Try our new research platform with insights from 80,000+ expert users

CrowdStrike Falcon vs Palo Alto Networks AutoFocus comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

CrowdStrike Falcon
Ranking in Threat Intelligence Platforms
1st
Average Rating
8.6
Reviews Sentiment
7.3
Number of Reviews
132
Ranking in other categories
Security Information and Event Management (SIEM) (6th), Endpoint Protection Platform (EPP) (2nd), Endpoint Detection and Response (EDR) (1st), Extended Detection and Response (XDR) (1st), Attack Surface Management (ASM) (1st), Identity Threat Detection and Response (ITDR) (2nd), AI-Powered Cybersecurity Platforms (1st)
Palo Alto Networks AutoFocus
Ranking in Threat Intelligence Platforms
29th
Average Rating
7.4
Reviews Sentiment
6.8
Number of Reviews
7
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of August 2025, in the Threat Intelligence Platforms category, the mindshare of CrowdStrike Falcon is 8.5%, down from 11.8% compared to the previous year. The mindshare of Palo Alto Networks AutoFocus is 1.2%, down from 1.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Threat Intelligence Platforms
 

Featured Reviews

Waleed Omar - PeerSpot reviewer
Provides effective real-time threat detection with potential for cost optimization
Some features such as device control, firewall management, and file analysis are standalone products that we need to purchase separately. If these features came out of the box within the product, it would be much more beneficial for us. Other providers such as SentinelOne include these features in their base product. We attended a CrowdStrike Falcon event where they discussed some shallow AI features, but we cannot see these in our panel yet. We work with different solutions such as Darktrace and SocRadar, where AI features are automatically displayed in our dashboards after release. However, for CrowdStrike Falcon, we cannot see these features.
RichPhillips - PeerSpot reviewer
Offers a centralized dashboard for reporting threats and anomalies
The tool along with other suite of products provides us with threat and alert information.  The solution has provided us with a centralized dashboard for reporting threats and anomalies.  I am impressed with the tool's integration of Palo Alto products which serves as a platform for security.  I…

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The initial setup is very simple."
"The product provides good monitoring features."
"Their endpoint is pretty flawless. There is no lag on the machines at all. Even though I have a good overview of all the machines, that's pretty much the most valuable feature of CrowdStrike Falcon."
"Falcon has the capacity to identify potential problems quickly. The administrator can deploy the agent, and the users cannot change it. This assures you that the agent remains on this device. Also, the agent can act preemptively to provide alerts about potential problems."
"This solution consistently releases improvements. They have communicated their next two years of development which is powerful and covers all of our needs."
"The best benefit of CrowdStrike Falcon is 99% MITRE coverage."
"CrowdStrike Falcon is a very light solution. It does not use too much processor or RAM."
"The stability is very good."
"The logs play a crucial role as they contribute to blocking unwanted Internet traffic."
"I would rate Palo Alto Networks AutoFocus a ten out of ten."
"Palo Alto Networks AutoFocus has had a positive impact on my company as we can reduce the cost for the SOC investment, and we can also get good feedback on how to strengthen our network from the expertise people available."
"I am impressed with the tool's integration of Palo Alto products which serves as a platform for security."
"The most valuable feature is alerting."
"The feature that I like best is the dashboard."
"It integrates well with other solutions and provides good threat intelligence in terms of external threats."
 

Cons

"I would like to see equal support across all versions. Aside from that, I would say most of the features are there."
"I would like to see the machine learning feature enhanced."
"I would like CrowdStrike to provide some correlation in the threat analysis, so we can visualize things better."
"Sometimes CrowdStrike changes the GUI, and they need to be better at informing us and providing guidance concerning that."
"The KDR solution is immature. They do not have much preemption in ITDR. Threat prevention should be their first priority, and false positive reductions are needed."
"There are some areas where some customers would prefer a different service."
"We can't do scanning audits or device blocking or application control."
"To simplify the budgeting process for our clients, CrowdStrike should consider offering bundled packages that include essential features."
"I would like to have more technical documentation that contains greater detail on the types of threats that are occurring."
"I would like the tool to see more integration with Cortex XDR. There is no real reason to keep them separate."
"It would be better if they used the threat intelligence feeds directly from their side and changing the verdict instead of us requesting it."
"It would be helpful to have better documentation for configuring and installing the solution."
"It is a completely cloud-based product at present."
 

Pricing and Cost Advice

"There are three to four licensing models available to choose from for CrowdStrike Falcon. The price of CrowdStrike Falcon depends on the distributor and the reseller partner. The price we received was good."
"We pay between $30-50 per user for a yearly license, which is more expensive than SentinelOne or Bitdefender. However, CrowdStrike gives better value for money."
"The pricing will depend upon your volume of usage."
"Years ago, when we bought CrowdStrike, you got everything it had. I was a little concerned when they broke this out into a la carte modules where you can buy EDR, Spotlight, etc., picking and choosing off the menu. I was a little worried that the solution would get watered down. However, I realized in my previous organization when we had the full suite that there were a bunch of features in it that we didn't have time to operationalize. So, I warmed up to it. I get the whole, "Look, you can pick and choose. Okay, everybody buys a steak, but do you want mashed potatoes, or do you want lobster mac and cheese?" So, you can pick the sides that you want, so you can buy the solution that you want and operationalize versus paying a lot of money and getting a bunch of things, but not using 60 percent of the tools in the box."
"Pricing and licensing seem to be in line with what they offer. We are a smaller organization, so pricing is important. Obviously, we would make a business case if it is something we really needed or felt that we needed. So, the pricing is in line with what we are getting from a product standpoint."
"The cost of CrowdStrike Falcon in Latin America seems high relative to the economic conditions in the region."
"The price of CrowdStrike Falcon is expensive."
"CrowdStrike is a reasonably priced tool."
"It is expensive."
"The solution is reasonably priced."
report
Use our free recommendation engine to learn which Threat Intelligence Platforms solutions are best for your needs.
865,295 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
15%
Financial Services Firm
10%
Manufacturing Company
9%
Government
6%
Performing Arts
12%
Insurance Company
10%
Computer Software Company
9%
Manufacturing Company
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Comparing CrowdStrike Falcon to Cortex XDR (Palo Alto)
Cortex XDR by Palo Alto vs. CrowdStrike Falcon Both Cortex XDR and Crowd Strike Falcon offer cloud-based solutions that are very scalable, secure, and user-friendly. Cortex XDR by Palo Alto offers ...
How does Crowdstrike Falcon compare with Darktrace?
Both of these products perform similarly and have many outstanding attributes. CrowdStrike Falcon offers an amazing user interface that makes setup easy and seamless. CrowdStrike Falcon offers a cl...
How does Microsoft Defender for Endpoint compare with Crowdstrike Falcon?
The CrowdStrike solution delivers a lot of information about incidents. It has a very light sensor that will never push your machine hardware to "test", you don't have the usual "scan now" feature ...
What needs improvement with Palo Alto Networks AutoFocus?
While Palo Alto Networks AutoFocus is effective, I always prefer to have a second source of threat intelligence feed to ensure coverage for zero-day vulnerabilities that might be missed. This is mo...
What is your primary use case for Palo Alto Networks AutoFocus?
I use Palo Alto Networks AutoFocus ( /products/palo-alto-networks-autofocus-reviews ) for threat intelligence. Palo Alto Networks has its own threat intelligence team, Unit 42, which analyzes submi...
What advice do you have for others considering Palo Alto Networks AutoFocus?
I would rate Palo Alto Networks AutoFocus a ten out of ten. I always activate it when purchasing Palo Alto Networks products because it's simple to deploy and beneficial. However, for non-Palo Alto...
 

Also Known As

CrowdStrike Falcon, CrowdStrike Falcon XDR, CrowdStrike Falcon Threat Intelligence, CrowdStrike Identity Protection, CrowdStrike Falcon Surface
Palo Alto Threat Intelligence Management
 

Overview

 

Sample Customers

Information Not Available
Telkom Indonesia
Find out what your peers are saying about CrowdStrike Falcon vs. Palo Alto Networks AutoFocus and other solutions. Updated: July 2025.
865,295 professionals have used our research since 2012.