CrowdStrike Falcon Reviews

Name: CrowdStrike Falcon
Brand: CrowdStrike
Rating: 4.3 (135 reviews)

4.3 out of 5

135 reviews
97% willing to recommend

What is CrowdStrike Falcon?

CrowdStrike Falcon offers comprehensive endpoint protection with real-time threat detection, AI-driven capabilities, and seamless integration with other platforms. Its cloud-native design provides robust security across diverse environments, making it a reliable choice for modern cybersecurity needs.

Get the CrowdStrike Falcon Buyer's Guide and find out what your peers are saying about CrowdStrike Falcon, Wazuh, Microsoft Defender for Endpoint and more!

CrowdStrike Falcon is the #1 ranked solution in endpoint security software, #1 ranked solution in top Threat Intelligence Platforms, #1 ranked solution in EDR tools, #1 ranked solution in XDR Security products, #1 ranked solution in top Attack Surface Management (ASM) solutions, #1 ranked solution in top AI-Powered Cybersecurity Platforms solutions, #2 ranked solution in top Identity Threat Detection and Response (ITDR) solutions, and #6 ranked solution in top Security Information and Event Management (SIEM) solutions. PeerSpot users give CrowdStrike Falcon an average rating of 8.6 out of 10. CrowdStrike Falcon is most commonly compared to Wazuh: CrowdStrike Falcon vs Wazuh. CrowdStrike Falcon is popular among the large enterprise segment, accounting for 52% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a computer software company, accounting for 14% of all views.

Helped 868,759 peers since 2012

Featured CrowdStrike Falcon reviews

Waleed Omar

Information Security Specialist at Arab Open University

Some features such as device control, firewall management, and file analysis are standalone products that we need to purchase separately. If these features came out of the box within the product, it would be much more beneficial for us. Other providers such as SentinelOne include these features in their base product. We attended a CrowdStrike Falcon event where they discussed some shallow AI features, but we cannot see these in our panel yet. We work with different solutions such as Darktrace and SocRadar, where AI features are automatically displayed in our dashboards after release. However, for CrowdStrike Falcon, we cannot see these features.

Read full review

Sumanth Kandanuru

Security Analyst at NTT Ltd

Obviously, when checking in the SIEM, not all logs are available. In CrowdStrike, unlike SIEM, actions are clearly defined. For example, a regular AV like Symantec might indicate a file was quarantined or failed to quarantine, but in CrowdStrike, I can verify the action. As an incident response analyst, I can use CrowdStrike to perform actions like directly wiping a file from a host if given access. I can investigate by accessing the customer's host based on the RTR environment and utilize host search to know details for the past seven days, including logins, processes, file installations, malicious processes, and network connections. Event search also allows for detailed investigations, showing accessed files and remote installations.

Read full review

Shubham Sinha.

Senior Principal Information Security Analyst at Veritas Technologies LLC

The best benefit of CrowdStrike Falcon is 99% MITRE coverage. It detects suspicious or undetected activities on the system and provides protection for zero-day vulnerabilities. If there is a sudden rise in CPU consumption or abnormal storage use, it helps us by creating a ticket, allowing us to investigate any abnormal behavior present. We can look into the machine and investigate. It reduces the false negatives common with other technologies. The real-time response helps with MTTR. We achieve faster detection and response times. It helped prevent breaches. In the past, there was abnormal consumption of RAM along with CPU on a server. It also started communicating with other subnets. CrowdStrike Falcon triggered an alert. We did our investigation and found that we had ransomware. We successfully mitigated it.

Read full review

CrowdStrike Falcon mindshare

Product category:

As of October 2025, the mindshare of CrowdStrike Falcon in the Extended Detection and Response (XDR) category stands at 12.3%, down from 18.6% compared to the previous year, according to calculations based on PeerSpot user engagement data.

Extended Detection and Response (XDR) Market Share Distribution
Product	Market Share (%)
CrowdStrike Falcon	12.3%
Wazuh	10.2%
Darktrace	8.0%
Other	69.5%

Extended Detection and Response (XDR)

PeerResearch reports based on CrowdStrike Falcon reviews

Type	Title	Date
Category	Extended Detection and Response (XDR)	Oct 3, 2025	Download
Product	Reviews, tips, and advice from real users	Oct 3, 2025	Download
Comparison	CrowdStrike Falcon vs Microsoft Defender XDR	Oct 3, 2025	Download
Comparison	CrowdStrike Falcon vs SentinelOne Singularity Complete	Oct 3, 2025	Download
Comparison	CrowdStrike Falcon vs Trend Vision One	Oct 3, 2025	Download

Title	Rating	Mindshare	Recommending
Wazuh	3.7	10.2%	80%	49 interviews Add to research
Microsoft Defender for Endpoint	4.1	N/A	94%	198 interviews Add to research

Valuable Features

CrowdStrike Falcon's standout features include endpoint visibility, threat detection, real-time threat analysis, EDR capabilities, and AI-driven behavior analysis. Users value its cloud-native architecture for flexibility and minimal system performance impact. The intuitive interface, remote management capabilities, seamless integration with security tools, and detailed dashboards are highly appreciated. Its proactive monitoring, lightweight agent, and minimal false positives enhance security teams' efficiency. Falcon's ability to detect, isolate, and remediate threats efficiently is consistently praised.

"CrowdStrike Falcon helps with endpoint protection by having very low memory utilization and processor usage, so it doesn't impact the computer system performance, and the computer system works very fast compared to all other endpoint protection solutions."
"CrowdStrike Falcon has positively impacted my organization by providing good protection, logs, and reports, which I find very good."
"The biggest advantage of this solution for my customers is that it is a single solution that fulfills most of their security concerns while being easy to manage."

Room for Improvement

CrowdStrike Falcon needs better integration with other technologies and improved dashboard functionality. Users find the interface slow and cluttered, they desire enhanced threat visualization and more robust report options. Compatibility issues with operating systems, limited integration abilities, high cost, and support shortcomings are reported. Users want more extensibility, improved machine learning features, and reduced false positives. There's also a demand for manual scanning, forensic features, and enhanced support for legacy systems.

"I don't think anything is missing in CrowdStrike Falcon, but if they can manage their SOC solution instead of users or the end users or customers doing that, it will be very useful, just as Sophos does."
"One area for improvement in CrowdStrike Falcon could be the user interface and reports; it requires some improvements to be easily handled."
"I recommend that some deep-dive trainings are required for the NG SIEM, specifically for their next-generation SIEM module, as they need some basic trainings for that."

ROI

Many organizations have experienced significant return on investment from CrowdStrike Falcon, citing decreased costs and manpower, notably through efficient threat management and reduced downtime. The platform offers cost-effective protection, minimizing resources compared to previous solutions like McAfee and Carbon Black. Users report increased productivity, efficient threat detection, and reduced support requests. CrowdStrike Falcon's ease of deployment and low maintenance is highly valued for freeing up resources and preventing potential costly breaches.

Pricing

CrowdStrike Falcon is priced per device, with annual licenses typically between $30 and $100 per user depending on volume and selected modules. While pricing is deemed premium, it's competitive for its advanced features. Enterprises see value in its robust security, especially given the alternatives like SentinelOne and Microsoft, which vary in cost. Additional features such as Falcon Complete or OverWatch can incur extra charges. Licenses purchased through the AWS Marketplace offer flexibility, and setup is straightforward.

"It is expensive compared to SentinelOne, but as the market leader, it is worth it."
"The solution's pricing is great for us."
"The product is expensive."

Popular Use Cases

CrowdStrike Falcon is primarily utilized for endpoint protection, detection, and response. Users employ it for real-time ransomware protection, malware detection, threat intelligence, and forensic investigations. It acts as a next-generation antivirus, replacing traditional solutions in diverse environments, including remote workforces. Its cloud-based nature allows seamless integration with SIEM tools and supports proactive defense measures, enhancing visibility and security across various devices, servers, and cloud workloads.

Service and Support

CrowdStrike Falcon's customer service and support team is praised for their responsiveness and technical expertise. They consistently engage proactively, offering valuable guidance through frequent meetings. While many appreciate quick resolutions, some mention room for improvement in response times and personalized interactions. The use of multiple support channels, including partners and online forums, enhances accessibility. CrowdStrike Falcon is highly rated for their commitment to addressing user concerns and effectively managing support communications.

Deployment

CrowdStrike Falcon's initial setup is generally straightforward, with many users highlighting its ease of installation. The cloud-based deployment is quick, often completed within hours or a few days, depending on the complexity of the environment. Users emphasize its seamless integration and minimal maintenance requirements. Some challenges noted include manual processes and coordination for configuration, but overall, the initial setup is praised for its simplicity and efficiency across various environments.

Scalability

CrowdStrike Falcon excels in scalability, being cloud-based. Users mention its ability to handle thousands of endpoints effortlessly, adapting swiftly to varying organizational needs. It is praised for seamless deployment and expansion, often scoring high in scalability ratings. Users highlight the ease of license adjustments and minimal impact on performance during scaling. Many find it suited for diverse business sizes, appreciating its flexibility and efficient rollout across extensive infrastructures.

Stability

CrowdStrike Falcon is highly stable with minimal bugs, glitches, or downtime. Users report consistently reliable performance and effective management of thousands of endpoints. However, issues arise with updates causing temporary disruptions. Feedback varies, with some experiencing isolated challenges, while others maintain a positive experience. Despite occasional concerns regarding update impacts, Falcon remains a dependable choice, achieving high stability ratings from users, emphasizing its efficacy in diverse environments and its ability to self-manage updates efficiently.

These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.

Download our CrowdStrike Falcon Buyer's Guide for additional reliable information.

Review data by company size

By reviewers
Company Size	Count
Small Business	41
Midsize Enterprise	28
Large Enterprise	55

By reviewers

By visitors reading reviews
Company Size	Count
Small Business	2706
Midsize Enterprise	1685
Large Enterprise	4836

By visitors reading reviews

Top industries

By visitors reading reviews

Computer Software Company

14%

Financial Services Firm

10%

Manufacturing Company

Government

Retailer

University

Educational Organization

Comms Service Provider

Healthcare Company

Insurance Company

Construction Company

Real Estate/Law Firm

Media Company

Energy/Utilities Company

Non Profit

Outsourcing Company

Wholesaler/Distributor

Hospitality Company

Performing Arts

Legal Firm

Transportation Company

Recreational Facilities/Services Company

Consumer Goods Company

Pharma/Biotech Company

Marketing Services Firm

Logistics Company

Compare CrowdStrike Falcon with alternative products

Learn more about CrowdStrike Falcon

CrowdStrike Falcon is heralded for features like robust endpoint visibility, threat detection, and AI-driven capabilities. Users value its efficient real-time monitoring, which maintains low impact on performance while offering seamless integration with platforms. The lightweight design, coupled with comprehensive dashboards and automated threat responses, enhances security operations while reducing resource strain. CrowdStrike's cloud-native architecture ensures flexible, always-on protection, making it adaptable to a wide range of environments. However, improvements can be made in log management, compatibility with diverse operating systems, and integration with third-party technologies. Users also seek more robust reporting features, fewer false positives, and better support for legacy systems. Enhanced policy application, AI capabilities, and extended on-demand scanning are desired, while pricing and technical support responsiveness are concerns.

What are CrowdStrike Falcon's key features?

Endpoint Visibility: Offers robust real-time monitoring and detection.
AI-Driven Security: Incorporates advanced AI for threat intelligence.
Cloud-Native Architecture: Provides flexible, always-on protection.
Automated Threat Response: Enhances security operations efficiently.
Seamless Integration: Works smoothly with other platforms.

What benefits should users focus on?

Reduced Resource Strain: Lightweight design minimizes performance impact.
Comprehensive Security: Advanced protection across various endpoints.
Flexible Deployment: Adapts to different environments easily.
Improved Efficiency: Streamlines threat detection and response processes.
Cost-Effectiveness: Potential ROI from reduced security breaches.

CrowdStrike Falcon is implemented widely in industries relying on robust endpoint protection for monitoring, securing endpoints, forensic analysis, and malware detection. Its cloud-based AI capabilities ensure comprehensive security across devices, making it a preferred choice for networks, servers, and workstations globally. The efficient management of security threats and compliance with regulations is achieved with minimal resource consumption.

CrowdStrike Falcon was previously known as CrowdStrike Falcon, CrowdStrike Falcon XDR, CrowdStrike Falcon Threat Intelligence, CrowdStrike Identity Protection, CrowdStrike Falcon Surface.

Product Categories

Extended Detection and Response (XDR)

Security Information and Event Management (SIEM)

Endpoint Protection Platform (EPP)

Threat Intelligence Platforms (TIP)

Endpoint Detection and Response (EDR)

Attack Surface Management (ASM)

Identity Threat Detection and Response (ITDR)

AI-Powered Cybersecurity Platforms

Popular Comparisons

Wazuh vs CrowdStrike Falcon

Microsoft Defender for Endpoint vs CrowdStrike Falcon

Fortinet FortiEDR vs CrowdStrike Falcon

Splunk Enterprise Security vs CrowdStrike Falcon

Microsoft Sentinel vs CrowdStrike Falcon

Darktrace vs CrowdStrike Falcon

SentinelOne Singularity Complete vs CrowdStrike Falcon

IBM Security QRadar vs CrowdStrike Falcon

HP Wolf Security vs CrowdStrike Falcon

Microsoft Defender XDR vs CrowdStrike Falcon

Cortex XDR by Palo Alto Networks vs CrowdStrike Falcon

Fortinet FortiClient vs CrowdStrike Falcon

Elastic Security vs CrowdStrike Falcon

WatchGuard Firebox vs CrowdStrike Falcon

Trellix Endpoint Security Platform vs CrowdStrike Falcon

See all alternatives

CrowdStrike Falcon Reviews Summary
Author info	Rating	Review Summary
Information Security Specialist at Arab Open University	3.5	At Arab Open University, we use CrowdStrike Falcon for endpoint protection, valuing its active response and behavior analysis. However, device control and AI features require separate purchases. We rate our ROI at about 60% on a scale of one to ten.
Security Analyst at NTT Ltd	4.5	I use CrowdStrike Falcon as an EDR integrated with SIEM for real-time investigations. It offers comprehensive features like remote host connection and detailed event search. While the querying system requires learning, it still enhances incident response capabilities significantly.
Senior Principal Information Security Analyst at Veritas Technologies LLC	4.0	I use CrowdStrike Falcon for endpoint and cloud security, valuing its machine learning for anomaly detection and MITRE coverage. Despite challenges with deployment and the evolving GUI, it's worthwhile and better for workflow implementation than SentinelOne.
Group Manager at HCLSoftware	2.5	I evaluate and deploy new solutions like CrowdStrike Falcon for our organization. It's an effective EDR tool offering visibility and real-time response. However, it needs improvements in threat prevention, false positive reduction, and resolution time. We considered SentinelOne and Palo Alto.
IT Manager at Jord International Pty Ltd	4.5	We've used CrowdStrike Falcon for seven years due to its low resource usage, easy deployment, centralized management, and fast threat detection, making it a reliable endpoint protection solution with good ROI and excellent customer support.
Vice President, Technology Operations at InfoEdge India Ltd	4.0	I use CrowdStrike Falcon mainly as an EDR solution, appreciating its 24/7 managed monitoring and automated threat detection. While integration enhances security, I recommend adding agentless capabilities. Despite evaluating alternatives, Falcon's protection meets my expectations.
IT consultant at Asuransi Ramayana	4.0	I use CrowdStrike Falcon for our various devices including servers and find it easy to install, manage, and effective in stopping breaches. While the price is high for SMBs, its value in preventing breaches is undeniable.
Section Head at Galaxy Chemicals Egypt	4.0	I've used CrowdStrike Falcon for three years to protect our company from threats; it's stable, integrates well with other tools, and offers good logs, though the UI and reports could be more user-friendly and targeted.

CrowdStrike Falcon Reviews

What is CrowdStrike Falcon?

Featured CrowdStrike Falcon reviews

CrowdStrike Falcon mindshare

PeerResearch reports based on CrowdStrike Falcon reviews

Valuable Features

Room for Improvement

ROI

Pricing

Popular Use Cases

Service and Support

Deployment

Scalability

Stability

Review data by company size

Top industries

Compare CrowdStrike Falcon with alternative products

Learn more about CrowdStrike Falcon

Related questions

Product Categories

Popular Comparisons