Try our new research platform with insights from 80,000+ expert users

CrowdStrike Falcon Cloud Security vs Qualys VMDR comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Jan 5, 2025

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

SentinelOne Singularity Clo...
Sponsored
Ranking in Container Security
2nd
Average Rating
8.8
Reviews Sentiment
7.9
Number of Reviews
107
Ranking in other categories
Vulnerability Management (6th), Cloud and Data Center Security (5th), Cloud Workload Protection Platforms (CWPP) (4th), Cloud Security Posture Management (CSPM) (3rd), Cloud-Native Application Protection Platforms (CNAPP) (3rd), Compliance Management (3rd)
CrowdStrike Falcon Cloud Se...
Ranking in Container Security
6th
Average Rating
8.2
Reviews Sentiment
7.5
Number of Reviews
29
Ranking in other categories
Application Security Tools (13th), Cloud Workload Protection Platforms (CWPP) (7th), Cloud Security Posture Management (CSPM) (8th), Cloud-Native Application Protection Platforms (CNAPP) (7th), Cloud Infrastructure Entitlement Management (CIEM) (2nd), Application Security Posture Management (ASPM) (2nd)
Qualys VMDR
Ranking in Container Security
11th
Average Rating
8.4
Reviews Sentiment
7.0
Number of Reviews
93
Ranking in other categories
IT Asset Management (5th), Vulnerability Management (3rd), Configuration Management Databases (2nd), Risk-Based Vulnerability Management (2nd)
 

Mindshare comparison

As of March 2025, in the Container Security category, the mindshare of SentinelOne Singularity Cloud Security is 2.1%, up from 1.1% compared to the previous year. The mindshare of CrowdStrike Falcon Cloud Security is 6.5%, up from 5.1% compared to the previous year. The mindshare of Qualys VMDR is 3.0%, down from 3.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Container Security
 

Featured Reviews

Andrew W - PeerSpot reviewer
Tells us about vulnerabilities as well as their impact and helps to focus on real issues
Looking at all the different pieces, it has got everything we need. Some of the pieces we do not even use. For example, we do not have Kubernetes Security. We are not running any K8 clusters, so it is good for us. Overall, we find the solution to be fantastic. There can be additional education components. This may not be truly fair to them because of what the product is going for, but it would be great to see additional education for compliance. It is not a criticism of the tool per se, but anything to help non-development resources understand some of the complexities of the cloud is always appreciated. Any additional educational resources are always helpful for security teams, especially those without a development background.
Saif Ullah Khan - PeerSpot reviewer
Boosts security by automatically blocking applications or activities, but query responses have been slower recently
For the past six months, we have been facing some issues. Because it is a cloud-based infrastructure, it has been getting slower. There are no bugs because they release updates continuously. We highly appreciate that, but during hunting or running a query on different logs, the time frame has increased in the past six months. It takes longer to give us the results. Another issue is the lack of proper documentation. During investigations, there is no proper documentation available. This is a problem because many people are saying there should be proper documentation explaining what CrowdStrike captures from the machine and the meaning of it.
Harold Jensen - PeerSpot reviewer
Good visibility but expensive and needs better support
Support: It's often overseas and often following a script, basically asking us to redo what we opened the case with. Multiple APIs: There seems to be a lack of easy onboarding into Qualys. We had to use manual inputs and some API calls to get items in place. Dashboard: It is very rudimentary with very little customization. The Qualys Scripting Language (QSL) works differently in different Qualys modules, so when you get it working in one area you have to modify the syntax in others. User account management: We often have to give users more rights than needed just to give them what they need. Integration with the various Qualys Modules: You can tell the UI is different based on of the different teams that created them. QSL syntax same in all modules Responsiveness of some of the components: They time out, you get a blank screen, etc. Backend updates between the various modules: You update connectors and information takes a few minutes to show in VMDR or Global Asset View Connectors: Connectors have a throttling issue with AWS which causes them to frequently fail unless you manually run them again.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"We're monitoring several cloud accounts with Singularity. It is convenient to identify issues or security failures in any account. It's nice to have all the details we need to solve these issues."
"The most valuable features of PingSafe are cloud misconfiguration, Kubernetes, and IaC scanning."
"PingSafe's integration is smooth. They are highly customer-oriented, and the integration went well for us."
"The real-time detection and response capabilities overall are great."
"With PingSafe, it's easy to onboard new accounts."
"It is advantageous in terms of time-saving and cost reduction."
"The offensive security feature is valuable because it publicly detects the offensive and vulnerable things present in our domain or applications. It checks any applications with public access. Some of the applications give public access to certain files or are present over a particular domain. It detects and lets us know with evidence. That is quite good. It is protecting our infrastructure quite well."
"The cloud misconfiguration feature and Offensive Security Engine, as well as their alerting process, are valuable."
"I think the overall solution should be rated a ten out of ten."
"The RTR feature stands out as particularly valuable to me due to its capability to log into machines."
"We like the solution's management and monitoring tools for our network. We use it to monitor our network between workstations and outside our organization. The AI provides useful visualizations of our network on a dashboard."
"Falcon is a cloud-based technology, so its resource usage is light. You deploy the agents to your endpoints, but the processing is done on the cloud, so you're CPU utilization is only about 2 percent. Some others solutions use between 30 to 60 percent."
"The product's initial setup phase is easy."
"It provides alerts on suspicious command executions, helping us safeguard our systems."
"The initial setup is easy ."
"Cloud security is one valuable feature. Spotlight is the other one. There is also vulnerability management and a couple of more features."
"The initial setup is straightforward."
"Using this product, we now have a vulnerability management cycle wherein VMDR plays a major role."
"The solution shows us classic categories, including high, medium, and low risks. It also shows critical items, and that gives us the advantage of prioritizing things."
"The prioritization of vulnerabilities has improved our remediation efforts by around thirty to thirty-five percent."
"The most valuable features are vulnerability scanning, policy compliance scanning, and tablet for web application scanning."
"The most valuable feature is the ability to run different capabilities with the same agent. With only one agent, we can have EDR, vulnerability management, compliance and some basic SaaS security capabilities."
"The most valuable feature of Qualys Container Security is the detailed information in the reports and the remediation. This is done to make sure there are no vulnerabilities."
"The initial setup was good. We didn't have any problems with it."
 

Cons

"PingSafe is an excellent CSPM tool, but the CWPP features need to improve, and there is a scope for more application security posture management features. There aren't many ASPM solutions on the market, and existing ones are costly. I would like to see PingSafe develop into a single pane of glass for ASPM, CSPM, and CWPP. Another feature I'd like to see is runtime protection."
"Cloud Native Security's reporting could be better. We are unable to see which images are impacted. Several thousand images have been deployed, so if we can see some application-specific information in the dashboard, we can directly send that report to the team that owns the application. We'd also like the option to download the report from the portal instead of waiting for the report to be sent to our email."
"For SentinelOne, improvements could be made in managing Internet dependency as cloud-based operations can pose challenges in environments with limited connectivity."
"They could generally give us better comprehensive rules."
"Singularity Cloud Security currently lacks a break-glass account function, which is a critical component for implementing Single Sign-On as it allows for regaining access in emergencies."
"One of our use cases was setting up a firewall for our endpoints, specifically for our remote users... We were hoping to utilize SentinelOne's firewall capabilities, but there were limitations on how many URLs we could implement. Because of those limitations on the number of URLs, we weren't able to utilize that feature in the way we had hoped to."
"A few YouTube videos could be helpful. There isn't a lot of information out there to look at."
"With Cloud Native Security, we can't selectively enable or disable alerts based on our specific use case."
"The CrowdStrike dashboard currently lacks a username field."
"The only suggestion for improvement would be the pricing."
"The file integrity monitoring feature should be enhanced and offered more control"
"For the past six months, we have been facing some issues. Because it is a cloud-based infrastructure, it has been getting slower."
"Customers would benefit it CrowdStrike adopted some of SentinelOne's technologies."
"CrowdStrike Falcon Cloud Security is expensive."
"The UI part needs to be improved."
"The tool's scalability is low."
"The reporting in this solution can be improved."
"While Qualys VMDR is comprehensive, improvements in asset management functionality would be beneficial."
"Finding things in management can be quite difficult."
"Qualys could improve the inbuilt dashboards."
"They can tweak their UI since the new version seems a bit jumbled up, and the old UI was more user-friendly."
"I do not like that all of the data is stored on the cloud."
"The reporting and dashboards could improve in Qualys VM. However, they have improved since the previous versions."
"They have integrated with other third parties, but it is still not viable."
 

Pricing and Cost Advice

"The price depends on the extension of the solution that you want to buy. If you want to buy just EDR, the price is less. XDR is a little bit more expensive. There are going to be different add-ons for Singularity."
"Singularity Cloud Workload Security's pricing is good."
"I wasn't sure what to expect from the pricing, but I was pleasantly surprised to find that it was a little less than I thought."
"PingSafe is less expensive than other options."
"The features included in PingSafe justify its price point."
"It is cost-effective compared to other solutions in the market."
"Its pricing was a little less than other providers."
"PingSafe falls within the typical price range for cloud security platforms."
"Its price is moderate."
"It's an expensive product"
"The pricing is fair for what you get. I'd rate them a solid nine out of ten in terms of pricing."
"It is expensive, but it adds value."
"CrowdStrike Falcon Cloud Security is very expensive for us. Last month, we had a big issue that took much time and money to resolve. It slowed down our business and required our management team to get involved. We had a problem similar to the "Blue Screen of Death" issue many US companies faced. This incident used up many of our IT resources in just a few months. That's why we're looking for a replacement tool now."
"The pricing is reasonable, neither overly expensive nor excessively cheap, making it competitive compared to other market options."
"I am not the one who handled the pricing. A different team worked on it, but it is pretty expensive."
"The price is not too high, it is okay."
"Qualys VM is better suited for medium to large companies because the price can be too much for smaller customers."
"Qualys Virtual Scanner Appliance isn't expensive right now. But the price for their product bundles could be better."
"The pricing is very competitive."
"It is a high cost product. Compared to the other solutions, it is around 15 to 20% higher in cost."
"The license is on a yearly basis."
"In Nigerian Naira, we spend about roughly four to five million to use this solution and this is expensive compared to solutions like Nessus."
"It is different for every company, but for us, it's every three years."
"They have recently changed the pricing model, which is now better than it was before."
report
Use our free recommendation engine to learn which Container Security solutions are best for your needs.
842,651 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
17%
Financial Services Firm
16%
Manufacturing Company
9%
Government
5%
Computer Software Company
15%
Financial Services Firm
15%
Manufacturing Company
8%
Insurance Company
5%
Educational Organization
36%
Financial Services Firm
11%
Computer Software Company
10%
Manufacturing Company
5%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about PingSafe?
The dashboard gives me an overview of all the things happening in the product, making it one of the tool's best featu...
What is your experience regarding pricing and costs for PingSafe?
It is cost-effective compared to other solutions in the market.
What needs improvement with PingSafe?
In version 2, a lot of rules have been deployed for Kubernetes security and CDR, which makes a lot of issues of criti...
What do you like most about CrowdStrike Falcon Cloud Security?
It's easy to gather insights and conduct analysis about existing threats.
What is your experience regarding pricing and costs for CrowdStrike Falcon Cloud Security?
It's an expensive product. The solution costs around $60 for a single user on a yearly basis. I would rate the pricin...
What needs improvement with CrowdStrike Falcon Cloud Security?
I am not part of the current monitoring team, so I do not know how they feel about the tool. I am sharing information...
What do you like most about Qualys VMDR?
I like that we have many scanners and channels that don't overload. It helps us scan and track easily. Also, the tagg...
What is your experience regarding pricing and costs for Qualys VMDR?
Qualys offers better pricing and is feature-packed compared to other tools.
What needs improvement with Qualys VMDR?
They can tweak their UI since the new version seems a bit jumbled up, and the old UI was more user-friendly.
 

Also Known As

PingSafe
CrowdStrike Falcon ASPM
Qualys VM, QualysGuard VM, Qualys Asset Inventory, Qualys Container Security
 

Overview

 

Sample Customers

Information Not Available
Information Not Available
Agrokor Group, American Specialty Health, American State Bank, Arval, Life:), Axway, Bank of the West, Blueport Commerce, BSkyB, Brinks, CaixaBank, Cartagena, Catholic Health System, CEC Bank, Cegedim, CIGNA, Clickability, Colby-Sawyer College, Commercial Bank of Dubai, University of Utah, eBay Inc., ING Singapore, National Theatre, OTP Bank, Sodexo, WebEx
Find out what your peers are saying about CrowdStrike Falcon Cloud Security vs. Qualys VMDR and other solutions. Updated: March 2025.
842,651 professionals have used our research since 2012.