We performed a comparison between Forescout Platform and Crowdstrike Falcon based on our users’ reviews in five categories. After reading all of the collected data, you can find our conclusion below.
Features: The Forescout Platform stands out for its agentless visibility and advanced features like device fingerprinting. Forescout users say the product could be better at resolving connectivity and license issues. Users also want more compatibility with different devices and operating systems, along with better logging and troubleshooting capabilities.
Service and Support: Some users reported positive experiences with Forescout support, but others requested better responsiveness and training. CrowdStrike Falcon's customer service is considered prompt and helpful.
Ease of Deployment: Some users found Forescout’s setup to be simple and adaptable, while others perceived it as more complex and time-intensive. CrowdStrike Falcon's setup is considered to be simple and efficient, with deployment times ranging from a few days to a month. While there may be some challenges during installation, they are generally manageable.
Pricing: The total cost of Forescout Platform can be high depending on the level of customization and integration required. Some users find CrowdStrike Falcon costly and think the price should be lowered to make it more competitive.
ROI: Forescout Platform yields a solid ROI by improving network access control and overall security. CrowdStrike Falcon offers cost savings by decreasing the required number of engineers and eliminating the need for onsite servers.
Comparison Results: Forescout Platform is preferred over CrowdStrike Falcon due to its unmatched visibility, device fingerprinting, and configuration options. It is easy to set up, stable, reliable, and affordable. It offers a slew of valuable features like NAC, asset management, and vulnerability remediation.
"The integration, visibility, vulnerability management, and device identification are valuable."
"The product integrates security into one tool instead of having third-party security tools."
"The integration with other Microsoft solutions is the most valuable feature."
"The most valuable aspect is undoubtedly the exploration capability"
"It's a great threat intelligence source for us, providing alerts for things it detects on the network and on the machines. We've used it often when there is a potential incident to see what was done on a computer. That works quite nicely because you can see everything that the user has done..."
"Many people don't realize that Microsoft Azure, Exchange Online, and the security and compliance portal all sync together. For instance, within the Azure portal you can set security restrictions and policies to help secure your tenants... The good part of it is that these products have already been integrated. When you sign on as an admin you have global admin rights and that gives you access to all these features."
"We can automate routine tasks and write scripts to carry out difficult tasks, which makes things easier for us."
"Microsoft 365 Defender is a stable solution."
"The most valuable features of Crowdstrike Falcon XDR are Spotlight and Discovery, they are helpful. Additionally, the console is user-friendly, with fewer false positives than other solutions."
"I like the vulnerability assessment and proactive hunting features of CrowdStrike Falcon."
"I like the dashboard nature of it. Everything is clickable, linkable, and information is easy to obtain and find. How it presents that information is probably the biggest win as far as the information correlation aspect. The presentation of it is very good."
"One of the most valuable features of CrowdStrike Falcon is when there are upgrades there are no additional fees."
"The most valuable feature is the activity dashboard because it gives you a holistic view of your environment from a security standpoint."
"Everything we've done with CrowdStrike is due to Arctic Wolf. We don't even need to get alerts from CrowdStrike anymore. It'll send those to Arctic Wolf, and then Arctic Wolf analyzes those and let us know if there's a major issue."
"It's ability to do threat hunting is really great, quite robust, and even allows you to do hygiene stuff."
"The detection is very reliable. Also, OverWatch is a great feature."
"The initial setup is easy, taking no more than two or three weeks."
"Forescout Platform has made it possible to block people working near our construction sites who should not have access to our network."
"We think it's simple. We think it's very useful and we really like reports and everything."
"The product is very easy to work with and easy to deploy."
"The most valuable feature is the blocking of USB devices."
"The most valuable feature of the Forescout Platform is the large capacity it can handle. Additionally, the interface of the platform is good."
"This is clearly the best product for the NAC use cases in this field for Forescout."
"The most valuable feature is the ease of deployment, which does not require the use of an agent."
"The dashboard should be easier to use. There is also improvement needed in the reporting when it comes to exporting or scheduling reports."
"Generally, antivirus products provide a central control to manage every device in terms of who is installing it or who is trying to disable it, but Microsoft doesn't have such a control center for the antivirus product it provides."
"Microsoft Defender XDR is not a full-fledged EDR or XDR."
"Just like in any solution, the price can always be cheaper."
"The interface could be improved. For example, if you want to do a phishing simulation for your employees, it can take a while to figure out what to do. The interface is a bit messy and could be updated. It isn't too bad, but doing some things can be a long process."
"The support team is not competent or responsive."
"There is no common area where we can manage all the policies for the EDR, third-party solutions, devices, servers, Windows, Mac, etc., but it's on the road map, and we ware waiting for that feature."
"The advanced threat-hunting capabilities are phenomenal, and the security copilot enhances that, but some data elements could be better or have more context inside of the advanced tables themselves. The schemas feel a little limited to what they're building into the product. It's probably just a maturity thing. I imagine we'll see the features I want in the next year."
"I've found that CrowdStrike's technical support could benefit from increased technical expertise."
"The technical support team often just replies to an issue with a link to an article rather than actually calling back and talking to someone and making sure the problem is solved. To me, that's kind of weak."
"We would like to be able to perform on-demand scanning, rather than relying on the scheduler."
"I would like to see the machine learning feature enhanced."
"CrowdStrike Falcon sometimes wrongly flags things as malicious. Let's say a user is active on Chrome only. Sometimes, our cross-segmenting will fetch from the backend data and show that it is malicious because of memory or CPU utilization."
"I would like CrowdStrike to provide some correlation in the threat analysis, so we can visualize things better."
"In the future release of CrowdStrike Falcon, they should add a sandbox feature."
"We encounter occasional issues, such as when disabling network access for a host that uses CrowdStrike."
"The solution could always improve by adding more features to make it more robust."
"They should improve features related to IT security. ForeScout should analyze behavior to see if the behavior is malicious behavior and block this device. They should develop the ability to analyze the behavior of the device in my environment."
"The reporting feature needs improvement."
"This solution is not that easy to scale but this depends on a company's needs."
"The fact that Forescout Platform doesn't have a presence in the South African region is a weakness because of which you can't ask for help from them if you have any problems."
"We have found that the agent-based authentication, available within this solution could be improved."
"Search - needs boolean functionality (or pseudo operand now working)."
"As a product, there is nothing to complain about. However, they should improve their overall support. You need that level of knowledge, that level of information is clearly not available. First and foremost, that information is not accessible. The second point to mention is that once you purchase the later support and services. That is, they will continue to charge you for every service."
CrowdStrike Falcon is ranked 1st in Extended Detection and Response (XDR) with 107 reviews while Forescout Platform is ranked 12th in Extended Detection and Response (XDR) with 69 reviews. CrowdStrike Falcon is rated 8.8, while Forescout Platform is rated 8.4. The top reviewer of CrowdStrike Falcon writes "Easy to set up with good behavior-based analysis but needs a single-click recovery option". On the other hand, the top reviewer of Forescout Platform writes "We can go granular on each endpoint, quarantine non-compliant machines, and target vulnerabilities through scripting". CrowdStrike Falcon is most compared with Darktrace, Microsoft Defender for Endpoint, Trend Micro Deep Security, Trend Vision One and SentinelOne Singularity Complete, whereas Forescout Platform is most compared with Cisco ISE (Identity Services Engine), Aruba ClearPass, Fortinet FortiNAC, Nozomi Networks and Armis. See our CrowdStrike Falcon vs. Forescout Platform report.
See our list of best Extended Detection and Response (XDR) vendors.
We monitor all Extended Detection and Response (XDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.