We performed a comparison between CrowdStrike Falcon Complete and Red Canary based on real PeerSpot user reviews.
Find out in this report how the two Managed Detection and Response (MDR) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Binary Defense has a human service department that provides live monitoring for our systems."
"The speed at which their services are reactive is valuable. Nowadays, when a threat hits an endpoint, you've got minutes, not hours or days. Their average response time is about four minutes on an alert. For anything that needs to be sent to us, it's about fourteen minutes, which is pretty good. They're the third SOC that I've used in fifteen years. By far, they are the quickest ones to act. When you're looking at prevention, that's a key factor."
"The best part about Binary Defense MDR is that it runs on everything, and they keep an eye on things 24/7."
"With Binary Defense, we don't just get an alert, but also a detailed rundown of why they're alerting us on it. They tell us what was executed, or the username, script, or IP. That way, we're not wasting time investigating."
"The most valuable part of Binary Defense is its team of cybersecurity analysts. Their analysts filter out the noise and only forward the critical threats that require a response instead of false positives."
"The case interface is Binary Defense MDR's most valuable feature."
"Among the valuable features are the agent, continuous reporting, and dashboard. It has all the features we need and we haven't had to customize it, other than turning on certain features that we wanted."
"The customization has been the most valuable aspect and was really the reason we ended up selecting Binary Defense. They worked with us to provide exactly the level of support, features, response, and collaboration we needed."
"It is very easy to manage the licenses centrally because these are cloud licenses. There is no need for manual data reports."
"Falcon Complete's best features are its detailed reporting and user-friendliness."
"We have experienced ROI using this solution. The value is clear when you are able to stop a ransomware attack or other threats."
"The solution is user-friendly."
"The threat intelligence of CrowdStrike Falcon is the most valuable feature."
"Falcon Complete's best feature is detection. The interface is also user-friendly."
"Its IOCs alerting mechanism is good. I think it is AI based and categorizes behaviors which are unusual."
"Its ease of use is valuable. Nothing is left to you."
"The near real-time review translates into near real-time action. So, in addition to alerting, Red Canary MDR has response playbooks built out."
"The most valuable features of Red Canary MDR are its modeled after the MITRE ATT&CK framework and we can easily automate the containment of the endpoint. Additionally, it is easy to use and we have never had an issue with it."
"The most valuable feature of the solution is its automation part."
"The solution works well for what we use it for and the support and protection are good."
"The valuable features of this solution are it integrates well with different EDR software, such CrowdStrike, and Carbon Black, and the information it provides is helpful."
"The current reporting system could benefit from improvement."
"If I were shopping for an MDR solution today, I would not only look for a company that has the ability to alert, detect, and remediate, but also the ability to integrate vulnerability management. That's a big thing that they're lacking today."
"The most significant area for improvement is in support for non-English speakers; we're a global organization, so many of our users are not English speakers, which can make interacting with them a challenge. There's no Chinese language support, so we must rely on what we can do with the internet. We don't expect Binary Defense to build a language staff, but details can get lost in translation when we assume the whole world speaks English."
"I would like to get more reports from Binary Defense about what they're blocking."
"It's sometimes difficult to know when to engage Binary Defense or TrustedSec, their sister company. TrustedSec is more focused on offensive security, as opposed to the defensive security that the MDR solution provides. It would be awesome if there were a better bridge between that relationship for when we need to get more proactive services or when we need to do a penetration test."
"The only area I see for improvement with Binary Defense is their service portal. It could benefit from some enhancements."
"We should be able to isolate devices faster. They should shorten the time between clicking on a device to contain it and carrying out the action. That would be a welcome improvement."
"Binary Defense MDR could be even better with additional features, like automatic scans and file quarantine."
"We have also been using Cisco AMP for Endpoints for three years. We have received multiple detections in Cisco AMP for Endpoints, and we had to take some actions, whereas CrowdStrike has not detected anything critical since it has been implemented. Most of the incidents that it has detected are false positives. They should work on the false-positive issue. When it is implemented throughout the organization, it gets very difficult to check each false positive and investigate what is correct and what is not correct. It requires technical and manual intervention."
"They are doing very well in continuously improving their product. The only thing is that it is completely cloud-based, and some customers don't really like that type of approach, but you can only provide such a solution when you have cloud-based intelligence. On the other end, we know that it is sometimes a breaking point for some of the customers. They could potentially have an on-prem or hybrid solution. Any antivirus needs to have its features updated. If there could be a relay between them, it would be helpful, but that's very hard to do. So, you either accept that approach and have the benefit with this little disadvantage."
"CrowdStrike Falcon Complete MDR offers an optional module that might not be cost-effective for all organizations."
"I would improve the Operational Technology environment functionalities."
"As of recent, their MITRE scores were not as good as in years past."
"It has a lot of false positives, which can be an issue, but you can verify these false positives."
"Its price and integration into a pre-existing process could be better."
"In a future release, it would be ideal if they could add reporting and action histories to their suite of features."
"I would like there to be an on-premise version of this solution for our data centers because of the proliferation of online threats."
"The price could always be better."
"The most valuable feature of Red Canary MDR is the overall threat protection it provides."
"In general, the solution currently fails to provide a summary to its users."
"There should be an easier way to update agents to new levels in Red Canary MDR. However, it is not a huge issue but it would help."
CrowdStrike Falcon Complete is ranked 1st in Managed Detection and Response (MDR) with 75 reviews while Red Canary is ranked 11th in Managed Detection and Response (MDR) with 5 reviews. CrowdStrike Falcon Complete is rated 8.6, while Red Canary is rated 9.2. The top reviewer of CrowdStrike Falcon Complete writes "Great next-generation antivirus with breach warranty and good intrusion protection". On the other hand, the top reviewer of Red Canary writes "An open-source tool that offers great automation capabilities". CrowdStrike Falcon Complete is most compared with Arctic Wolf Managed Detection and Response, Blackpoint Cyber MDR, Secureworks Taegis ManagedXDR, Sophos MDR and Huntress, whereas Red Canary is most compared with Arctic Wolf Managed Detection and Response, Expel, Rapid7 MDR, ReliaQuest GreyMatter and Secureworks Taegis ManagedXDR. See our CrowdStrike Falcon Complete vs. Red Canary report.
See our list of best Managed Detection and Response (MDR) vendors.
We monitor all Managed Detection and Response (MDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.