We use the solution for AB protection and endpoint detection and response.
Sr Telecom Analyst at a construction company with 5,001-10,000 employees
Real-time response features, in-depth data collection, and top level stability
Pros and Cons
- "The real-time response features are valuable for us."
- "The documentation that they had for the use of their API's was not very helpful."
What is our primary use case?
What is most valuable?
The real-time response features are valuable for us. The depth of data that the agent collects is all very helpful, and on a forensic standpoint as well.
What needs improvement?
The documentation that they had for the use of their API's was not very helpful. It took us a lot of time to work through their API on how to do it programmatically. Aside from that, we really have not had very much trouble with Crowdstrike.
For an upcoming feature, adding more Linux support for real time response analytics would be helpful. This might be on their roadmap, or maybe even in a very pending release.
For how long have I used the solution?
We have been using the solution for approximately four months.
Buyer's Guide
CrowdStrike Falcon Complete MDR
December 2024
Learn what your peers think about CrowdStrike Falcon Complete MDR. Get advice and tips from experienced pros sharing their opinions. Updated: December 2024.
824,067 professionals have used our research since 2012.
What do I think about the stability of the solution?
Comparing the stability of the solution to other similar products it is at the top.
What do I think about the scalability of the solution?
The scalability was good.
How are customer service and support?
The technical support has been good the entire time. We had the one issue with the APIs but we already dealt with that. The technical support has been good on all of our issues.
How was the initial setup?
The setup is simple and the deployment is straightforward for the agents.
What other advice do I have?
I did not give the solution a ten out of ten because there is always room for improvement.
I rate CrowdStrike Falcon Complete a nine out of ten.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Information Technology Manager and ISMS Auditor at a consultancy with 51-200 employees
Effective alerts, excellent technical support, and many install options
Pros and Cons
- "If there is something wrong or not normal in the endpoint CrowdStrike Falcon Complete is very responsive."
- "The solution needs to have human involvement, they could improve by having more automation where the solution can take the necessary action on time and more accurately."
What is our primary use case?
CrowdStrike Falcon Complete is used to inform the IT or security analyst if there is something happening inside the endpoint. Additionally, the EDR can take an action by itself if there is something abnormal happening inside the endpoint.
What is most valuable?
If there is something wrong or not normal in the endpoint CrowdStrike Falcon Complete is very responsive. It will give an alert that is very useful and it takes action automatically. There at times needs to be some manual intervention but it is less often.
What needs improvement?
The solution needs to have human involvement, they could improve by having more automation where the solution can take the necessary action on time and more accurately.
For how long have I used the solution?
I have been using this solution for approximately one year.
What do I think about the stability of the solution?
The solution is stable.
What do I think about the scalability of the solution?
I have found the scalability very good.
We have approximately 1,000 users using this solution in my organization.
How are customer service and technical support?
The technical support is excellent.
How was the initial setup?
The installation is easy. We can install it through Windows Active Directory, send the files to the end-user to install it, or the IT department can install it remotely. The time it took for the full installation throughout our organization took 35 days.
What about the implementation team?
We have four to five people that do the implementation and maintenance of the solution.
What's my experience with pricing, setup cost, and licensing?
The solution is priced fairly. For the features you receive, it is worth the money.
What other advice do I have?
I would recommend this solution to others.
I rate CrowdStrike Falcon Complete ten out of ten.
Which deployment model are you using for this solution?
On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Buyer's Guide
CrowdStrike Falcon Complete MDR
December 2024
Learn what your peers think about CrowdStrike Falcon Complete MDR. Get advice and tips from experienced pros sharing their opinions. Updated: December 2024.
824,067 professionals have used our research since 2012.
Sr Manager - Information Security & Researcher at a tech services company with 1,001-5,000 employees
Can be used to dig deeper while doing an investigation
Pros and Cons
- "Its IOCs alerting mechanism is good. I think it is AI based and categorizes behaviors which are unusual."
- "Pricing is definitely a problem. It could be cheaper for licensing."
What is our primary use case?
It's an EDR group solution. We use it for behavioral-based analysis.
On our endpoints, we have signature-based and behavioral-based analyses, and we use CrowdStrike Falcon Complete for behavioral-based analyses.
What is most valuable?
I think it has very good features that help dig deeper while doing an investigation. Its IOCs alerting mechanism is good. I think it is AI based and categorizes behaviors which are unusual.
CrowdStrike Falcon Complete has good instrumentation, and the user interface is good too.
What needs improvement?
Pricing is definitely a problem. It could be cheaper for licensing.
For how long have I used the solution?
I've been using CrowdStrike Falcon Complete for 5 years.
What do I think about the stability of the solution?
It is stable.
What do I think about the scalability of the solution?
It is scalable as well. It's a cloud-based solution, so I don't doubt the scalability. I think it's good.
We have 6,000 end users who are using it.
How are customer service and technical support?
The technical support is good. You raise a complaint, and they respond immediately.
How was the initial setup?
The installation was smooth and didn't take much time.
What about the implementation team?
We did it by ourselves. We have two or three engineers who run it and perform the rolling, installation, and upgrades.
What's my experience with pricing, setup cost, and licensing?
We have a yearly license, and it could be cheaper.
Which other solutions did I evaluate?
We evaluated Trend Micro and Sophos before choosing CrowdStrike Falcon Complete.
What other advice do I have?
CrowdStrike Falcon Complete is great, and I would rate it at eight on a scale from one to ten.
If you go with this solution, I think that you should also obtain another service called Hybrid Analysis, the premium edition. I think with this, you'll get malware samples you can correlate, and it will be a good tool for the SOC team.
Which deployment model are you using for this solution?
Public Cloud
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Chief Information Security Officer at a construction company with 1,001-5,000 employees
An absolutely stable and scalable solution that works well and is fast in mitigating attacks
Pros and Cons
- "It is working well. I tried a ransomware attack myself, and they were very fast in mitigating. I am very convinced of this product, and I am very satisfied with how it is working. The team behind the program itself is very valuable. If you don't have your own security team, they can do a great job for you. If your IT team isn't in the company, this can be of great value to you. Its documentation is very good. They have many different dashboards, and they do have a lot of information. Sometimes, it can be a bit overwhelming how much information is there, but once you find your way through with them, everything is very logical."
- "Some dashboards can be very complex, but once you get to know them, it is very logical."
What is most valuable?
It is working well. I tried a ransomware attack myself, and they were very fast in mitigating. I am very convinced of this product, and I am very satisfied with how it is working.
The team behind the program itself is very valuable. If you don't have your own security team, they can do a great job for you. If your IT team isn't in the company, this can be of great value to you.
Its documentation is very good. They have many different dashboards, and they do have a lot of information. Sometimes, it can be a bit overwhelming how much information is there, but once you find your way through with them, everything is very logical.
What needs improvement?
Some dashboards can be very complex, but once you get to know them, it is very logical.
For how long have I used the solution?
I have been using this solution since 2019.
What do I think about the stability of the solution?
It is absolutely stable.
What do I think about the scalability of the solution?
It is very scalable. It really doesn't matter whether you are a company using 100 endpoints or more than 2,000 endpoints. We have around 1,700 people in our company. There are around 200 people that need to be onboarded again.
How are customer service and technical support?
They were very fast in responding. If you have a technical question, it only takes a couple of hours before they answer your questions. They are very skilled.
Which solution did I use previously and why did I switch?
We had Symantec endpoints previously. They were very traditional points. There isn't a resemblance between these two solutions because CrowdStrike is more into machine learning in terms of the behavior of the system. Symantec is more of a traditional antivirus that starts scanning your computer and new files. They both are very different in the way they work.
How was the initial setup?
Its setup is fairly basic. It is not very complex. We had the support of the Falcon Complete team to set it up. It took a couple of days.
What about the implementation team?
The Falcon Complete team introduced the platform.
What's my experience with pricing, setup cost, and licensing?
It is a fairly firm price. It is not the cheapest solution, but if you take the complete team into consideration, it is a great value.
What other advice do I have?
You need to know that CrowdStrike is different in the way it works as opposed to the traditional software. It is fairly self-explaining, but you just need to know that this endpoint is based on the behavior. This means that if you introduce a USB stick with malicious software on it and the software or the file isn't opened yet or is dormant, CrowdStrike won't detect it. The minute you are trying to use that file, and the file is trying to execute things, CrowdStrike detects it instantly and takes action to mitigate a problem.
I would rate CrowdStrike Falcon Complete a nine out of ten. It is a great product. For our company, it is the right product. It is company deployed, and we will stick with CrowdStrike.
Which deployment model are you using for this solution?
Private Cloud
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Security Architect, Endpoint, Mobile Device, Application Technical Presales at a computer software company with 1,001-5,000 employees
Great at stopping vulnerabilities, takes a proactive approach to security, and is not signature-based
Pros and Cons
- "It's not a signature-based solution, which is ideal for us."
- "In a future release, it would be ideal if they could add reporting and action histories to their suite of features."
What is most valuable?
Overall, the solution is pretty good.
The overall ability to stop vulnerabilities is quite helpful.
I appreciate how the solution takes a proactive approach to security.
It's not a signature-based solution, which is ideal for us.
What needs improvement?
The solution could offer integration with some additional solutions - for example, vulnerability scanners.
In a future release, it would be ideal if they could add reporting and action histories to their suite of features.
For how long have I used the solution?
I've been using the product at this point for about three years. It hasn't been too long.
Which solution did I use previously and why did I switch?
I also currently use SentinelOne and FireEye. However, CrowdStrike is a solution I primarily use right now.
What other advice do I have?
I work for a very large VAR, and we handle about a billion dollars in security right now.
I'm a reseller and security architect.
Overall, I would rate the solution at a ten out of ten. It's an excellent option and one we highly recommend to our clients. We offer it quite extensively over other options.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Information Security Analyst at a tech services company with 51-200 employees
User-friendly solution with detailed reporting
Pros and Cons
- "Falcon Complete's best features are its detailed reporting and user-friendliness."
- "The one issue with Falcon Complete is that it can't be run manually if you find any viruses or malicious files in a post."
What is our primary use case?
I use Falcon Complete to detect vulnerabilities in our clients' infrastructure.
What is most valuable?
Falcon Complete's best features are its detailed reporting and user-friendliness.
What needs improvement?
The one issue with Falcon Complete is that it can't be run manually if you find any viruses or malicious files in a post.
For how long have I used the solution?
I've been using Falcon Complete for a year.
What do I think about the stability of the solution?
Falcon Complete is very stable.
How was the initial setup?
The initial setup is straightforward, and deployment takes between a day and a week.
What about the implementation team?
We use a third-party or client team.
What other advice do I have?
I would rate Falcon Complete as nine out of ten.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Partner at Fortium Partners: Interim, virtual & fractional CISO and CPO at a tech services company with 51-200 employees
Good intelligence, outstanding security whitepapers, excellent support, and does what it is supposed to do
Pros and Cons
- "Their intelligence is really good. The security whitepapers that they write are outstanding. They handle it all for the clients. CrowdStrike Complete is managed by CrowdStrike. They only call a client if there is a problem that they can't address. They pretty much contain and eradicate. This is not something that every vendor provides."
- "People should be able to obtain training at any point of the engagement so that if somebody who doesn't have the basic knowledge is getting thrown into it, they are able to get trained, and CrowdStrike is able to help them out. CrowdStrike is really doing what they're supposed to be doing, but it is like anything else where they have to keep up on their research and development, or they'll fall behind. This is a fast-paced environment, and I've seen that vendors that were really good three years ago are terrible now. CrowdStrike is trying to stay ahead of the bad guys. They have AI. I have not had a problem with them missing anything. If they missed something, they should just make sure that they don't miss it again and understand why they missed it. I don't know if they did."
What is our primary use case?
Our clients use it for protecting themselves from getting ransomware. Their use case is just to protect their endpoints because it is really bad out there.
It is a hybrid deployment. You have to have agents on all the endpoints, and all the CrowdStrike AI is on the cloud.
What is most valuable?
Their intelligence is really good. The security whitepapers that they write are outstanding.
They handle it all for the clients. CrowdStrike Complete is managed by CrowdStrike. They only call a client if there is a problem that they can't address. They pretty much contain and eradicate. This is not something that every vendor provides.
What needs improvement?
People should be able to obtain training at any point of the engagement so that if somebody who doesn't have the basic knowledge is getting thrown into it, they are able to get trained, and CrowdStrike is able to help them out.
CrowdStrike is really doing what they're supposed to be doing, but it is like anything else where they have to keep up on their research and development, or they'll fall behind. This is a fast-paced environment, and I've seen that vendors that were really good three years ago are terrible now. CrowdStrike is trying to stay ahead of the bad guys. They have AI. I have not had a problem with them missing anything. If they missed something, they should just make sure that they don't miss it again and understand why they missed it. I don't know if they did.
For how long have I used the solution?
I have been using this solution for years.
What do I think about the stability of the solution?
It is stable.
What do I think about the scalability of the solution?
It is easy. All you need to do is to get the correct pricing. When you add more endpoints, you are going to pay more for the license. When you do mergers and acquisitions, it is always a concern. If you've got really good security products in one company but not in the other one, you have to bring them in.
Most of our clients are medium-sized companies. We also have large clients, but they have got full security staff. CrowdStrike does well in medium-sized companies because they need them really badly. With CrowdStrike Complete, they don't have to have the staff to manage it.
How are customer service and technical support?
I have interacted with them, and they are excellent.
Which solution did I use previously and why did I switch?
Our clients had other solutions, and they switched because they got ransomware. A lot of solutions aren't always what they say they are. Some are good, but people don't have the staff to manage them. With CrowdStrike Complete, you don't have to have the staff to manage it.
How was the initial setup?
Its initial setup is very straightforward. The agents are really easy to roll out.
I always tell my clients that it is a partnership. You have to do health checks with them to make sure that you're doing what you should be doing and they're doing what they're supposed to be doing. Sometimes, clients put products in place, and they leave them. Then they find out that they didn't set them right, and now they're a victim of a ransomware attack that they could have avoided. They had the right security product in place.
CrowdStrike should be promoting these health checks with their clients, and they do, but I don't know if all salespeople do it. That is so important because sometimes it is not the vendor that caused the issue. It is the client, but they didn't know any better.
What's my experience with pricing, setup cost, and licensing?
They are really reasonable for the services they are providing. When you add more endpoints, you are going to pay more for the license.
What other advice do I have?
I would recommend this solution. I would advise others to get the best pricing and doing it around the quarters. You should really understand the pricing structure and the fact that you still need somebody to be able to take their call if there is something they can't do. Do health checks, and make sure that it is implemented correctly and you have got all your endpoints covered. It is a partnership between the vendor and the customer, and CrowdStrike is really good at that.
I would rate CrowdStrike Falcon Complete a ten out of ten.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Director Servicios Administrados de Cybersecurity at a comms service provider with 51-200 employees
A good solution that can provide detection and response in an extensive way and integrate the information
Pros and Cons
- "It is a very good solution. It can provide detection and response in an extensive way, and for an endpoint, it can integrate the information that comes from the servers."
- "It has a lot of false positives, which can be an issue, but you can verify these false positives."
What is our primary use case?
We are currently testing CrowdStrike Falcon Complete. We have just started to work with this solution. It has many options, but I haven't yet tried them. I have also used it previously in another company.
What is most valuable?
It is a very good solution. It can provide detection and response in an extensive way, and for an endpoint, it can integrate the information that comes from the servers.
What needs improvement?
It has a lot of false positives, which can be an issue, but you can verify these false positives.
Which other solutions did I evaluate?
We are currently testing CrowdStrike Falcon Complete and Carbon Black, and then we will decide. I was considering Carbon Black, but CrowdStrike has a better positioning in Mexico. This is why we are considering this solution.
What other advice do I have?
In terms of XDR, it is a very good solution. It is one of the leaders for XDR.
I would rate CrowdStrike Falcon Complete an eight out of ten.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Buyer's Guide
Download our free CrowdStrike Falcon Complete MDR Report and get advice and tips from experienced pros
sharing their opinions.
Updated: December 2024
Product Categories
Managed Detection and Response (MDR)Popular Comparisons
Intercept X Endpoint
Binary Defense MDR
Huntress Managed EDR
Arctic Wolf Managed Detection and Response
SentinelOne Vigilance
Secureworks Taegis Managed XDR / MDR
Blackpoint Cyber MDR
Field Effect MDR
Adlumin Cybersecurity
Fidelis Elevate
Fortra's Alert Logic MDR
Trend Micro Managed XDR
Buyer's Guide
Download our free CrowdStrike Falcon Complete MDR Report and get advice and tips from experienced pros
sharing their opinions.
Quick Links
Learn More: Questions:
- How do you estimate ROI of a Managed Detection and Response (MDR) solution?
- When evaluating Managed Detection and Response (MDR), what aspect do you think is the most important to look for?
- Which solution do you prefer: Optiv Managed Security Services or eSentire?
- Why is Managed Detection and Response (MDR) important for companies?