Try our new research platform with insights from 80,000+ expert users

CrowdStrike Falcon vs Symantec Endpoint Detection and Response comparison

CrowdStrike and Broadcom are both solutions in the Endpoint Detection and Response (EDR) category. CrowdStrike is ranked #1 with an average rating of 8.6, while Broadcom is ranked #28 with an average rating of 7.4. CrowdStrike holds a 14.4% mindshare in EDR, compared to Broadcom’s 0.5% mindshare. Additionally, 96% of CrowdStrike users are willing to recommend the solution, compared to 86% of Broadcom users who would recommend it.
CrowdStrike Falcon
Read 132 CrowdStrike Falcon reviews
  • 55,388 Views
  • 28,802 Comparison Views
96% willing to recommend
Symantec Endpoint Detection...
Read 30 Symantec Endpoint Detection and Response reviews
  • 1,209 Views
  • 1,149 Comparison Views
86% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Jun 15, 2025

CrowdStrike Falcon and Symantec Endpoint Detection and Response compete in endpoint security. Symantec's features justify its price, while CrowdStrike is praised for its support and pricing.

Features: CrowdStrike Falcon offers versatile detection capabilities, robust threat intelligence, and seamless integration. Symantec Endpoint Detection and Response is noted for comprehensive threat analysis, advanced filtering, and automated response. Symantec's depth in threat analysis provides a unique edge.

Room for Improvement: Users of CrowdStrike Falcon suggest enhancements in reporting, a more intuitive navigation structure, and improved user interface. Symantec Endpoint Detection and Response users point to the need for performance optimization, fewer false positives, and reduced system resource usage.

Ease of Deployment and Customer Service: CrowdStrike Falcon is noted for quick deployment and responsive customer service. Symantec users also report straightforward setup but note occasional delays in support responses. CrowdStrike's faster deployment and prompt support give it a slight advantage.

Pricing and ROI: CrowdStrike Falcon users find the setup cost competitive and high ROI. Symantec users recognize the higher initial cost but note the comprehensive feature set justifies it. CrowdStrike delivers higher ROI due to lower initial costs, while Symantec’s features may make its higher price worthwhile for some organizations.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed CrowdStrike Falcon vs. Symantec Endpoint Detection and Response Report (Updated: June 2025).
Buyer's Guide
CrowdStrike Falcon vs. Symantec Endpoint Detection and Response
June 2025
Download the complete report
Helped 861,524 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

CrowdStrike Falcon
Ranking in Endpoint Detection and Response (EDR)
1st
Average Rating
8.6
Reviews Sentiment
7.3
Number of Reviews
132
Ranking in other categories
Security Information and Event Management (SIEM) (6th), Endpoint Protection Platform (EPP) (2nd), Threat Intelligence Platforms (1st), Extended Detection and Response (XDR) (1st), Attack Surface Management (ASM) (1st), Identity Threat Detection and Response (ITDR) (2nd), AI-Powered Cybersecurity Platforms (1st)
Symantec Endpoint Detection...
Ranking in Endpoint Detection and Response (EDR)
28th
Average Rating
7.6
Reviews Sentiment
7.2
Number of Reviews
30
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of July 2025, in the Endpoint Detection and Response (EDR) category, the mindshare of CrowdStrike Falcon is 14.4%, down from 15.6% compared to the previous year. The mindshare of Symantec Endpoint Detection and Response is 0.5%, up from 0.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Endpoint Detection and Response (EDR)
 

Featured Reviews

Waleed Omar - PeerSpot reviewer
Provides effective real-time threat detection with potential for cost optimization
Some features such as device control, firewall management, and file analysis are standalone products that we need to purchase separately. If these features came out of the box within the product, it would be much more beneficial for us. Other providers such as SentinelOne include these features in their base product. We attended a CrowdStrike Falcon event where they discussed some shallow AI features, but we cannot see these in our panel yet. We work with different solutions such as Darktrace and SocRadar, where AI features are automatically displayed in our dashboards after release. However, for CrowdStrike Falcon, we cannot see these features.
Read full review
YusufAhmed - PeerSpot reviewer
Easy to use and competitively priced
Honestly, the product needs to continue the way it is, and I feel that everything will be fine. I haven't had any reasons to complain about the product. The product doesn’t offer MDM functionality under its current licensing model. In the future, I want the product to offer MDM. It can allow me to manage my mobile device more efficiently and effectively. Currently, there is a need for a separate license to be added to Symantec Endpoint Detection and Response to be able to use the MDM part. If both are bundled up under the same license, the administration part can be made easier.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"It has definitely minimized resources. When everything was on-prem, there was a lot more work maintaining it. One of the big value tickets: I don't have lists of hundreds of exceptions for certain applications that I have to maintain, add, delete, and move. The very nature of the product has lessened my workload considerably."
"From what we have seen, it is very scalable. We have recently acquired a company where someone had a ransomware attack when we joined networks. Within the course of just a few days, we were able to easily get CrowdStrike rolled out to about 300 machines. That also included the removal of that company's legacy anti-malware tool."
"Cyberattack detection is very good. We use it for detecting different vulnerabilities, such as ransomware, virus, and malware. It is a good product today when compared to Symantec that we used previously."
"The most valuable feature of CrowdStrike Falcon is its accuracy."
"Scalability hasn't been an issue for us."
"CrowdStrike Falcon has a ransom detection time of less than 50 seconds."
"The stability is very good."
"The most valuable feature is the indicator of compromise, which show you what file was either quarantined or removed."
More CrowdStrike Falcon pros
"It is mostly used for malware detection and antivirus purposes."
"There are times when Symantec Endpoint Detection and Response tags an executable as malicious when it is trying to get executed on the machine. In this case, it prevents the execution and it gives you a process view of things where you can look into what has happened and whether it is a genuine process trying to access some system activities, or it's a malicious one. Depending upon the process, it gives you a clear identification, and we can do the containment from the interface itself and isolate the machine from the network. The process review on network isolation is good."
"The solution is stable."
"I've mainly found the antivirus and antispyware features valuable. The documentation is okay as well."
"The most valuable features of the solution are that it is easy to use and has good support."
"The most valuable features of Symantec Endpoint Detection and Response are its immediate response and investigation."
"The solution does all that we expect it to do."
"The most valuable features of this product include network isolation for machines and the ability to work with a consistent and defined set of virtual machines."
More Symantec Endpoint Detection and Response pros
 

Cons

"If CrowdStrike can further expand its support for XDR compatibility, that would give it an edge over all the other competing new products."
"CrowdStrike needs to quit making up stuff about its features and functionality to bash its competition."
"CrowdStrike Falcon by itself does not supply in-depth reporting."
"The performance could be better."
"Technical support could be better than what is currently offered."
"The console is not user-friendly or visually appealing and has room for improvement."
"They respond quickly on the weekdays, but the weekend response times are slower."
"They need to strengthen the forensic capabilities of this product, for e-discovery."
More CrowdStrike Falcon cons
"One potential area for improvement in Symantec EDR is the reporting engine."
"The solution’s scalability and stability could be improved."
"They need to improve their cloud presence."
"Reporting is a major issue, as it is not user friendly."
"It would be beneficial to have more integration and compatibility with other platforms."
"The GUI could be better."
"The interface is very complicated."
"The solution can always be more stable and more secure."
More Symantec Endpoint Detection and Response cons
 

Pricing and Cost Advice

"This solution offers annual subscriptions. The pricing for this solution could be reduced."
"When it comes to licensing, customers can choose a bundle or select licences based on the specific features they would like access to. This solution comes with premium pricing. It is approximately 20 to 30% more expensive than competing solutions."
"CrowdStrike Falcon is more expensive than other EDR solutions with similar features."
"I'm not directly involved in sales, so I can't comment on the exact price, but I know the price decreases the higher the quantity we purchase."
"The pricing is good and there are no costs in addition to the standard licensing fees."
"Purchasing the product through the AWS Marketplace is just a click away. Since we were using the on-premise version of the product, we continued on the cloud by purchasing it through the AWS Marketplace."
"The pricing is definitely high but you get what you pay for, and it's not so high that it prices itself out of the market."
"The price is too high."
More CrowdStrike Falcon pricing and cost advice
"We pay around $100,000 for 5000 licenses every year."
"Symantec Endpoint Detection and Response is expensive."
"It is an expensive solution."
"The price is reasonable."
"It's a yearly subscription."
"The product is cheap."
"We are satisfied with the pricing."
"Of late, because of the Broadcom purchase, its price has been increasing."
More Symantec Endpoint Detection and Response pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Endpoint Detection and Response (EDR) solutions are best for your needs.
See recommendations
861,524 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
15%
Financial Services Firm
10%
Manufacturing Company
9%
Government
7%
Computer Software Company
12%
Financial Services Firm
12%
Manufacturing Company
8%
University
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Comparing CrowdStrike Falcon to Cortex XDR (Palo Alto)
Cortex XDR by Palo Alto vs. CrowdStrike Falcon Both Cortex XDR and Crowd Strike Falcon offer cloud-based solutions that are very scalable, secure, and user-friendly. Cortex XDR by Palo Alto offers ...
See all answers
How does Crowdstrike Falcon compare with Darktrace?
Both of these products perform similarly and have many outstanding attributes. CrowdStrike Falcon offers an amazing user interface that makes setup easy and seamless. CrowdStrike Falcon offers a cl...
See all answers
How does Microsoft Defender for Endpoint compare with Crowdstrike Falcon?
The CrowdStrike solution delivers a lot of information about incidents. It has a very light sensor that will never push your machine hardware to "test", you don't have the usual "scan now" feature ...
See all answers
What do you like most about Symantec Endpoint Detection and Response?
The security is good.
See all answers
What is your experience regarding pricing and costs for Symantec Endpoint Detection and Response?
I am not aware of the pricing details, as that falls under the management's responsibility.
See all answers
What needs improvement with Symantec Endpoint Detection and Response?
There are several areas where Symantec Endpoint Detection and Response can improve, including shell features, web control, asset management, and device control. Specifically, the application contro...
See all answers
 

Comparisons

Microsoft Defender for Endpoint vs CrowdStrike Falcon Logo
Microsoft Defender for Endpoint vs CrowdStrike Falcon
Compared 5% of the time
Kaspersky Endpoint Detection and Response vs CrowdStrike Falcon Logo
Kaspersky Endpoint Detection and Response vs CrowdStrike Falcon
Compared 3% of the time
Darktrace vs CrowdStrike Falcon Logo
Darktrace vs CrowdStrike Falcon
Compared 3% of the time
Microsoft Defender XDR vs CrowdStrike Falcon Logo
Microsoft Defender XDR vs CrowdStrike Falcon
Compared 3% of the time
Wazuh vs CrowdStrike Falcon Logo
Wazuh vs CrowdStrike Falcon
Compared 3% of the time
More CrowdStrike Falcon Competitors
Kaspersky Endpoint Detection and Response Expert vs Symantec Endpoint Detection and Response Logo
Kaspersky Endpoint Detection and Response Expert vs Symantec Endpoint Detection and Response
Compared 18% of the time
Cisco Secure Endpoint vs Symantec Endpoint Detection and Response Logo
Cisco Secure Endpoint vs Symantec Endpoint Detection and Response
Compared 12% of the time
Kaspersky Endpoint Security Cloud vs Symantec Endpoint Detection and Response Logo
Kaspersky Endpoint Security Cloud vs Symantec Endpoint Detection and Response
Compared 10% of the time
Trend Vision One vs Symantec Endpoint Detection and Response Logo
Trend Vision One vs Symantec Endpoint Detection and Response
Compared 9% of the time
SentinelOne Singularity Complete vs Symantec Endpoint Detection and Response Logo
SentinelOne Singularity Complete vs Symantec Endpoint Detection and Response
Compared 6% of the time
More Symantec Endpoint Detection and Response Competitors
 

Product Reports

Buyer's Guide
CrowdStrike Falcon
July 2025
CrowdStrike Falcon reportDownload CrowdStrike Falcon product report
Buyer's Guide
Symantec Endpoint Detection and Response
June 2025
Symantec Endpoint Detection and Response reportDownload Symantec Endpoint Detection and Response product report
 

Also Known As

CrowdStrike Falcon, CrowdStrike Falcon XDR, CrowdStrike Falcon Threat Intelligence, CrowdStrike Identity Protection, CrowdStrike Falcon Surface
No data available
 

Overview

CrowdStrike Falcon provides endpoint protection and threat intelligence using a cloud-based platform for real-time detection and response. Its minimal impact on system performance and ease of deployment are key benefits along with advanced logging and reporting for compliance and forensic analysis.

CrowdStrike Falcon is known for its efficacy in identifying malware, ransomware, and sophisticated cyber threats. The platform's cloud-native architecture and advanced AI capabilities ensure comprehensive endpoint visibility and rapid response times. Users appreciate the lightweight agent and seamless deployment process, along with detailed reporting features. Integration with security tools and efficient customer support are essential features.

What are the key features of CrowdStrike Falcon?

  • Real-time Threat Detection: Provides immediate threat identification and response.
  • Lightweight Agent: Minimal impact on system performance.
  • Cloud-native Architecture: Ensures flexibility and scalability.
  • Advanced AI Capabilities: Enhances threat detection and prevention.
  • Comprehensive Endpoint Visibility: Complete insight into endpoint activities.
  • Detailed Reporting: Facilitates compliance and forensic analysis.
  • Security Tool Integration: Seamless integration with other tools.
  • Efficient Customer Support: Robust support services.

What are the benefits or ROI of CrowdStrike Falcon?

  • Improved Threat Detection: Identifies sophisticated threats, reducing risk.
  • Enhanced System Performance: Lightweight agent ensures minimal disruption.
  • Faster Response Times: Swift reaction to incidents minimizes damage.
  • Better Compliance: Detailed logs meet regulatory requirements.
  • Streamlined Deployment: Easy to implement with minimal downtime.

In industries like finance, healthcare, and retail, CrowdStrike Falcon is often used for critical security due to its robust threat detection capabilities. Financial firms value its rapid response and detailed reporting for compliance, while healthcare providers appreciate the minimal system performance impact. Retailers benefit from its comprehensive endpoint visibility and integration with other security tools.

CrowdStrike

Symantec Endpoint Detection and Response (EDR) is a powerful security solution designed to help organizations proactively detect, investigate, and mitigate advanced threats across their endpoint environments. As part of Broadcom's cybersecurity portfolio, Symantec EDR provides comprehensive visibility into endpoint activities, enabling security teams to quickly identify and respond to threats that evade traditional defenses.

Symantec EDR leverages machine learning, behavioral analysis, and global threat intelligence from Symantec's vast network to detect sophisticated threats, including zero-day attacks, ransomware, and advanced persistent threats (APTs). This allows organizations to identify malicious activities early and respond swiftly to mitigate potential damage. The solution offers automated response options that enable security teams to contain and remediate threats quickly.

Symantec EDR provides detailed forensic capabilities, allowing security analysts to dive deep into endpoint data, investigate incidents thoroughly, and understand the scope and impact of attacks. Features such as timeline analysis, incident graphing, and the ability to isolate endpoints enhance investigative efforts and support effective remediation strategies.

With its centralized management console, Symantec EDR offers visibility across the entire endpoint environment, regardless of the operating systems or whether endpoints are on-premise or remote. Symantec EDR seamlessly integrates with other Symantec security solutions, enhancing its detection capabilities and enabling a unified approach to threat management. Its scalable architecture ensures that businesses of all sizes can benefit from its advanced security features without compromising performance.

Quickly discover and resolve threats with deep endpoint visibility and superior detection analytics, reducing mean time to remediation. Overcome cyber security skills shortages and streamline SOC operations with extensive automation and built-in integrations for sandboxing, SIEM, and orchestration.

Fortify security teams with the unmatched expertise and global scale of Symantec Managed Endpoint Detection and Response services.
Roll out Endpoint Detection and Response (EDR) across Windows, macOS, and Linux devices using Symantec Endpoint Protection (SEP)-integrated EDR or a dissolvable agent.

Broadcom
Buyer's Guide
CrowdStrike Falcon vs. Symantec Endpoint Detection and Response
June 2025
Free Report: CrowdStrike Falcon vs. Symantec Endpoint Detection and Response
Find out what your peers are saying about CrowdStrike Falcon vs. Symantec Endpoint Detection and Response and other solutions. Updated: June 2025.
DOWNLOAD NOW
861,524 professionals have used our research since 2012.
See our CrowdStrike Falcon vs. Symantec Endpoint Detection and Response report.
See our list of best Endpoint Detection and Response (EDR) vendors.

We monitor all Endpoint Detection and Response (EDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.