We performed a comparison between CrowdStrike Falcon Threat intelligence and Recorded Future. After reading all of the collected data, you can find our conclusion below.
Comparison Results: In summary, both CrowdStrike Falcon and Recorded Future are cloud-based solutions that are easy to deploy and offer a range of features. CrowdStrike Falcon is more focused on endpoint security and threat response, while Recorded Future is more focused on providing real-time, contextual threat intelligence. In terms of pricing, both solutions offer annual subscriptions with pricing based on the number of endpoints or users and the level of service required.
"The console is easy to read. I also like the scanning part and the ability to move assets from one to the other."
"It notifies us if there's any suspicious file on any PC. If any execution or similar kind of thing is happening, it just alerts us. It doesn't only alert. It also blocks the execution until we allow it. We check whether the execution is legitimate or not, and then approve it or keep it blocked. This gives us a little bit of control over this mechanism. Fortinet FortiEDR is also very straightforward and easy to maintain."
"The product's initial setup phase is very easy."
"The solution was relatively easy to deploy."
"The stability is very good."
"It is a scalable solution...The initial setup of Fortinet FortiEDR was straightforward."
"Fortinet FortiEDR's scalability is quite good, and you can add licenses to the solution."
"Ability to get forensics details and also memory exfiltration."
"We have seen a reduction to the performance hit to our operating systems."
"The solution can scale easily."
"The managed services are distinguished, responsive, dynamic, flexible, and assertive when taking action."
"Because it is security product and acts like an AIML smart product, not merely based on daily/weekly updates and signatures."
"The UI is simple and self-explanatory. Everything is easy to understand."
"I like Falcon's threat detection and endpoint investigation features. It's a user-friendly solution."
"Enables us to understand what processes are running on the system, what registry keys have been enabled."
"Its integration capability is valuable. It integrates easily with any OS."
"The intel that they were providing us over the emails was very good. If it found any hashtag in our organization's name on the dark web, a rogue IP, or a marketplace, it would send us an email and notify us that this is being mentioned, and if we want, they can take some action."
"The solution is diverse and provides me with a lot of different mechanisms for evaluation."
"As a threat intelligence tool, it's very helpful."
"The most valuable feature of Recorded Future is how it detects everything regarding our domain."
"The tool is helpful in vulnerability assessment of zero-day vulnerabilities and phishing domains. The solution provides information on any domains of the organization that has undergone phishing or any other cyberattacks."
"It can collect data from various sources, including social media and the dark web."
"The most valuable feature is Recorded Future's protection of exposed customer data on the hardware side."
"Has the ability to conduct and build any query without limitations."
"I think cloud security and SASE are areas of concern in the product where improvements are required. The tool's cloud version has to be improved in terms of the security it offers."
"The EDR console should have more extensive reporting. You shouldn't need to purchase FortiAnalyzer. It should be included in the EDR part. The security adviser cloud platform could be improved with more options for exclusive or intensive rules for devices."
"Once, we had an event that was locked and blocked, but information about it came to us two or three days later."
"The amount of usage, the number of details we get, or the number of options that can be tweaked is limited in comparison to that with other EDR solutions"
"Detections could be improved."
"We'd like to see more one-to-one product presentations for the distribution channels."
"The solution should address emerging threats like SQL injection."
"Integration with Azure and SaaS provisioning tools could improve Fortinet FortiEDR."
"I've found that CrowdStrike's technical support could benefit from increased technical expertise."
"As the company has grown, the technical support has felt less personal."
"A year and a half ago or more, if you put in a support request by email, then it wasn't timely addressed. It could be a day to three days before you received a response, which was a bit frustrating. There was a lot of customer feedback around this issue, which has been greatly refined."
"The technical support team often just replies to an issue with a link to an article rather than actually calling back and talking to someone and making sure the problem is solved. To me, that's kind of weak."
"The installation process for this software needs to be simplified."
"This solution is relatively expensive."
"It is cloud-based, and this does make some weary of the data being held on the cloud. Privacy requirements must be taken into account."
"They should provide us with good visibility for everything."
"Lacks sufficient visibility of malware and international APT attacks."
"We can get the data of different malware active throughout the globe, but it would be good if we can do sandboxing of a file. For example, on Any Run, we can perform sandboxing of malware along with their intel about a particular file or hash. It would be great if they have a feature like that."
"The product gives many false positives. If someone talks about the brand or organization name in the public domain over chats or blocks, it gets highlighted. It may not necessarily be a threat but still gets highlighted which increases the false positive count."
"It sometimes detects false positives and reduces the overall accuracy of the system."
"There is a semantic oncology dynamic relationship between how the MIGR Tech framework needs more data infusion enrichment capabilities."
"Recorded Future is a very expensive solution, and its pricing could be improved."
"The solution could improve in reducing the false positives. However, most of the other tools on the market have false positives. If they enhance their data algorithm, it could improve the accuracy of results and minimize false positives. Identifying patterns of false possibilities can aid in developing better reporting features that could potentially eliminate them in the future. This recording feature tool could benefit from adopting similar techniques utilized by other tools to enhance its functionality. By doing so, it could minimize the need for manual efforts in distinguishing true positives from false positives, ultimately reducing the workload."
"At present, my clients need to be trained by me or another organization on how to use Recorded Future and how to get the best out of it as an analyst, engineer, and administrator. It would be better if clients could directly learn these things without having to go through me or other organizations."
CrowdStrike Falcon is ranked 3rd in Endpoint Detection and Response (EDR) with 107 reviews while Recorded Future is ranked 1st in Threat Intelligence Platforms with 10 reviews. CrowdStrike Falcon is rated 8.8, while Recorded Future is rated 8.6. The top reviewer of CrowdStrike Falcon writes "Easy to set up with good behavior-based analysis but needs a single-click recovery option". On the other hand, the top reviewer of Recorded Future writes "Traceless online searches, stable, and scalable". CrowdStrike Falcon is most compared with Microsoft Defender XDR, Darktrace, Microsoft Defender for Endpoint, Trend Micro Deep Security and VMware Carbon Black Endpoint, whereas Recorded Future is most compared with ZeroFOX, Intel 471, Digital Shadows, Anomali ThreatStream and ThreatConnect Threat Intelligence Platform (TIP).
We monitor all Endpoint Detection and Response (EDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.