Falcon are summaries of user sentiment data from TrustRadius reviews and, when necessary, third party data sources.
Pros
AI/ML-based detections: Users have consistently praised the clear presentation on the dashboard and easy filtering options based on various criteria like hostname, detection name, severity, date, and time. Many users find this feature to be highly intuitive and effective in managing security alerts.
Full process chain tracing: The ability to trace the complete process chain instead of just showing the source file or script is highly valued by reviewers as it significantly aids in identifying and addressing main security concerns promptly and accurately.
Enhanced security measures: Users appreciate the network segmentation for hosts and servers using firewall capabilities, USB blocking by the sensor, and IDP alerts from different domains. These features are seen as beneficial for strengthening overall security measures within their environments.
It is the organisation's antivirus software and is also used as DLP. In terms of USB, we have more than 1,500 clients installed on PCs and 50 servers. The USB blocking tool is what we use most on a daily basis, along with checking the backups that the servers make every day.
Pros
Bloq USB
Identification of critical modifications in system files
Cons
It could improve the information it displays about detections.
EL recognises some USB devices and makes it easier to mark them than to create exclusions, such as when a printer USB device is recognised as a mobile phone.
Likelihood to Recommend
We are very proud of how we have configured everything and how CrowdStrike Falcon works in our organisation, as well as how we use various tools. Incident detection, USB permission, vulnerability detection, etc. The tool is user-friendly and has many interesting features.
VU
Verified User
Employee in Engineering (Computer & Network Security company, 5001-10,000 employees)
My organization uses CrowdStrike Falcon to monitor and protect all of our endpoints. This provides the team insight into any potential malicious activity based upon scripts spawning from word or excel files. CrowdStrike Falcon allows the team to get detailed analysis and records of the who, what, when, where and why that other solutions could not provide.
Pros
Granular Details
Kill Chain Analysis
Minimal impact to users
Cons
Transparency into the global outage 1-2 years ago
For a new tech, there is sometimes too many details
If there could be an AI guiding a tech where to look/review next.
Likelihood to Recommend
CrowdStrike Falcon is well suited for any size of environment. Large to small, CrowdStrike Falcon does an amazing job. The ability to have the same security as a fortune 500 company and have a solution that sees the same threats that they are seeing is amazing. I do not think that there is a company or environment that wouldn't benefit from the CrowdStrike Falcon solution.
VU
Verified User
Manager in Information Technology (Financial Services company, 201-500 employees)
CrowdStrike in my organization is used for next-generation antivirus protection and device control. We get alerts from this tool which helps in investigation and monitoring infrastructure. Logs from these tools are logged in SIEM, which helps in troubleshooting issues related to endpoints. Overall updates and security advisory sent by CrowdStrike improve the security posture of our organization
Pros
device control
endpoint detection and response
antivirus protection
Cons
threat hunting
endpoint response
thirdparty endpoint detection
Likelihood to Recommend
CrowdStrike is best suited for organization where users are remote. It provides next-generation antivirus features to stop malware on endpoints and workloads in the cloud. CrowdStrike is a premium solution and expensive and so it is less appropriate for small organizations and it is not suited where there is no internet.
VU
Verified User
Administrator in Information Technology (Information Services company, 10,001+ employees)
CrowdStrike allow us to have more confidence when we go to cloud and whenever our endpoints have multiple touchpoint to the outside world. As the company get bigger, threats such as phising and other malicious attack cannot be avoid. That is why we need an active forms of defence where we can rely to help us detect, stop, limit the spread and asses damages if any and prepare us for remedial solution and actions. Their strengh are also in their services where it comes in handy after the incident or preventive way. Also, by adopting integration with other tools will boost both CrowdStrike and the other platform. Integration itself should not be a problem as CrowdStrike is a staple name in the cyber security area making adaptor and other integration are usually already ready out of the box
Pros
Detect
Find source of attack
After incident review
Cons
Android support
Ios support
BYOD scheame and personal devices
Likelihood to Recommend
Corporate and enterprise environment is the best entity to adopt it, but they have very minimal support for smaller and private business. Their top of the line license only available for company with the size of 300 and more endpoint while smaller business with limited IT resources will havr difficulties implementing it
VU
Verified User
Manager in Information Technology (Insurance company, 51-200 employees)
We have CrowdStrike Falcon Complete installed on all devices that a user can log into, so servers, desktops, laptops, etc. CrowdStrike does a terrible job of stopping anything that is unexpected and potentially dangerous, while not impacting the users ability to get their job done. Management is relatively straight forward and notifications are timely and informative
Pros
Block malicious or suspicious activity
Isolate computers, while still maintaining administrative access to troubleshoot
Alerting of activities and interceding on our behalf when warranted to isolate or remediate
Cons
Since we have CrowdStrike installed on all endpoints, and they are already capturing data, i wish the SIEM component was included, but It's a different service
Likelihood to Recommend
CrowdStrike is the gold standard in the endpoint security space. Even after the issue they experienced last year, no one that I speak to had indicated a desire to move aware from them. They provide a very high level of protection and their customer service department is very responsible and knowledgeable
VU
Verified User
Director in Information Technology (Legal Services company, 501-1000 employees)
The Falcon Complete acts on our behalf when a problem/incident happens. they applied the policies for us and monitor the compatibility of windows patches with their agents. The main case for the complete is - We have a team 27/7 that verifies the alerts/incidents for us.
Pros
24/7 Monitoring
Quick response - good SLA
Compatibility with many apps
Good heuristics
Cons
Interface is not so friendly
Support could community more with us
reporting is not the best
Likelihood to Recommend
they have room for improvement related to interface and reports, but overall product is good.
VU
Verified User
Employee in Information Technology (Transportation/Trucking/Railroad company, 501-1000 employees)
Crowdstrike is useful for gaining information and control over the organization's devices. For me, the most useful feature of the tool is being able to view the granular and complete information on each device. Crowdstrike's detail allows for easy threat analysis, vulnerability reports, and the collection of useful information about each device at any given time. Also interesting is the ability to remotely control devices. This allows for easy diagnostics of enrolled devices and rapid action in the event of a threat. Automations are also very useful.
Crowdstrike es util a la hora de tener informacion y control sobre los dispositivos de la organizacion. Para mi lo más útil que tiene la herramienta es poder ver de forma muy granular y completa la información de cada dispositivo, el detalle que tiene Crowdstrike permite analizar amenazas fácilmente, hacer informes de vulnerabilidades y recopilar información útil sobre cada equipo en cada momento. Tambien es interesante la posibilidad de controlar remotamente los equipos, de esta manera se puede hacer diagnosticos fácilmente de los equipos enrolados y actuar rápidamente en caso de amenaza. Las automatizaciones son muy útiles tambien
Pros
Control
Visibility
Information
Visibilidad
Información
Cons
UI
More commands in the CLI
Mas comandos en el CLI
Likelihood to Recommend
I think Crowdstrike is more useful for large companies. The scale and depth of its capabilities make it suitable for large companies that take security seriously. It's not recommended for small or medium-sized businesses due to its complexity and cost.
Creo que Crowdstrike es mas util para grandes empresas, la escala a la que es capaz de actuar y la profundidad que tiene lo hace indicado para grandes empresas que se tomen en serio la seguridad. Para empresas pequeñas o medianas no es recomendado por la complejidad del mismo y el coste
This review was originally written in Spanish and has been translated into English using a third-party translation tool. While we strive for accuracy, some nuances or meanings may not be perfectly captured.
VU
Verified User
Employee in Engineering (Hospital & Health Care company, 10,001+ employees)
We use CrowdStrike and Falcon Complete as our security partner. It is deployed across all desktop endpoints. It is one of our primary layers of defense with regard to security. It is managed by our head of security and some tasks are outsourced to other I.T. staff. We count on this product to increase our uptime with employees and, therefore, their productivity.
Pros
The false positives are minimal for our I.T. staff.
I think it's an innovative product.
There is a large user base, which gives us some confidence in their reliability.
Cons
Support - we are often tasked with running down problems rather than being directed by support.
The sales staff we have dealt with are not very responsive or timely.
I believe this is a product built for installations of 300 users or more.
Likelihood to Recommend
As I mentioned, I think it's built for larger infrastructures rather than small to medium businesses. Their price models seem to reflect that. For our number of users, it seems to be a little on the expensive side. I believe for that reason, it would scale well to thousands of endpoints. Their dashboard page is built well for an overview of security issues.
VU
Verified User
C-Level Executive in Information Technology (Construction company, 51-200 employees)
We use CrowdStrike for XDR and Identity protection. We have a very distributed team; for us, it is very important to keep our assets protected, and to maintain a healthy AD, we rely on identity protection. We love the ease of use and the valuable insights and dashboards we receive from CrowdStrike. We compared it against other vendors, and the most complete was CrowdStrike. It features numerous third-party integrations for logs, elevating our SOC to the next level.
Pros
Endpoint protection.
Next Gen Siem.
Identity Protection.
CNAP
Cons
Offline protection.
Likelihood to Recommend
Falcon boasts numerous exciting features. In our case, we like that it has a lot of Intelligence, which allows us to detect different attack vectors and respond to them in a very timely fashion. Having the NGSiem, it will enable us to cross data, act on different alerts, and analyze them with a vast amount of data.