CrowdStrike Falcon vs Symantec Endpoint Detection and Response comparison

CrowdStrike and Broadcom are both solutions in the Endpoint Detection and Response (EDR) category. CrowdStrike is ranked #1 with an average rating of 8.8, while Broadcom is ranked #25 with an average rating of 7.6. CrowdStrike holds a 16.7% mindshare in EDR, compared to Broadcom’s 0.5% mindshare. Additionally, 97% of CrowdStrike users are willing to recommend the solution, compared to 86% of Broadcom users who would recommend it.

CrowdStrike Falcon

Read 122 CrowdStrike Falcon reviews

32,262 Views
24,096 Comparison Views

97% willing to recommend

Symantec Endpoint Detection...

Read 30 Symantec Endpoint Detection and Response reviews

1,405 Views
834 Comparison Views

86% willing to recommend

CrowdStrike Falcon

Symantec Endpoint Detection...

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Nov 24, 2024

CrowdStrike Falcon and Symantec Endpoint Detection and Response compete in endpoint security. Symantec's features justify its price, while CrowdStrike is praised for its support and pricing.

Features: CrowdStrike Falcon offers versatile detection capabilities, robust threat intelligence, and seamless integration. Symantec Endpoint Detection and Response is noted for comprehensive threat analysis, advanced filtering, and automated response. Symantec's depth in threat analysis provides a unique edge.

Room for Improvement: Users of CrowdStrike Falcon suggest enhancements in reporting, a more intuitive navigation structure, and improved user interface. Symantec Endpoint Detection and Response users point to the need for performance optimization, fewer false positives, and reduced system resource usage.

Ease of Deployment and Customer Service: CrowdStrike Falcon is noted for quick deployment and responsive customer service. Symantec users also report straightforward setup but note occasional delays in support responses. CrowdStrike's faster deployment and prompt support give it a slight advantage.

Pricing and ROI: CrowdStrike Falcon users find the setup cost competitive and high ROI. Symantec users recognize the higher initial cost but note the comprehensive feature set justifies it. CrowdStrike delivers higher ROI due to lower initial costs, while Symantec’s features may make its higher price worthwhile for some organizations.

To learn more, read our detailed CrowdStrike Falcon vs. Symantec Endpoint Detection and Response Report (Updated: December 2024).

Buyer's Guide

CrowdStrike Falcon vs. Symantec Endpoint Detection and Response

December 2024

Download the complete report

Helped 824,067 peers since 2012

Categories and Ranking

CrowdStrike Falcon

Ranking in Endpoint Detection and Response (EDR)

1st

Average Rating

8.6

Reviews Sentiment

7.4

Number of Reviews

122

Ranking in other categories

Security Information and Event Management (SIEM) (6th), Endpoint Protection Platform (EPP) (3rd), Identity Management (IM) (6th), Threat Intelligence Platforms (2nd), Active Directory Management (2nd), Extended Detection and Response (XDR) (1st), Attack Surface Management (ASM) (1st), Ransomware Protection (1st), Identity Threat Detection and Response (ITDR) (3rd), AI-Powered Cybersecurity Platforms (2nd)

Symantec Endpoint Detection...

Ranking in Endpoint Detection and Response (EDR)

25th

Average Rating

7.6

Reviews Sentiment

7.2

Number of Reviews

Ranking in other categories

No ranking in other categories

Mindshare comparison

As of December 2024, in the Endpoint Detection and Response (EDR) category, the mindshare of CrowdStrike Falcon is 16.7%, up from 12.7% compared to the previous year. The mindshare of Symantec Endpoint Detection and Response is 0.5%, down from 0.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Endpoint Detection and Response (EDR)

Featured Reviews

Chintan-Vyas

Associate Director at KPMG

Easy to set up with good behavior-based analysis but needs a single-click recovery option

Most organizations are currently looking for a scheduled scan to meet their compliance needs. Other players like Symantec and Trend Micro, FireEye, et cetera, are still providing the signature-based regular scheduled scans also, which is not available in CrowdStrike. That is one parameter that we feel should be there in CrowdStrike. CrowdStrike is only working on the dynamic or the files under execution. CrowdStrike is not scanning the static files. The product could be more accurate in terms of performance. We'd like to have a single-click recovery option. With some machines getting corrupted by malware, we need an easy way to start with a blank slate if things happen. That one feature should be there in the EDR.

Read full review

YusufAhmed

Information Security Specialist at IHV-Nigeria

Easy to use and competitively priced

Honestly, the product needs to continue the way it is, and I feel that everything will be fine. I haven't had any reasons to complain about the product. The product doesn’t offer MDM functionality under its current licensing model. In the future, I want the product to offer MDM. It can allow me to manage my mobile device more efficiently and effectively. Currently, there is a need for a separate license to be added to Symantec Endpoint Detection and Response to be able to use the MDM part. If both are bundled up under the same license, the administration part can be made easier.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"Falcon's best feature is its detection and blocking of threats."

"The features we showcase to potential customers are prevention, malware protection, zero-day protection, and application scripting. Vulnerability assessment is another valuable feature."

"The EDR and XDR features have been most valuable."

"I like the Overwatch feature the most."

"The most valuable aspects of CrowdStrike Falcon for me are its device observability, identification, and software and OS recognition."

"The detection is very effective."

"This solution consistently releases improvements. They have communicated their next two years of development which is powerful and covers all of our needs."

"Probably the most valuable thing to me is the real-time response piece. The fact that I can connect to an endpoint as long as it is on the Internet, no matter where it is globally. I can remove files from the endpoint, drop files on the endpoint, stop processes, reboot it, run custom scripts, and deploy software. Pretty much no other tool can do all that."

More CrowdStrike Falcon pros

"Symantec Endpoint Detection and Response is stable."

"A great feature of this solution is that it is very well-integrated with antivirus software. Other ADR solutions are implemented as single technologies and are not integrated with the provider, but Symantec offers AV plus ADR."

"The setup is quite easy."

"IPS and the user interface are good features."

"The interface is quite easy to use."

"The security is good."

"I've mainly found the antivirus and antispyware features valuable. The documentation is okay as well."

"The solution is scalable."

More Symantec Endpoint Detection and Response pros

Cons

"In the future release of CrowdStrike Falcon, they should add a sandbox feature."

"The UI is not efficient."

"Basically, they don't cover legacy OS or applications. That's the only issue we're concerned about"

"CrowdStrike Falcon could improve by adding manual scanning or serverless scanning. It is not available at this time."

"CS Falcon sensing capabilities for non-domain machines should be enhanced since the agent doesn't detect the neighbor's IP Address and/or any anomaly which was identified in the network for the non-domain machine."

"On the firewall management side, there should be more granularity. There should also be more granularity for device control. Everything else is brilliant."

"Improvement is always possible. It's challenging to gauge how much future mitigation is provided, especially since we've only been using the product for about one and a half years. Every product faces this challenge because nothing is ever completely foolproof. So, besides relying on technology, we also focus on increasing our staff's awareness of security issues. Feedback from my colleagues suggests that the reporting and dashboarding of incidents could be improved."

"I would rate it an eight out of ten. It does what it needs to do but there's always room for improvement."

More CrowdStrike Falcon cons

"A significant deterioration in customer support."

"The solution can always be more stable and more secure."

"In the future, it would be nice to have playbooks in the tool, to allow for some of the common activities to be automated. For example, some of the scannings of the malware can be too manual for a specific device. Additionally, a vulnerability manager would be beneficial."

"Symantec Endpoint Detection and Response could improve the reporting. It is very difficult to create reports from the user interface."

"They do need to minimize the number of agents installed on a server."

"It should be easier to deploy Symantec's client for end-users."

"It is not possible to buy it from the company itself, or resellers in other countries. If it is available, I see that it is offered as part of a larger service. For me, this was not suitable."

"One potential area for improvement in Symantec EDR is the reporting engine."

More Symantec Endpoint Detection and Response cons

Pricing and Cost Advice

"The solution's pricing is great for us."

"CrowdStrike Falcon is more expensive than other EDR solutions with similar features."

"Annual licensing."

"Different components are additional price points. We got the components that were right for us, but other organizations may require more (or less) components to suit their needs."

"In my opinion, the pricing of CrowdStrike Falcon seems aggressive."

"The solution isn't very costly; it's affordable."

"The price is fixed with no room for negotiation."

"The price of CrowdStrike Falcon is reasonable."

More CrowdStrike Falcon pricing and cost advice

"We are satisfied with the pricing."

"We have a yearly subscription, and the pricing is fair."

"The product is cheap."

"The price is okay, but it really depends on the customer's requirements."

"The price is reasonable."

"Compared to the tools of competitors, Symantec Endpoint Detection and Response is a cheaply priced product."

"We pay around $100,000 for 5000 licenses every year."

"Symantec Endpoint Detection and Response is expensive."

More Symantec Endpoint Detection and Response pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Endpoint Detection and Response (EDR) solutions are best for your needs.

See recommendations

824,067 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

15%

Financial Services Firm

10%

Manufacturing Company

Government

Computer Software Company

14%

Financial Services Firm

13%

Retailer

11%

Manufacturing Company

10%

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

Comparing CrowdStrike Falcon to Cortex XDR (Palo Alto)

Cortex XDR by Palo Alto vs. CrowdStrike Falcon Both Cortex XDR and Crowd Strike Falcon offer cloud-based solutions that are very scalable, secure, and user-friendly. Cortex XDR by Palo Alto offers ...

See all answers

How does Crowdstrike Falcon compare with Darktrace?

Both of these products perform similarly and have many outstanding attributes. CrowdStrike Falcon offers an amazing user interface that makes setup easy and seamless. CrowdStrike Falcon offers a cl...

See all answers

How does Microsoft Defender for Endpoint compare with Crowdstrike Falcon?

The CrowdStrike solution delivers a lot of information about incidents. It has a very light sensor that will never push your machine hardware to "test", you don't have the usual "scan now" feature ...

See all answers

What do you like most about Symantec Endpoint Detection and Response?

The security is good.

See all answers

What is your experience regarding pricing and costs for Symantec Endpoint Detection and Response?

I am not aware of the pricing details, as that falls under the management's responsibility.

See all answers

What needs improvement with Symantec Endpoint Detection and Response?

There are several areas where Symantec Endpoint Detection and Response can improve, including shell features, web control, asset management, and device control. Specifically, the application contro...

See all answers

Comparisons

Microsoft Defender XDR vs CrowdStrike Falcon

Compared 6% of the time

Microsoft Defender for Endpoint vs CrowdStrike Falcon

Compared 5% of the time

Darktrace vs CrowdStrike Falcon

Compared 4% of the time

Kaspersky Endpoint Detection and Response vs CrowdStrike Falcon

Compared 4% of the time

Symantec Endpoint Security vs CrowdStrike Falcon

Compared 3% of the time

More CrowdStrike Falcon Competitors

Kaspersky Endpoint Detection and Response Expert vs Symantec Endpoint Detection and Response

Compared 24% of the time

Trend Vision One vs Symantec Endpoint Detection and Response

Compared 17% of the time

Cisco Secure Endpoint vs Symantec Endpoint Detection and Response

Compared 12% of the time

Microsoft Defender for Endpoint vs Symantec Endpoint Detection and Response

Compared 12% of the time

Elastic Security vs Symantec Endpoint Detection and Response

Compared 6% of the time

More Symantec Endpoint Detection and Response Competitors

Product Reports

Buyer's Guide

CrowdStrike Falcon

December 2024

Download CrowdStrike Falcon product report

Buyer's Guide

Symantec Endpoint Detection and Response

November 2024

Symantec Endpoint Detection and Response report

Download Symantec Endpoint Detection and Response product report

Also Known As

CrowdStrike Falcon, CrowdStrike Falcon XDR, CrowdStrike Falcon Threat Intelligence, CrowdStrike Identity Protection, CrowdStrike Falcon Surface

No data available

Learn More

CrowdStrike

Broadcom

Overview

CrowdStrike Falcon provides endpoint protection and threat intelligence using a cloud-based platform for real-time detection and response. Its minimal impact on system performance and ease of deployment are key benefits along with advanced logging and reporting for compliance and forensic analysis.

CrowdStrike Falcon is known for its efficacy in identifying malware, ransomware, and sophisticated cyber threats. The platform's cloud-native architecture and advanced AI capabilities ensure comprehensive endpoint visibility and rapid response times. Users appreciate the lightweight agent and seamless deployment process, along with detailed reporting features. Integration with security tools and efficient customer support are essential features, although some users highlight high pricing, occasional detection delays, and challenges with integration. Frequent alerts and the mobile app's performance are areas for improvement.

What are the key features of CrowdStrike Falcon?

Real-time Threat Detection: Provides immediate threat identification and response.
Lightweight Agent: Minimal impact on system performance.
Cloud-native Architecture: Ensures flexibility and scalability.
Advanced AI Capabilities: Enhances threat detection and prevention.
Comprehensive Endpoint Visibility: Complete insight into endpoint activities.
Detailed Reporting: Facilitates compliance and forensic analysis.
Security Tool Integration: Seamless integration with other tools.
Efficient Customer Support: Robust support services.

What are the benefits or ROI of CrowdStrike Falcon?

Improved Threat Detection: Identifies sophisticated threats, reducing risk.
Enhanced System Performance: Lightweight agent ensures minimal disruption.
Faster Response Times: Swift reaction to incidents minimizes damage.
Better Compliance: Detailed logs meet regulatory requirements.
Streamlined Deployment: Easy to implement with minimal downtime.

In industries like finance, healthcare, and retail, CrowdStrike Falcon is often used for critical security due to its robust threat detection capabilities. Financial firms value its rapid response and detailed reporting for compliance, while healthcare providers appreciate the minimal system performance impact. Retailers benefit from its comprehensive endpoint visibility and integration with other security tools.

Symantec Endpoint Detection and Response (EDR) is a powerful security solution designed to help organizations proactively detect, investigate, and mitigate advanced threats across their endpoint environments. As part of Broadcom's cybersecurity portfolio, Symantec EDR provides comprehensive visibility into endpoint activities, enabling security teams to quickly identify and respond to threats that evade traditional defenses.

Symantec EDR leverages machine learning, behavioral analysis, and global threat intelligence from Symantec's vast network to detect sophisticated threats, including zero-day attacks, ransomware, and advanced persistent threats (APTs). This allows organizations to identify malicious activities early and respond swiftly to mitigate potential damage. The solution offers automated response options that enable security teams to contain and remediate threats quickly.

Symantec EDR provides detailed forensic capabilities, allowing security analysts to dive deep into endpoint data, investigate incidents thoroughly, and understand the scope and impact of attacks. Features such as timeline analysis, incident graphing, and the ability to isolate endpoints enhance investigative efforts and support effective remediation strategies.

With its centralized management console, Symantec EDR offers visibility across the entire endpoint environment, regardless of the operating systems or whether endpoints are on-premise or remote. Symantec EDR seamlessly integrates with other Symantec security solutions, enhancing its detection capabilities and enabling a unified approach to threat management. Its scalable architecture ensures that businesses of all sizes can benefit from its advanced security features without compromising performance.

Quickly discover and resolve threats with deep endpoint visibility and superior detection analytics, reducing mean time to remediation. Overcome cyber security skills shortages and streamline SOC operations with extensive automation and built-in integrations for sandboxing, SIEM, and orchestration.

Fortify security teams with the unmatched expertise and global scale of Symantec Managed Endpoint Detection and Response services.
Roll out Endpoint Detection and Response (EDR) across Windows, macOS, and Linux devices using Symantec Endpoint Protection (SEP)-integrated EDR or a dissolvable agent.

Buyer's Guide

CrowdStrike Falcon vs. Symantec Endpoint Detection and Response

December 2024

Free Report: CrowdStrike Falcon vs. Symantec Endpoint Detection and Response

Find out what your peers are saying about CrowdStrike Falcon vs. Symantec Endpoint Detection and Response and other solutions. Updated: December 2024.

DOWNLOAD NOW

824,067 professionals have used our research since 2012.

See our CrowdStrike Falcon vs. Symantec Endpoint Detection and Response report.

See our list of best Endpoint Detection and Response (EDR) vendors.

We monitor all Endpoint Detection and Response (EDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.