Try our new research platform with insights from 80,000+ expert users

CrowdStrike Falcon vs Microsoft Defender External Attack Surface Management comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

CrowdStrike Falcon
Ranking in Attack Surface Management (ASM)
1st
Average Rating
8.6
Reviews Sentiment
7.4
Number of Reviews
126
Ranking in other categories
Security Information and Event Management (SIEM) (6th), Endpoint Protection Platform (EPP) (2nd), Threat Intelligence Platforms (2nd), Endpoint Detection and Response (EDR) (1st), Extended Detection and Response (XDR) (1st), Identity Threat Detection and Response (ITDR) (3rd), AI-Powered Cybersecurity Platforms (1st), Continuous Threat Exposure Management (CTEM) (2nd)
Microsoft Defender External...
Ranking in Attack Surface Management (ASM)
12th
Average Rating
7.6
Reviews Sentiment
6.0
Number of Reviews
2
Ranking in other categories
Microsoft Security Suite (34th)
 

Mindshare comparison

As of April 2025, in the Attack Surface Management (ASM) category, the mindshare of CrowdStrike Falcon is 18.7%, down from 29.4% compared to the previous year. The mindshare of Microsoft Defender External Attack Surface Management is 2.8%, up from 2.8% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Attack Surface Management (ASM)
 

Featured Reviews

Chintan-Vyas - PeerSpot reviewer
Easy to set up with good behavior-based analysis but needs a single-click recovery option
Most organizations are currently looking for a scheduled scan to meet their compliance needs. Other players like Symantec and Trend Micro, FireEye, et cetera, are still providing the signature-based regular scheduled scans also, which is not available in CrowdStrike. That is one parameter that we feel should be there in CrowdStrike. CrowdStrike is only working on the dynamic or the files under execution. CrowdStrike is not scanning the static files. The product could be more accurate in terms of performance. We'd like to have a single-click recovery option. With some machines getting corrupted by malware, we need an easy way to start with a blank slate if things happen. That one feature should be there in the EDR.
AndyChan3 - PeerSpot reviewer
Enhanced visibility and exposes vulnerabilities but needs more integration
I am currently in the pilot stage of implementing Microsoft External Attack Surface Management (EASM). My organization is transitioning to a comprehensive track of Microsoft solutions, and we will move to full-scale production in another year, maybe Microsoft External Attack Surface Management…

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"CrowdStrike enables the infrastructure managers to visualize all the events and get information about the network."
"I like the Overwatch feature the most."
"The detection and response console is the most valuable feature."
"The most valuable aspects of CrowdStrike Falcon for me are its device observability, identification, and software and OS recognition."
"Cyberattack detection is very good. We use it for detecting different vulnerabilities, such as ransomware, virus, and malware. It is a good product today when compared to Symantec that we used previously."
"The initial setup was straightforward."
"The anomaly detection is the most valuable feature."
"All the features are beneficial."
"It seems to be better at protecting from cyberattacks."
"Microsoft External Attack Surface Management helps improve the visibility of my exposed vulnerabilities and provides an overview of my security posture across the globe."
"Microsoft External Attack Surface Management helps improve the visibility of my exposed vulnerabilities and provides an overview of my security posture across the globe."
 

Cons

"CrowdStrike costs a little more than its competitors."
"The pricing is a bit too high."
"CrowdStrike Falcon needs to improve their host management system."
"The price is too high."
"The support for different OS versions needs improvement because sometimes due to business conditions, updating our OS is impossible."
"The biggest issue with Falcon as a standalone product is it doesn't have very much reporting."
"The GUI can use improvement, it's cloud-based so sometimes the interface can be a bit slow. The interface could use a little bit more speed."
"The solution should have included remote wipe capability out of the box."
"The integration is not as seamless compared to competitors like Palo Alto."
"Further integration across different Microsoft products would be an improvement."
"With Microsoft, support is always crazy, it's not easy to get support."
 

Pricing and Cost Advice

"There is no license required to use this solution."
"The price of CrowdStrike Falcon is expensive."
"The cost of CrowdStrike Falcon in Latin America seems high relative to the economic conditions in the region."
"Years ago, when we bought CrowdStrike, you got everything it had. I was a little concerned when they broke this out into a la carte modules where you can buy EDR, Spotlight, etc., picking and choosing off the menu. I was a little worried that the solution would get watered down. However, I realized in my previous organization when we had the full suite that there were a bunch of features in it that we didn't have time to operationalize. So, I warmed up to it. I get the whole, "Look, you can pick and choose. Okay, everybody buys a steak, but do you want mashed potatoes, or do you want lobster mac and cheese?" So, you can pick the sides that you want, so you can buy the solution that you want and operationalize versus paying a lot of money and getting a bunch of things, but not using 60 percent of the tools in the box."
"This solution offers annual subscriptions. The pricing for this solution could be reduced."
"There are approximately a hundred different modules you have to purchase, depending on what you want to do. I have most of the modules. How it works is you buy the portfolio, you have to decide all the components you want in it, and then they price out a bundle for you. I have almost all of the package features in my bundle. You only need to pay for the modules you want."
"The cost is usually a challenge in the industry. I think we pay around sixty-eight dollars."
"The pricing and licensing are reasonable. I don't think we are getting charged more than what it is worth. It is fair, but I do not like how it is a la carte. I realize they do that so other organizations can buy and get the agent, getting it cheaper than you could otherwise. However, if you want the main core package, which has all the main features with the exception of maybe the multi-cloud protections, that can get pricier for an organization. So, you have to pick and choose what you want. I do not care for a la carte pricing."
Information not available
report
Use our free recommendation engine to learn which Attack Surface Management (ASM) solutions are best for your needs.
848,716 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
15%
Financial Services Firm
10%
Manufacturing Company
9%
Government
7%
Computer Software Company
18%
Financial Services Firm
11%
Manufacturing Company
6%
Insurance Company
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

Comparing CrowdStrike Falcon to Cortex XDR (Palo Alto)
Cortex XDR by Palo Alto vs. CrowdStrike Falcon Both Cortex XDR and Crowd Strike Falcon offer cloud-based solutions that are very scalable, secure, and user-friendly. Cortex XDR by Palo Alto offers ...
How does Crowdstrike Falcon compare with Darktrace?
Both of these products perform similarly and have many outstanding attributes. CrowdStrike Falcon offers an amazing user interface that makes setup easy and seamless. CrowdStrike Falcon offers a cl...
How does Microsoft Defender for Endpoint compare with Crowdstrike Falcon?
The CrowdStrike solution delivers a lot of information about incidents. It has a very light sensor that will never push your machine hardware to "test", you don't have the usual "scan now" feature ...
What needs improvement with Microsoft Defender External Attack Surface Management?
Further integration across different Microsoft products would be an improvement. Introduction of more AI automation into the products would also be beneficial. The integration is not as seamless co...
What is your primary use case for Microsoft Defender External Attack Surface Management?
I am currently in the pilot stage of implementing Microsoft External Attack Surface Management (EASM). My organization is transitioning to a comprehensive track of Microsoft solutions, and we will ...
 

Also Known As

CrowdStrike Falcon, CrowdStrike Falcon XDR, CrowdStrike Falcon Threat Intelligence, CrowdStrike Identity Protection, CrowdStrike Falcon Surface
No data available
 

Overview

Find out what your peers are saying about CrowdStrike Falcon vs. Microsoft Defender External Attack Surface Management and other solutions. Updated: February 2025.
848,716 professionals have used our research since 2012.