CrowdStrike Falcon's GUI requires improvement for user-friendliness. The console's available options are unclear, making it difficult to understand and extract details. Additionally, correlating information within the console and reports proves challenging.
The solution isn't known in my market. The brand isn't as recognizable. Their shortcomings are more on the marketing side. Everyone knows Microsoft Defender. Customers need to hear more about CrowdStrike and all the advantages and features on offer.
I want more ability to customize how you summarize the data. The default views are fine, but it would be interesting to be able to customize them based on the kind of data you want to see immediately. This can help the administrator gain an immediate overview and reduce the investigation time.
Managing Director at a tech services company with 11-50 employees
Reseller
Top 10
2024-04-19T17:30:00Z
Apr 19, 2024
To simplify the budgeting process for our clients, CrowdStrike should consider offering bundled packages that include essential features. The separate model pricing structure can make it challenging for clients to gain approval for their security needs. CrowdStrike could consider regional pricing models to better reflect the economic realities of different markets.
We encounter occasional issues, such as when disabling network access for a host that uses CrowdStrike. In these cases, the access disable process can be quite slow. I'm using CrowdStrike Query Language, and I've noticed an issue with event backups. Searches exceeding a certain event threshold aren't capturing all results. For instance, if I run a search that returns 10,000 events in a single day, only 2,000 events are backed up. This limitation with CrowdStrike Query Language needs to be investigated.
Senior Information Security Engineer at a tech services company with 1,001-5,000 employees
Real User
Top 10
2024-03-26T13:33:00Z
Mar 26, 2024
File integrity monitoring could be improved. They need to have more clarity on the policies and how we can apply them to get the file modification details. In terms of vulnerability management, CrowdStrike doesn't have the network scanning feature, which other competitors have. We sometimes get false positives. We have had to create some exceptions. However, we have been able to minimize the noise.
Information Security Engineer at a non-tech company with 10,001+ employees
Real User
Top 10
2024-03-19T20:40:00Z
Mar 19, 2024
I've found that CrowdStrike's technical support could benefit from increased technical expertise. In my experience, their representatives haven't been able to resolve my issues as effectively as I would have liked.
They are good at what they are doing, but they can add more use cases. They can improve their documentation. It is a very big aspect where they are lacking. They have documentation, but it is behind the wall of authentication. It is not available publicly. In terms of features, I would like them to add detailed logging functionality in CrowdStrike. Currently, CrowdStrike detects the threats immediately based on the IOCs and the signature-based policies or many threat behaviors, but in terms of logging those threats, it is not very good. The information that they provide in the logs is very little. They can build more analytics into it. If they can add more information about an event, it will be beneficial for us and everyone else who is using CrowdStrike.
Vice President at a financial services firm with 10,001+ employees
Real User
Top 5
2024-01-25T07:24:00Z
Jan 25, 2024
The current database schema presents challenges and has potential for improvement. The technical support response time can be improved. There are a lot of false positives reported.
The content-filtering features for children could be improved. We have young grandchildren aged 12 and 8. My daughter, their mother, wants to keep them from getting in trouble on the net. She looked at all these other solutions from Google, Microsoft, etc., and she couldn't figure out how to make any of those work. I told her that I bet CrowdStrike could handle this. Sure enough, CrowdStrike can do exactly that. It's the same solution that the Defense Department gets. It works, but it's a little complicated to implement. It could be simpler to set the policies.
IT Consultant at a comms service provider with 5,001-10,000 employees
Consultant
Top 20
2024-01-18T10:33:00Z
Jan 18, 2024
There is room for improvement in managing multiple customer IDs. Enhancements in the console web for better control and customization of sensor features would be valuable to ensure a smoother experience in handling various customer IDs and installations.
IT Workplace Coordinator at a consumer goods company with 1-10 employees
Real User
Top 20
2024-01-03T18:15:00Z
Jan 3, 2024
The support for different OS versions needs improvement because sometimes due to business conditions, updating our OS is impossible. For example, I have a production environment connected to the PNC that runs Windows XP on computers that CrowdStrike Falcon does not support.
Security Analyst at a insurance company with 1,001-5,000 employees
Real User
Top 20
2023-12-13T14:55:00Z
Dec 13, 2023
Despite implementing tuning rules specifically designed to address them, we are still encountering a significant number of false positives. This issue persists even after collaborating with their support team to find a solution. I have worked with their technical support on several problems that were never fully resolved.
Cyber Security Manager at a healthcare company with 10,001+ employees
Real User
Top 5
2023-04-10T13:10:18Z
Apr 10, 2023
We've tried some integrations with solutions, closing off false positives and things like that. Falcon could include more features in that area. In addition, some features are modularized and we're unable to buy them as we're in the healthcare field and limited in the amount we can invest.
Forensic controls have room for improvement, and CrowdStrike Falcon can add more features here. Another improvement could be the support for this product could be cheaper.
Security Principal at Trifecta Cloud Security Solutions
Real User
Top 5
2023-04-07T18:36:45Z
Apr 7, 2023
CrowdStrike needs to quit making up stuff about its features and functionality to bash its competition. I would like to see CrowdStrike become closer to an agentless solution where I wouldn't have to deploy software and maintain the version of the solution.
AVP of Tech at a insurance company with 201-500 employees
Real User
Top 5
2023-03-17T13:54:00Z
Mar 17, 2023
I do not have any notes for improvement. It just works. They offered a white glove service that was extremely costly. When we got into it, we saw it was relatively easy. If I was being nitpicky, I'd say that I don't like being sold something that's unnecessary. That's the only downside I've seen to the solution.
Sometimes CrowdStrike changes the GUI, and they need to be better at informing us and providing guidance concerning that. I would like to see a web filtering feature, and better application features. This would make the product easier to sell to smaller businesses, and would make it so that devices follow the applied policies anywhere; even when users are at home or travelling in another country, for example.
CrowdStrike Falcon provides endpoint protection and threat intelligence using a cloud-based platform for real-time detection and response. Its minimal impact on system performance and ease of deployment are key benefits along with advanced logging and reporting for compliance and forensic analysis.
CrowdStrike Falcon is known for its efficacy in identifying malware, ransomware, and sophisticated cyber threats. The platform's cloud-native architecture and advanced AI capabilities ensure...
CrowdStrike Falcon's GUI requires improvement for user-friendliness. The console's available options are unclear, making it difficult to understand and extract details. Additionally, correlating information within the console and reports proves challenging.
The UI is not efficient. We are required to dig down to get more information, jumping from screen to screen.
The solution isn't known in my market. The brand isn't as recognizable. Their shortcomings are more on the marketing side. Everyone knows Microsoft Defender. Customers need to hear more about CrowdStrike and all the advantages and features on offer.
I want more ability to customize how you summarize the data. The default views are fine, but it would be interesting to be able to customize them based on the kind of data you want to see immediately. This can help the administrator gain an immediate overview and reduce the investigation time.
To simplify the budgeting process for our clients, CrowdStrike should consider offering bundled packages that include essential features. The separate model pricing structure can make it challenging for clients to gain approval for their security needs. CrowdStrike could consider regional pricing models to better reflect the economic realities of different markets.
We encounter occasional issues, such as when disabling network access for a host that uses CrowdStrike. In these cases, the access disable process can be quite slow. I'm using CrowdStrike Query Language, and I've noticed an issue with event backups. Searches exceeding a certain event threshold aren't capturing all results. For instance, if I run a search that returns 10,000 events in a single day, only 2,000 events are backed up. This limitation with CrowdStrike Query Language needs to be investigated.
File integrity monitoring could be improved. They need to have more clarity on the policies and how we can apply them to get the file modification details. In terms of vulnerability management, CrowdStrike doesn't have the network scanning feature, which other competitors have. We sometimes get false positives. We have had to create some exceptions. However, we have been able to minimize the noise.
I've found that CrowdStrike's technical support could benefit from increased technical expertise. In my experience, their representatives haven't been able to resolve my issues as effectively as I would have liked.
If CrowdStrike can further expand its support for XDR compatibility, that would give it an edge over all the other competing new products.
They are good at what they are doing, but they can add more use cases. They can improve their documentation. It is a very big aspect where they are lacking. They have documentation, but it is behind the wall of authentication. It is not available publicly. In terms of features, I would like them to add detailed logging functionality in CrowdStrike. Currently, CrowdStrike detects the threats immediately based on the IOCs and the signature-based policies or many threat behaviors, but in terms of logging those threats, it is not very good. The information that they provide in the logs is very little. They can build more analytics into it. If they can add more information about an event, it will be beneficial for us and everyone else who is using CrowdStrike.
The current database schema presents challenges and has potential for improvement. The technical support response time can be improved. There are a lot of false positives reported.
The content-filtering features for children could be improved. We have young grandchildren aged 12 and 8. My daughter, their mother, wants to keep them from getting in trouble on the net. She looked at all these other solutions from Google, Microsoft, etc., and she couldn't figure out how to make any of those work. I told her that I bet CrowdStrike could handle this. Sure enough, CrowdStrike can do exactly that. It's the same solution that the Defense Department gets. It works, but it's a little complicated to implement. It could be simpler to set the policies.
We'd like to see more integration capabilities. We need more log storage as CrowdStrike will dump all logs to the centralized server.
There is room for improvement in managing multiple customer IDs. Enhancements in the console web for better control and customization of sensor features would be valuable to ensure a smoother experience in handling various customer IDs and installations.
The portal can be clunky to navigate at times and has room for improvement.
The support for different OS versions needs improvement because sometimes due to business conditions, updating our OS is impossible. For example, I have a production environment connected to the PNC that runs Windows XP on computers that CrowdStrike Falcon does not support.
Despite implementing tuning rules specifically designed to address them, we are still encountering a significant number of false positives. This issue persists even after collaborating with their support team to find a solution. I have worked with their technical support on several problems that were never fully resolved.
We've tried some integrations with solutions, closing off false positives and things like that. Falcon could include more features in that area. In addition, some features are modularized and we're unable to buy them as we're in the healthcare field and limited in the amount we can invest.
Forensic controls have room for improvement, and CrowdStrike Falcon can add more features here. Another improvement could be the support for this product could be cheaper.
CrowdStrike needs to quit making up stuff about its features and functionality to bash its competition. I would like to see CrowdStrike become closer to an agentless solution where I wouldn't have to deploy software and maintain the version of the solution.
I do not have any notes for improvement. It just works. They offered a white glove service that was extremely costly. When we got into it, we saw it was relatively easy. If I was being nitpicky, I'd say that I don't like being sold something that's unnecessary. That's the only downside I've seen to the solution.
We can't do scanning audits or device blocking or application control. There are traditional antivirus features missing in XDR, and that is an issue.
Technical support could be better than what is currently offered.
Sometimes CrowdStrike changes the GUI, and they need to be better at informing us and providing guidance concerning that. I would like to see a web filtering feature, and better application features. This would make the product easier to sell to smaller businesses, and would make it so that devices follow the applied policies anywhere; even when users are at home or travelling in another country, for example.
Crowdstrike Falcon XDR can improve the integration. There are some locks on the cloud to on-premise integrations.