CrowdStrike Falcon Complete MDR Reviews

We implemented this solution to secure everything in our environment, such as our endpoints, servers, and network.

EDR and Next-Generation Antivirus (NGAV) are good features. The Spotlight feature is also good, and it also can detect patching-related vulnerabilities. 

We have also been using Cisco AMP for Endpoints for three years. We have received multiple detections in Cisco AMP for Endpoints, and we had to take some actions, whereas CrowdStrike has not detected anything critical since it has been implemented. Most of the incidents that it has detected are false positives. They should work on the false-positive issue. When it is implemented throughout the organization, it gets very difficult to check each false positive and investigate what is correct and what is not correct. It requires technical and manual intervention.

I have been using this solution for two months.

It is stable and reliable.

We have not scaled it, but we have implemented it across the company.

They have been very responsive. There are no concerns about their service. 

We also use Cisco AMP for Endpoints. Cisco AMP for Endpoints is signature-based, and CrowdStrike is behavior-based. We have received multiple detections in Cisco AMP for Endpoints, whereas CrowdStrike has not detected anything critical since it has been implemented. There are a lot of false positives.

Both Cisco AMP for Endpoints and CrowdStrike are agent-based, but with Cisco AMP for Endpoints, we get a much slower system because it requires a lot of processing power, whereas CrowdStrike doesn't require a lot of processing power. 

In terms of pricing, CrowdStrike Falcon Complete is 50% more expensive than Cisco AMP for Endpoints.

Its price is very high. CrowdStrike Falcon Complete is 50% more expensive than Cisco AMP for Endpoints.

I can recommend this solution. It is definitely one of the best products in the market, but so many false positives are its minus point. Cisco AMP for Endpoints is better than this.

I would rate CrowdStrike Falcon Complete a seven out of ten.

We use the solution for AB protection and endpoint detection and response.

The real-time response features are valuable for us.  The depth of data that the agent collects is all very helpful, and on a forensic standpoint as well.

The documentation that they had for the use of their API's was not very helpful. It took us a lot of time to work through their API on how to do it programmatically. Aside from that, we really have not had very much trouble with Crowdstrike.

For an upcoming feature, adding more Linux support for real time response analytics would be helpful. This might be on their roadmap, or maybe even in a very pending release. 

We have been using the solution for approximately four months.

Comparing the stability of the solution to other similar products it is at the top.

The scalability was good.

The technical support has been good the entire time. We had the one issue with the APIs but we already dealt with that. The technical support has been good on all of our issues.

The setup is simple and the deployment is straightforward for the agents.

I did not give the solution a ten out of ten because there is always room for improvement.

I rate CrowdStrike Falcon Complete a nine out of ten.

CrowdStrike Falcon Complete is used to inform the IT or security analyst if there is something happening inside the endpoint. Additionally, the EDR can take an action by itself if there is something abnormal happening inside the endpoint.

If there is something wrong or not normal in the endpoint CrowdStrike Falcon Complete is very responsive. It will give an alert that is very useful and it takes action automatically. There at times needs to be some manual intervention but it is less often.

The solution needs to have human involvement, they could improve by having more automation where the solution can take the necessary action on time and more accurately.

I have been using this solution for approximately one year.

The solution is stable.

I have found the scalability very good.

We have approximately 1,000 users using this solution in my organization.

The technical support is excellent.

The installation is easy. We can install it through Windows Active Directory, send the files to the end-user to install it, or the IT department can install it remotely. The time it took for the full installation throughout our organization took 35 days.

We have four to five people that do the implementation and maintenance of the solution. 

The solution is priced fairly. For the features you receive, it is worth the money.

I would recommend this solution to others.

I rate CrowdStrike Falcon Complete ten out of ten.

It's an EDR group solution. We use it for behavioral-based analysis.

On our endpoints, we have signature-based and behavioral-based analyses, and we use CrowdStrike Falcon Complete for behavioral-based analyses. 

I think it has very good features that help dig deeper while doing an investigation. Its IOCs alerting mechanism is good. I think it is AI based and categorizes behaviors which are unusual.

CrowdStrike Falcon Complete has good instrumentation, and the user interface is good too.

Pricing is definitely a problem. It could be cheaper for licensing.

I've been using CrowdStrike Falcon Complete for 5 years.

It is stable.

It is scalable as well. It's a cloud-based solution, so I don't doubt the scalability. I think it's good.

We have 6,000 end users who are using it.

The technical support is good. You raise a complaint, and they respond immediately.

The installation was smooth and didn't take much time.

We did it by ourselves. We have two or three engineers who run it and perform the rolling, installation, and upgrades.

We have a yearly license, and it could be cheaper.

We evaluated Trend Micro and Sophos before choosing CrowdStrike Falcon Complete.

CrowdStrike Falcon Complete is great, and I would rate it at eight on a scale from one to ten.

If you go with this solution, I think that you should also obtain another service called Hybrid Analysis, the premium edition. I think with this, you'll get malware samples you can correlate, and it will be a good tool for the SOC team.

It is working well. I tried a ransomware attack myself, and they were very fast in mitigating. I am very convinced of this product, and I am very satisfied with how it is working.

The team behind the program itself is very valuable. If you don't have your own security team, they can do a great job for you. If your IT team isn't in the company, this can be of great value to you.

Its documentation is very good. They have many different dashboards, and they do have a lot of information. Sometimes, it can be a bit overwhelming how much information is there, but once you find your way through with them, everything is very logical.

Some dashboards can be very complex, but once you get to know them, it is very logical.

I have been using this solution since 2019.

It is absolutely stable.

It is very scalable. It really doesn't matter whether you are a company using 100 endpoints or more than 2,000 endpoints. We have around 1,700 people in our company. There are around 200 people that need to be onboarded again.

They were very fast in responding. If you have a technical question, it only takes a couple of hours before they answer your questions. They are very skilled.

We had Symantec endpoints previously. They were very traditional points. There isn't a resemblance between these two solutions because CrowdStrike is more into machine learning in terms of the behavior of the system. Symantec is more of a traditional antivirus that starts scanning your computer and new files. They both are very different in the way they work.

Its setup is fairly basic. It is not very complex. We had the support of the Falcon Complete team to set it up. It took a couple of days.

 The Falcon Complete team introduced the platform.

It is a fairly firm price. It is not the cheapest solution, but if you take the complete team into consideration, it is a great value. 

You need to know that CrowdStrike is different in the way it works as opposed to the traditional software. It is fairly self-explaining, but you just need to know that this endpoint is based on the behavior. This means that if you introduce a USB stick with malicious software on it and the software or the file isn't opened yet or is dormant, CrowdStrike won't detect it. The minute you are trying to use that file, and the file is trying to execute things, CrowdStrike detects it instantly and takes action to mitigate a problem.

I would rate CrowdStrike Falcon Complete a nine out of ten. It is a great product. For our company, it is the right product. It is company deployed, and we will stick with CrowdStrike.

I use Falcon Complete to detect vulnerabilities in our clients' infrastructure.

Falcon Complete's best features are its detailed reporting and user-friendliness.

The one issue with Falcon Complete is that it can't be run manually if you find any viruses or malicious files in a post.

I've been using Falcon Complete for a year.

Falcon Complete is very stable.

The initial setup is straightforward, and deployment takes between a day and a week.

We use a third-party or client team.

I would rate Falcon Complete as nine out of ten.

Our clients use it for protecting themselves from getting ransomware. Their use case is just to protect their endpoints because it is really bad out there.

It is a hybrid deployment. You have to have agents on all the endpoints, and all the CrowdStrike AI is on the cloud.

Their intelligence is really good. The security whitepapers that they write are outstanding.

They handle it all for the clients. CrowdStrike Complete is managed by CrowdStrike. They only call a client if there is a problem that they can't address. They pretty much contain and eradicate. This is not something that every vendor provides.

People should be able to obtain training at any point of the engagement so that if somebody who doesn't have the basic knowledge is getting thrown into it, they are able to get trained, and CrowdStrike is able to help them out.

CrowdStrike is really doing what they're supposed to be doing, but it is like anything else where they have to keep up on their research and development, or they'll fall behind. This is a fast-paced environment, and I've seen that vendors that were really good three years ago are terrible now. CrowdStrike is trying to stay ahead of the bad guys. They have AI. I have not had a problem with them missing anything. If they missed something, they should just make sure that they don't miss it again and understand why they missed it. I don't know if they did.

I have been using this solution for years.

It is stable.

It is easy. All you need to do is to get the correct pricing. When you add more endpoints, you are going to pay more for the license. When you do mergers and acquisitions, it is always a concern. If you've got really good security products in one company but not in the other one, you have to bring them in.

Most of our clients are medium-sized companies. We also have large clients, but they have got full security staff. CrowdStrike does well in medium-sized companies because they need them really badly. With CrowdStrike Complete, they don't have to have the staff to manage it.

I have interacted with them, and they are excellent.

Our clients had other solutions, and they switched because they got ransomware. A lot of solutions aren't always what they say they are. Some are good, but people don't have the staff to manage them. With CrowdStrike Complete, you don't have to have the staff to manage it.

Its initial setup is very straightforward. The agents are really easy to roll out. 

I always tell my clients that it is a partnership. You have to do health checks with them to make sure that you're doing what you should be doing and they're doing what they're supposed to be doing.  Sometimes, clients put products in place, and they leave them. Then they find out that they didn't set them right, and now they're a victim of a ransomware attack that they could have avoided. They had the right security product in place. 

CrowdStrike should be promoting these health checks with their clients, and they do, but I don't know if all salespeople do it. That is so important because sometimes it is not the vendor that caused the issue. It is the client, but they didn't know any better.

They are really reasonable for the services they are providing. When you add more endpoints, you are going to pay more for the license.

I would recommend this solution. I would advise others to get the best pricing and doing it around the quarters. You should really understand the pricing structure and the fact that you still need somebody to be able to take their call if there is something they can't do. Do health checks, and make sure that it is implemented correctly and you have got all your endpoints covered. It is a partnership between the vendor and the customer, and CrowdStrike is really good at that.

I would rate CrowdStrike Falcon Complete a ten out of ten.

We are currently testing CrowdStrike Falcon Complete. We have just started to work with this solution. It has many options, but I haven't yet tried them. I have also used it previously in another company.

It is a very good solution. It can provide detection and response in an extensive way, and for an endpoint, it can integrate the information that comes from the servers.

It has a lot of false positives, which can be an issue, but you can verify these false positives. 

We are currently testing CrowdStrike Falcon Complete and Carbon Black, and then we will decide. I was considering Carbon Black, but CrowdStrike has a better positioning in Mexico. This is why we are considering this solution.

In terms of XDR, it is a very good solution. It is one of the leaders for XDR.

I would rate CrowdStrike Falcon Complete an eight out of ten.