CrowdStrike Falcon Complete MDR Reviews

It's an EDR group solution. We use it for behavioral-based analysis.

On our endpoints, we have signature-based and behavioral-based analyses, and we use CrowdStrike Falcon Complete for behavioral-based analyses. 

I think it has very good features that help dig deeper while doing an investigation. Its IOCs alerting mechanism is good. I think it is AI based and categorizes behaviors which are unusual.

CrowdStrike Falcon Complete has good instrumentation, and the user interface is good too.

Pricing is definitely a problem. It could be cheaper for licensing.

I've been using CrowdStrike Falcon Complete for 5 years.

It is stable.

It is scalable as well. It's a cloud-based solution, so I don't doubt the scalability. I think it's good.

We have 6,000 end users who are using it.

The technical support is good. You raise a complaint, and they respond immediately.

The installation was smooth and didn't take much time.

We did it by ourselves. We have two or three engineers who run it and perform the rolling, installation, and upgrades.

We have a yearly license, and it could be cheaper.

We evaluated Trend Micro and Sophos before choosing CrowdStrike Falcon Complete.

CrowdStrike Falcon Complete is great, and I would rate it at eight on a scale from one to ten.

If you go with this solution, I think that you should also obtain another service called Hybrid Analysis, the premium edition. I think with this, you'll get malware samples you can correlate, and it will be a good tool for the SOC team.

We implemented this solution to secure everything in our environment, such as our endpoints, servers, and network.

EDR and Next-Generation Antivirus (NGAV) are good features. The Spotlight feature is also good, and it also can detect patching-related vulnerabilities. 

We have also been using Cisco AMP for Endpoints for three years. We have received multiple detections in Cisco AMP for Endpoints, and we had to take some actions, whereas CrowdStrike has not detected anything critical since it has been implemented. Most of the incidents that it has detected are false positives. They should work on the false-positive issue. When it is implemented throughout the organization, it gets very difficult to check each false positive and investigate what is correct and what is not correct. It requires technical and manual intervention.

I have been using this solution for two months.

It is stable and reliable.

We have not scaled it, but we have implemented it across the company.

They have been very responsive. There are no concerns about their service. 

We also use Cisco AMP for Endpoints. Cisco AMP for Endpoints is signature-based, and CrowdStrike is behavior-based. We have received multiple detections in Cisco AMP for Endpoints, whereas CrowdStrike has not detected anything critical since it has been implemented. There are a lot of false positives.

Both Cisco AMP for Endpoints and CrowdStrike are agent-based, but with Cisco AMP for Endpoints, we get a much slower system because it requires a lot of processing power, whereas CrowdStrike doesn't require a lot of processing power. 

In terms of pricing, CrowdStrike Falcon Complete is 50% more expensive than Cisco AMP for Endpoints.

Its price is very high. CrowdStrike Falcon Complete is 50% more expensive than Cisco AMP for Endpoints.

I can recommend this solution. It is definitely one of the best products in the market, but so many false positives are its minus point. Cisco AMP for Endpoints is better than this.

I would rate CrowdStrike Falcon Complete a seven out of ten.

We use the solution for AB protection and endpoint detection and response.

The real-time response features are valuable for us.  The depth of data that the agent collects is all very helpful, and on a forensic standpoint as well.

The documentation that they had for the use of their API's was not very helpful. It took us a lot of time to work through their API on how to do it programmatically. Aside from that, we really have not had very much trouble with Crowdstrike.

For an upcoming feature, adding more Linux support for real time response analytics would be helpful. This might be on their roadmap, or maybe even in a very pending release. 

We have been using the solution for approximately four months.

Comparing the stability of the solution to other similar products it is at the top.

The scalability was good.

The technical support has been good the entire time. We had the one issue with the APIs but we already dealt with that. The technical support has been good on all of our issues.

The setup is simple and the deployment is straightforward for the agents.

I did not give the solution a ten out of ten because there is always room for improvement.

I rate CrowdStrike Falcon Complete a nine out of ten.

We have been testing CrowdStrike Falcon Complete but we have not implemented it in our production at this time. However, we have found useful features in CrowdStrike.

CrowdStrike Falcon Complete has a very lightweight agent that provides signatureless detection protection from known and unknown malware or ransomware which is very useful.

The vulnerability assessment feature is a great benefit that provides detailed assessments of vulnerability. There are plenty of visualization of the threat; if any attack happens they explain in a visualization how the attack happens, how much the system has been affected, and what is the source. This information has allowed us to make the appropriate action.

CrowdStrike Falcon Complete is not providing application control. This is a very useful feature in any endpoint security because if you want to block any malicious activity of any particular application, you can not block it in this solution. However, you are able to block hashes, but not executable files or processes. Additionally, this solution does not provide a user risk score. These are two areas that CrowdStrike Falcon Complete can improve on in the future.

I have been using CrowdStrike Falcon Complete for a short period of time.

The solution is scalable.

Our customers are mostly large organizations. A recent customer has approximately 15,000 endpoints.

We only raised one case with the technical support and they solved the issue very quickly. Since we only had this one occasion we dealt with the support we are not aware of the consistency of their support.

I have previously used Trend Micro Apex One with Trend Micro Managed XDR.

The initial setup was straightforward. It is easy to install for an end-user system from a third-party application. For a single installation, it can be done with a few clicks of the mouse, it is not complicated, anyone can install it.

We have a team of approximately three that can manage CrowdStrike Falcon Complete from System Center Configuration Manager (SCCM). We do not need to go to every system and install it, all of it can be done through the SCCM.

I would recommend CrowdStrike Falcon Complete to others.

I rate CrowdStrike Falcon Complete an eight out of ten.

We are using this solution for endpoint protection.

The features I have found valuable are artificial intelligence, which protects us against malicious forces of any kind, and device control through the remote execution tool.

The training provided could be better. There is a need to have more training to allow us to fine-tune our settings. Not that training is not comprehensive; they do provide training in hotels where we can go and see videos and other helpful information. However, they should be providing hands-on experience to the system administrators because this would be more useful. The training is normally for corporations and should be available for personal users as well.

In the next release, there should be an IT help desk remote controller so that we do not need to go to a separate IT help desk. If there are any issues from the end-users, they should not need to use another tool to connect to the system, desktop, or anything else. If they would be able to facilitate this it would be easier for our engineers to raise a ticket and have the SLAs to support them.

I have been using this solution for approximately two years. 

The solution has been scalable in our experience.

The installation is straightforward. My engineers were trained by the partners on how to install the solution in all the areas, for example, the sensors. We did require the initial guidance but if you have prior experience with any other solutions, I do not think people should require special training or instruction. It is a simple and lightweight tool.

I would recommend this solution to others.

I rate CrowdStrike Falcon Complete an eight out of ten.

Our clients use it for protecting themselves from getting ransomware. Their use case is just to protect their endpoints because it is really bad out there.

It is a hybrid deployment. You have to have agents on all the endpoints, and all the CrowdStrike AI is on the cloud.

Their intelligence is really good. The security whitepapers that they write are outstanding.

They handle it all for the clients. CrowdStrike Complete is managed by CrowdStrike. They only call a client if there is a problem that they can't address. They pretty much contain and eradicate. This is not something that every vendor provides.

People should be able to obtain training at any point of the engagement so that if somebody who doesn't have the basic knowledge is getting thrown into it, they are able to get trained, and CrowdStrike is able to help them out.

CrowdStrike is really doing what they're supposed to be doing, but it is like anything else where they have to keep up on their research and development, or they'll fall behind. This is a fast-paced environment, and I've seen that vendors that were really good three years ago are terrible now. CrowdStrike is trying to stay ahead of the bad guys. They have AI. I have not had a problem with them missing anything. If they missed something, they should just make sure that they don't miss it again and understand why they missed it. I don't know if they did.

I have been using this solution for years.

It is stable.

It is easy. All you need to do is to get the correct pricing. When you add more endpoints, you are going to pay more for the license. When you do mergers and acquisitions, it is always a concern. If you've got really good security products in one company but not in the other one, you have to bring them in.

Most of our clients are medium-sized companies. We also have large clients, but they have got full security staff. CrowdStrike does well in medium-sized companies because they need them really badly. With CrowdStrike Complete, they don't have to have the staff to manage it.

I have interacted with them, and they are excellent.

Our clients had other solutions, and they switched because they got ransomware. A lot of solutions aren't always what they say they are. Some are good, but people don't have the staff to manage them. With CrowdStrike Complete, you don't have to have the staff to manage it.

Its initial setup is very straightforward. The agents are really easy to roll out. 

I always tell my clients that it is a partnership. You have to do health checks with them to make sure that you're doing what you should be doing and they're doing what they're supposed to be doing.  Sometimes, clients put products in place, and they leave them. Then they find out that they didn't set them right, and now they're a victim of a ransomware attack that they could have avoided. They had the right security product in place. 

CrowdStrike should be promoting these health checks with their clients, and they do, but I don't know if all salespeople do it. That is so important because sometimes it is not the vendor that caused the issue. It is the client, but they didn't know any better.

They are really reasonable for the services they are providing. When you add more endpoints, you are going to pay more for the license.

I would recommend this solution. I would advise others to get the best pricing and doing it around the quarters. You should really understand the pricing structure and the fact that you still need somebody to be able to take their call if there is something they can't do. Do health checks, and make sure that it is implemented correctly and you have got all your endpoints covered. It is a partnership between the vendor and the customer, and CrowdStrike is really good at that.

I would rate CrowdStrike Falcon Complete a ten out of ten.

Overall, the solution is pretty good.

The overall ability to stop vulnerabilities is quite helpful.

I appreciate how the solution takes a proactive approach to security.

It's not a signature-based solution, which is ideal for us.

The solution could offer integration with some additional solutions - for example, vulnerability scanners.

In a future release, it would be ideal if they could add reporting and action histories to their suite of features.

I've been using the product at this point for about three years. It hasn't been too long.

I also currently use SentinelOne and FireEye. However, CrowdStrike is a solution I primarily use right now.

I work for a very large VAR, and we handle about a billion dollars in security right now.

I'm a reseller and security architect.

Overall, I would rate the solution at a ten out of ten. It's an excellent option and one we highly recommend to our clients. We offer it quite extensively over other options.

The most valuable features of  CrowdStrike Falcon Complete are the CWP protection and the integration with SIEM.

We have a problem with the CrowdStrike Falcon Complete agent. It was closing the communication with the network or other computers.

I have been using CrowdStrike Falcon Complete for a few years.

CrowdStrike Falcon Complete has stable security.

I have found CrowdStrike Falcon Complete to be scalable.

We have needed to create a service request with support. It took them to solve one incident three days. They could be quicker to resolve problems. However, they proved a typical level of support that other companies have.

I would rate the support from CrowdStrike Falcon Complete a three out of five.

The initial setup was simple.

There is a standard license to use CrowdStrike Falcon Complete.

I rate CrowdStrike Falcon Complete a nine out of ten.