We performed a comparison between CrowdStrike Falcon and USM Anywhere based on real PeerSpot user reviews.
Find out in this report how the two Endpoint Detection and Response (EDR) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The stability is very good."
"I like FortiClient EMS. FortiEDR has a lot of great features like lockdown mode, remote wipes, and encryption. I can set malware outbreak policies and controls for detecting abnormalities. You can also simulate phishing attacks."
"It is stable and scalable."
"Fortinet FortiEDR made our clients feel secure and more at ease, knowing that they had an EDR solution that would close the gap in their security posture."
"The most valuable feature is the analysis, because of the beta structure."
"I get alerts when scripts are detected in the environment."
"The main thing is that I feel safe. Because the processes that have been used to get a handle on the attackers are much better than other competitors"
"It is very easy to set up. I would rate my experience with the initial setup a ten out of ten, with ten being very easy to set up."
"The CrowdStrike Falcon agent is very lightweight. Users never complain about their PCs getting stuck and things like that."
"CrowdStrike Falcon has done an excellent job at detecting breaches. It has allowed us to stay in business and keep our systems up."
"This solution consistently releases improvements. They have communicated their next two years of development which is powerful and covers all of our needs."
"Probably the most valuable thing to me is the real-time response piece. The fact that I can connect to an endpoint as long as it is on the Internet, no matter where it is globally. I can remove files from the endpoint, drop files on the endpoint, stop processes, reboot it, run custom scripts, and deploy software. Pretty much no other tool can do all that."
"It's ability to do threat hunting is really great, quite robust, and even allows you to do hygiene stuff."
"The threat intelligence is the most valuable feature."
"The DLP is the most valuable feature of CrowdStrike Falcon."
"The anomaly detection is the most valuable feature."
"The most valuable feature is threat intelligence."
"AlienVault provides a checklist answer when using SIEM."
"Reports are customized, so you can present them to executives or engineers."
"Its powerful correlation engine helps reduce time in manually correlating events."
"The dashboards are very descriptive and contain just the right amount of information. The activity alarms and events contain a plethora of data that is very descriptive and useful."
"SIEM log collection is great, and all of the rules that support updates with maintenance."
"Log-monitoring and alerting enable us to know when things happen that we need to know about."
"The AlienVault solution has enabled us to create a SOC on a budget with smaller than usual staff requirements, offering a wider range of solutions for our customers."
"FortiEDR can be improved by providing more detailed reporting."
"Intelligence aspects need improvement"
"Making the portal mobile friendly would be helpful when I am out of office."
"We've encountered challenges during API deployment, occasionally resulting in unstable environments."
"The security should be strong for the cloud. Some applications are on-prem and some are on the cloud. Fortinet should also have strong security for the cloud. There should be more security for the cloud."
"The solution should address emerging threats like SQL injection."
"We've had a lot of false positives; things incorrectly flagged that require manual configuration to allow. Even worse, after we allow a legitimate program, it sometimes gets flagged again after an update. This has caused a lot of extra work for my team."
"The solution's installation from a central installation server could be improved because the engineers had a little bit of trouble getting it installed from a central location."
"We can do a threat analysis of any machine at any time, but that threat analysis is very limited."
"They don't really have anything when it comes to scanning attachments."
"CrowdStrike needs to quit making up stuff about its features and functionality to bash its competition."
"Whenever there is a feature release (upgrade) where we push to all the endpoints, it causes something to be blocked without us knowing."
"The management of log aggregation is in need of improvement."
"I would like to see a little bit more in the offline scanning ability. This just comes from my background in what I have done in other positions. They only scan on demand, so I always have this fear that we sometimes maybe email out a dormant virus and can be held liable for that. That is something where I would like to see a little bit more robustness to the tool."
"We sometimes get false positives."
"The console is a little cluttered and at times, finding what you're looking for is not intuitive."
"The reporting aspect could be improved. While there are a lot of different options available, there are still pieces which are missing."
"It would be hard for any legitimate MSSP to use it."
"I've been using it just for my own personal upskilling in terms of how the product works. At the moment, it is pretty straightforward and simple, and it is working how it is supposed to. The feedback would come once it is deployed to customer sites. They'll be using it on a more frequent basis, and that's when the feedback would come in terms of the areas in which they're facing issues or are looking for simplicity."
"USM Anywhere relies a lot on the community putting the data in. Often, you'll right-click on the attack, but nothing will be found. That's a weakness of it."
"It should be able to communicate with other security solutions to stop threats."
"There are many reports included but would be nice to have better access to the data."
"Support can be slow at times, but the quality is high. Posted knowledge base articles could use improvement."
"I'd like to see a dashboard that's a little more descriptive."
CrowdStrike Falcon is ranked 3rd in Endpoint Detection and Response (EDR) with 107 reviews while USM Anywhere is ranked 31st in Endpoint Detection and Response (EDR) with 113 reviews. CrowdStrike Falcon is rated 8.8, while USM Anywhere is rated 8.4. The top reviewer of CrowdStrike Falcon writes "Easy to set up with good behavior-based analysis but needs a single-click recovery option". On the other hand, the top reviewer of USM Anywhere writes "Easy to use and affordable". CrowdStrike Falcon is most compared with Microsoft Defender XDR, Darktrace, Microsoft Defender for Endpoint, Trend Micro Deep Security and VMware Carbon Black Endpoint, whereas USM Anywhere is most compared with Wazuh, AlienVault OSSIM, IBM Security QRadar, Splunk Enterprise Security and Trellix Helix. See our CrowdStrike Falcon vs. USM Anywhere report.
See our list of best Endpoint Detection and Response (EDR) vendors.
We monitor all Endpoint Detection and Response (EDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.