External reviews
External reviews are not included in the AWS star rating for the product.
Compared to other Commercial Endpoint solutions Falcon has superior technology and it is hassle free
What do you like best about the product?
features like Threat actors details, network quarantine capabilities, malware execution map & Dashboard
Threat actors database.
Dashboard filtering capabilities and eliminating falsepositives with just a click.
RBAC (role based access control) features enables high security towards authentication.
Email alerts is helpful for rapid threat response to aviod potential security incident.
Intergration capabilities with ITSM tools is an added advantage.
Threat actors database.
Dashboard filtering capabilities and eliminating falsepositives with just a click.
RBAC (role based access control) features enables high security towards authentication.
Email alerts is helpful for rapid threat response to aviod potential security incident.
Intergration capabilities with ITSM tools is an added advantage.
What do you dislike about the product?
Initially, eliminating the false positives and purging them is time-consuming. Agent deployment for Windows flavored OS is easy. But for a Linux-based system, it is a tedious task.
Extracting logs or report for troubleshooting should be even more used readable. I liked the Dashboard, but Falcon can still improve a few automation to eradicate known false positives.
Main Disadvantage: Active endpoint scanning is not possible CrowdStrike only analysis the network traffice and behaviour with in the system. Falcon should introduce quick scan and full scan features to over come this disadvantage.
Duplicate alerts and related ITSM tickets are a problem with falcon, In my experience I have experienced Crowdstrike reporting multiple alerts for same issue. This results in huge number of ticket creation (If Intergrated with ITSM) or large amount of emails spamming your Inbox.
Extracting logs or report for troubleshooting should be even more used readable. I liked the Dashboard, but Falcon can still improve a few automation to eradicate known false positives.
Main Disadvantage: Active endpoint scanning is not possible CrowdStrike only analysis the network traffice and behaviour with in the system. Falcon should introduce quick scan and full scan features to over come this disadvantage.
Duplicate alerts and related ITSM tickets are a problem with falcon, In my experience I have experienced Crowdstrike reporting multiple alerts for same issue. This results in huge number of ticket creation (If Intergrated with ITSM) or large amount of emails spamming your Inbox.
What problems is the product solving and how is that benefiting you?
I have mostly been a Security Analyst. I have investigated alerts reported by Falcon. In a nutshell, we used Crowdstrike for Managing all the endpoints used for business.
Benefits- Real-time status and statistics, since using dashboard one can control the agents so in terms of incident response one can network quarantine a system (if found with malware) with just a few clicks using central Dashboard.
This feature will surely help restrict ransomware from spreading across systems.
Benefits- Real-time status and statistics, since using dashboard one can control the agents so in terms of incident response one can network quarantine a system (if found with malware) with just a few clicks using central Dashboard.
This feature will surely help restrict ransomware from spreading across systems.
Recommendations to others considering the product:
The product is futuristic and will surely add multiple automation over the period. But for Endpoint Detection and Response (EDR). I would recommend CrowdStrike as the market's Pioneer.
- Leave a Comment |
- Mark review as helpful
One of the most advanced EDR available in the market
What do you like best about the product?
The way alerts are triaged and broken up for easy understanding
What do you dislike about the product?
Nothing. Everything is good in this EDR.
What problems is the product solving and how is that benefiting you?
Most of the threats to a organization are through the mistakes of the users which is directly monitored by CS Falcon
Recommendations to others considering the product:
Start using this in the organisation for better security
It the best solution in market
What do you like best about the product?
Capability of the tool and the performance of the tool and
What do you dislike about the product?
Nothing there is that I dislike about crowdstrike
What problems is the product solving and how is that benefiting you?
Real time response is the best feature
Recommendations to others considering the product:
It's the best in market
This is easy to manage
What do you like best about the product?
Cloud console and kernel-level falcon sensor
What do you dislike about the product?
Everyone should have internet access to connect cloud console.
What problems is the product solving and how is that benefiting you?
Endpoint protection with EDR features
Its a very good experience of using CrowdStrike.
What do you like best about the product?
The User interface, detection details, crowdstrike support
What do you dislike about the product?
There is nothing specifically to be said.
What problems is the product solving and how is that benefiting you?
I supported CS support multiple times and they have resolved all my issues.
Recommendations to others considering the product:
Its very advisable to people as its a best EDR in market.
Endpoint Detection and Response
What do you like best about the product?
EDR Discover and spotlight is the best for the investigation
What do you dislike about the product?
Device Control need to have good functionality
What problems is the product solving and how is that benefiting you?
I have gain lot of experience in falcon and got lot of benifits
Recommendations to others considering the product:
They need to have the proper solutions like crowdstrike need to migrate from legacy solution to NGAV
Crowdstrike is the Best NextGen Endpoint Protection
What do you like best about the product?
Crowdstrike is the best endpoint solution to stop breaches. It uses the IOA (Indicators of Attack) to detect an attack. An it is the very light weighted endpoint protection that I have seen when comparing with other products.
What do you dislike about the product?
There are no any dislike to me whe it comes to Crowdstrike all the features and the technology it has are very much liked.
What problems is the product solving and how is that benefiting you?
Ransomware is the major problem we faces. Crowdstrike helps to be prevented by all types of ransomware attack. Still no any ransomware attacks are happened when Crowdstrike NextGen endpoint is used.
Recommendations to others considering the product:
If your choosing crowdstrike you dont need to worry about breaches. You will be protected.
Product is very good ... but interface is bit old
What do you like best about the product?
Perfect is all manner other then support and sales team
What do you dislike about the product?
Support & sales teams are not that supportive and response
What problems is the product solving and how is that benefiting you?
Software it self is pretty much mature and works perfect performance wise
It's a great tool with detailed logs and good detection capabilities
What do you like best about the product?
EDR is the best it's great capability of alert mechanism
What do you dislike about the product?
Sometimes , Crowdstrike does not give a detailed report on registry changes
What problems is the product solving and how is that benefiting you?
All malware are safely terminated
Crowdstrike Falcon - A lightweight agent with superb EDR capabilities and easy management
What do you like best about the product?
The agent is extremely lightweight and it never takes huge resources on the system. Management is extremely easy with easy dashboard. The alerts are extremely well detailed, so any L2 system administrator can understand them and take appropriate actions starting from marking them as malicious or false positive, quarantining the alert to network containing the host. If you are still on conventional AV, switch to Crowdstrike EDR for the best secured experience. It is also one of the leaders in Gartner magic quadrant.
What do you dislike about the product?
The threat advisory part is a little hard to understand for the L2 administrators. So it can be simplified into different attacks and their hashes and ioc which can be blocked easily across the organisation. Its again not a part to dislike but still something which can be improved or modified based on my personal choice.
What problems is the product solving and how is that benefiting you?
Endpoint and host security real time device level log analysis and threat behaviour with seamless machine learning analysis. These capabilities lacked in a conventional antivirus product which was entirely dependent on virus definition signature. With crowdstrike edr, each amd every system event is being analyzed which prevents in the origin of a malicious event.
Recommendations to others considering the product:
Switch to Crowdstrike edr for seamless security and event monitoring. It is a single pane of glass to manage host security instead of depending on a range of products like threat prevention, web filter, firewall etc. which takes up unnecessary resources on system.
showing 181 - 190