We performed a comparison between CrowdStrike Falcon and Forescout XDR based on real PeerSpot user reviews.
Find out what your peers are saying about CrowdStrike, SentinelOne, Wazuh and others in Extended Detection and Response (XDR)."We can automate routine tasks and write scripts to carry out difficult tasks, which makes things easier for us."
"Defender XDR has a feature called the timeline that lets you track all activities. It helps a lot with investigations."
"The threat intelligence is excellent."
"Microsoft 365 Defender is a good solution and easy to use."
"The EDR features are valuable. By getting the EDR features, we have more control over the device. We have information about events in real-time and more protection against zero-day threats and zero-day vulnerabilities. We can monitor every event or action that a device is going through. We can get an idea if it is something malicious or if we have to take any actions."
"The unified view of the threat landscape on a central dashboard is the most valuable feature."
"The product is very easy to use."
"I like that it's stable. It's been stable for a long time, and Microsoft Defender has done a good job there."
"The CS falcon agent is a lightweight agent compared with other agents of EDR products."
"Everything we've done with CrowdStrike is due to Arctic Wolf. We don't even need to get alerts from CrowdStrike anymore. It'll send those to Arctic Wolf, and then Arctic Wolf analyzes those and let us know if there's a major issue."
"The threat intelligence is the most valuable feature."
"Easy to use, intelligent, and stable threat detection software."
"I like the dashboard nature of it. Everything is clickable, linkable, and information is easy to obtain and find. How it presents that information is probably the biggest win as far as the information correlation aspect. The presentation of it is very good."
"The UI is simple and self-explanatory. Everything is easy to understand."
"The most valuable features in CrowdStrike Falcon are the full EDR with antivirus, hunting, reporting, and RTR remote control."
"It's very easy to set up."
"The product has valuable features for cloud IoT device enhancement, intelligent threat detection, etc."
"It would be highly beneficial if CoPilot could identify anomalies within the network and notify the IT team."
"The solution could improve by having better machine learning and AI. Additionally, the interface, documentation, and integration could be better."
"While the XDR platform offers valuable functionalities, it falls short of other solutions in its ability to deliver a cohesive identity experience."
"At times, there may be delays in the execution of certain actions and their effects."
"We should be able to use the product on devices like Apple, Linux, etc."
"Support is hit or miss. Microsoft wants you to buy premium support contracts. Though they call themselves professional support, it's almost like throwing questions into a black hole. You get an answer, but it's never helpful."
"There are other SIEM solutions that are easier to use, mainly based on the creation of rules, use cases, and groups."
"The data recovery and backup could be improved."
"CrowdStrike Falcon could be enhanced by extending its security capabilities to include NDR and XDR."
"The detection time has room for improvement."
"The console is not user-friendly or visually appealing and has room for improvement."
"Forensic controls have room for improvement."
"They respond quickly on the weekdays, but the weekend response times are slower."
"In terms of features, I would like them to add detailed logging functionality in CrowdStrike. Currently, CrowdStrike detects the threats immediately based on the IOCs and the signature-based policies or many threat behaviors, but in terms of logging those threats, it is not very good. The information that they provide in the logs is very little. They can build more analytics into it."
"CrowdStrike Falcon by itself does not supply in-depth reporting."
"The management of the solution could improve."
"The product is more expensive than other vendors in terms of features."
CrowdStrike Falcon is ranked 1st in Extended Detection and Response (XDR) with 107 reviews while Forescout XDR is ranked 29th in Extended Detection and Response (XDR) with 1 review. CrowdStrike Falcon is rated 8.8, while Forescout XDR is rated 6.0. The top reviewer of CrowdStrike Falcon writes "Easy to set up with good behavior-based analysis but needs a single-click recovery option". On the other hand, the top reviewer of Forescout XDR writes "Provides efficient network access control, but its support services need improvement". CrowdStrike Falcon is most compared with Darktrace, Microsoft Defender for Endpoint, Trend Micro Deep Security, Trend Vision One and SentinelOne Singularity Complete, whereas Forescout XDR is most compared with Arctic Wolf Managed Detection and Response.
See our list of best Extended Detection and Response (XDR) vendors.
We monitor all Extended Detection and Response (XDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.