Try our new research platform with insights from 80,000+ expert users

CrowdStrike Falcon Cloud Security vs Trivy comparison

Sponsored
 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

SentinelOne Singularity Clo...
Sponsored
Ranking in Container Security
3rd
Average Rating
8.8
Reviews Sentiment
7.9
Number of Reviews
110
Ranking in other categories
Vulnerability Management (6th), Cloud and Data Center Security (5th), Cloud Workload Protection Platforms (CWPP) (4th), Cloud Security Posture Management (CSPM) (3rd), Cloud-Native Application Protection Platforms (CNAPP) (3rd), Compliance Management (2nd)
CrowdStrike Falcon Cloud Se...
Ranking in Container Security
6th
Average Rating
8.2
Reviews Sentiment
7.5
Number of Reviews
29
Ranking in other categories
Application Security Tools (13th), Cloud Workload Protection Platforms (CWPP) (7th), Cloud Security Posture Management (CSPM) (8th), Cloud-Native Application Protection Platforms (CNAPP) (7th), Cloud Infrastructure Entitlement Management (CIEM) (2nd), Application Security Posture Management (ASPM) (5th)
Trivy
Ranking in Container Security
16th
Average Rating
8.6
Reviews Sentiment
7.5
Number of Reviews
9
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of April 2025, in the Container Security category, the mindshare of SentinelOne Singularity Cloud Security is 2.1%, up from 1.0% compared to the previous year. The mindshare of CrowdStrike Falcon Cloud Security is 5.6%, up from 4.3% compared to the previous year. The mindshare of Trivy is 5.5%, up from 0.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Container Security
 

Featured Reviews

Andrew W - PeerSpot reviewer
Tells us about vulnerabilities as well as their impact and helps to focus on real issues
Looking at all the different pieces, it has got everything we need. Some of the pieces we do not even use. For example, we do not have Kubernetes Security. We are not running any K8 clusters, so it is good for us. Overall, we find the solution to be fantastic. There can be additional education components. This may not be truly fair to them because of what the product is going for, but it would be great to see additional education for compliance. It is not a criticism of the tool per se, but anything to help non-development resources understand some of the complexities of the cloud is always appreciated. Any additional educational resources are always helpful for security teams, especially those without a development background.
Saif Ullah Khan - PeerSpot reviewer
Boosts security by automatically blocking applications or activities, but query responses have been slower recently
For the past six months, we have been facing some issues. Because it is a cloud-based infrastructure, it has been getting slower. There are no bugs because they release updates continuously. We highly appreciate that, but during hunting or running a query on different logs, the time frame has increased in the past six months. It takes longer to give us the results. Another issue is the lack of proper documentation. During investigations, there is no proper documentation available. This is a problem because many people are saying there should be proper documentation explaining what CrowdStrike captures from the machine and the meaning of it.
Utsav Sharma - PeerSpot reviewer
Maintain operational efficiency by detecting misconfigurations and vulnerabilities
The vulnerability scanning feature is excellent as it supports various container capabilities like Docker and Sharma. It also offers repository scanning in the source code domain, allowing pre-push code scans. The misconfiguration detection works well for CloudFormation, Docker files, and Terraform. Its compliance support, like NIST, ensures that configurations align with standards. Trivy helps me significantly detect misconfigurations missed by the ops engineers or in Terraform by the naked eye. It ensures that my deployments are free of misconfigurations and vulnerabilities.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The ease of use of the platform is very nice."
"Cloud Native Security offers attack path analysis."
"I would rate SentinelOne Singularity Cloud Security a nine out of ten."
"The visibility PingSafe provides into the Cloud environment is a valuable feature."
"Singularity Cloud Native Security provides us with a platform to scan instances when they are getting created, and the dashboard helps us to identify the critical issues."
"Singularity Cloud's ability to create custom correlation searches and reduce noise is highly valuable."
"The most valuable feature is the notification system, providing real-time alerts and comparisons crucial for maintaining security."
"The compliance monitoring feature of SentinelOne Singularity Cloud Security gives us a report with a compliance score to ensure we meet certain regulatory standards."
"The solution has login features like multi factor authentication."
"Falcon is a cloud-based technology, so its resource usage is light. You deploy the agents to your endpoints, but the processing is done on the cloud, so you're CPU utilization is only about 2 percent. Some others solutions use between 30 to 60 percent."
"It provides alerts on suspicious command executions, helping us safeguard our systems."
"The most valuable feature of Falcon Cloud Security is its comprehensive threat-hunting ability."
"Cloud security posture management (CSPM) is most valuable."
"CrowdStrike Falcon Cloud Security is user-friendly."
"We like the solution's management and monitoring tools for our network. We use it to monitor our network between workstations and outside our organization. The AI provides useful visualizations of our network on a dashboard."
"I find the easy installation process, quick detection capabilities, and the cloud-based console very useful for this solution."
"Trivy is easy to integrate with CI/CD and can be installed on desktops to scan images."
"Overall, I would rate Trivy a ten out of ten."
"The vulnerability scanning feature is excellent as it supports various container capabilities like Docker and Sharma."
"Trivy is very reliable and always has an up-to-date database to scan images and identify vulnerabilities."
"Trivy's open source nature and wide functionality are incredibly valuable."
"I appreciate Trivy for being open-source and not requiring any payment."
"I definitely recommend Trivy."
"Trivy's open source nature and wide functionality are incredibly valuable."
 

Cons

"PingSafe can improve by eliminating 100 percent of the false positives."
"They can add more widgets to its dashboard. A centralized dashboard with numerous metrics would improve user understanding."
"here is a bit of a learning curve. However, you only need two to three days to identify options and get accustomed."
"Once all components, including the cloud piece and container runtime piece, integrate further and incorporate an AI layer for better comprehension, it will greatly enhance the utility of Singularity Cloud Security."
"While SentinelOne offers robust security features, its higher cost may present a challenge for budget-conscious organizations."
"With Cloud Native Security, we can't selectively enable or disable alerts based on our specific use case."
"I believe the UI/UX updates for SentinelOne Singularity Cloud Security have room for improvement."
"When we request any changes, they must be reflected in the next update."
"The CrowdStrike partner portal documentation could be improved to provide proper instructions for integrating their products."
"There are no bugs because they release updates continuously. We highly appreciate that, but during hunting or running a query on different logs, the time frame has increased in the past six months. It takes longer to give us the results."
"I think the UI could be improved, but the technical support said CrowdStrike will improve the UI in the near future. But right now, it’s so messy."
"It gets the work done, but the main problem with the solution is that if you remediate anything, it takes 45 days for you to get any of the features displayed on the dashboard. This is the real weakness of CrowdStrike. Their customer support is also not ready to help with it. If you remediate any cloud vulnerability that they are giving you, such as removing a host from your organization, it takes around 45 days for them to remove it from their console."
"The SIEM needs to be more developed."
"I would not say the tool's integration capabilities were straightforward because the complexity depends on the volume of the data."
"The only suggestion for improvement would be the pricing."
"Incorporating threat intelligence into the system would be a valuable addition."
"For malware detection, I need to use two tools: Trivy as my anomaly scanner and ClamAV. I am integrating these two tools into the CI pipeline. If both malware and anomaly detection could be managed by one tool, I would not need to depend on two tools."
"Trivy generates many false positives, flagging non-existent vulnerabilities. Improvements could include better contextual analysis or granular filtering."
"Trivy can improve by providing an output in PDF format."
"One drawback I have observed with Trivy is the difficulty in building or integrating a UI, particularly for an operator in the NetSuite example."
"In our CI/CD pipelines, Trivy lacks built-in functionality for report analysis."
"The only problem is that Trivy does not support reporting features such as generating reports in CSV, which is useful for auditing and reporting."
"The reporting could be a little better. When integrating Trivy with CI, the interpretation of the reports could be improved."
"Trivy can improve by providing an output in PDF format. Additionally, it takes longer to scan container images built with many layers."
 

Pricing and Cost Advice

"We have an enterprise license. It is affordable. I'm not sure, but I think we pay 150,000 rupees per month."
"The pricing for PingSafe in India was more reasonable than other competitors."
"SentinelOne provided competitive pricing compared to other vendors, and we are satisfied with the deal."
"The tool is cost-effective."
"I am personally not taking care of the pricing part, but when we moved from CrowdStrike to PingSafe, there were some savings. The price of CrowdStrike was quite high. Compared to that, the price of PingSafe was low. PingSafe is charging based on the subscription model. If I want to add an AWS subscription, I need to pay more. It should not be based on subscription. It should be based on the number of servers that I am scanning."
"It is a little expensive. I would rate it a four out of ten for pricing."
"While I'm slightly out of touch with pricing, I know SentinelOne is much cheaper than other products."
"SentinelOne Singularity Cloud Security is costly."
"It's an expensive package but does what it says it will do."
"The pricing is reasonable, neither overly expensive nor excessively cheap, making it competitive compared to other market options."
"The price is not too high, it is okay."
"It's an expensive product"
"CrowdStrike Falcon is very expensive."
"It is expensive, but it adds value."
"CrowdStrike Falcon Cloud Security is pricy."
"I am not the one who handled the pricing. A different team worked on it, but it is pretty expensive."
Information not available
report
Use our free recommendation engine to learn which Container Security solutions are best for your needs.
849,190 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
17%
Financial Services Firm
16%
Manufacturing Company
9%
Government
5%
Computer Software Company
15%
Financial Services Firm
15%
Manufacturing Company
8%
Insurance Company
5%
Computer Software Company
15%
Financial Services Firm
15%
Manufacturing Company
11%
Government
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about PingSafe?
The dashboard gives me an overview of all the things happening in the product, making it one of the tool's best featu...
What is your experience regarding pricing and costs for PingSafe?
It is cost-effective compared to other solutions in the market.
What needs improvement with PingSafe?
SentinelOne Singularity Cloud Security is an excellent CSPM tool, but its CWPP features need improvement, and there i...
What do you like most about CrowdStrike Falcon Cloud Security?
It's easy to gather insights and conduct analysis about existing threats.
What is your experience regarding pricing and costs for CrowdStrike Falcon Cloud Security?
It's an expensive product. The solution costs around $60 for a single user on a yearly basis. I would rate the pricin...
What needs improvement with CrowdStrike Falcon Cloud Security?
I am not part of the current monitoring team, so I do not know how they feel about the tool. I am sharing information...
What needs improvement with Trivy?
One drawback I have observed with Trivy is the difficulty in building or integrating a UI, particularly for an operat...
What is your primary use case for Trivy?
The main use case for Trivy is to scan Docker images or packages for CVEs, specifically for vulnerabilities. I use th...
What advice do you have for others considering Trivy?
I rate Trivy an eight out of ten. This rating reflects its open-source nature, comprehensive scanning capabilities, a...
 

Also Known As

PingSafe
CrowdStrike Falcon ASPM
No data available
 

Overview

Find out what your peers are saying about CrowdStrike Falcon Cloud Security vs. Trivy and other solutions. Updated: April 2025.
849,190 professionals have used our research since 2012.