We performed a comparison between CrowdStrike Falcon and Microsoft Exchange Online Protection (EOP) based on real PeerSpot user reviews.
Find out in this report how the two Endpoint Detection and Response (EDR) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The console is easy to read. I also like the scanning part and the ability to move assets from one to the other."
"Exceptions are easy to create and the interface is easy to follow with a nice appearance."
"Fortinet FortiEDR made our clients feel secure and more at ease, knowing that they had an EDR solution that would close the gap in their security posture."
"he solution is an anti-malware product that integrates well with other vendor products such as firewalls, SIEM, etc. It captures threat intelligence and gives you better visibility. The product also has sandboxing features."
"Fortinet is very user-friendly for customers."
"It is stable and scalable."
"This is stable and scalable."
"Ability to get forensics details and also memory exfiltration."
"The most valuable feature of CrowdStrike Falcon is its accuracy. That's very important for me. False-positive are very bad for everyone. As we are a financial institution, it's even worse. I like Falcon because it's very accurate."
"Cyberattack detection is very good. We use it for detecting different vulnerabilities, such as ransomware, virus, and malware. It is a good product today when compared to Symantec that we used previously."
"The CrowdStrike Falcon dashboard is good, and we haven't had any problems with it."
"The most valuable feature is the machine learning that they use to check certain patterns in the endpoint devices. It checks the whole ecosystem or entire environment."
"The features we showcase to potential customers are prevention, malware protection, zero-day protection, and application scripting. Vulnerability assessment is another valuable feature."
"I like the feature called RTC, the remote time connector."
"Easy to use, intelligent, and stable threat detection software."
"The solution offers great stability."
"The initial setup is just a standard process."
"We like the holding facility that is available for potentially suspicious URL's. This allows a real-time review to be performed before the email reaches a users inbox."
"It is an easy solution."
"We can migrate seamlessly without any disruptions to our operations."
"It is scalable."
"It has a really nice web-based administration console."
"With Microsoft Exchange Online Protection, if malware is attached to a mailer, it's very easy to go into the incident alert and find out what's happening with that identity and the mail."
"The most valuable feature is the ease of administration. Other solutions require complex administration, but Microsoft Exchange Online Protection is easier."
"There's room for improvement in the quick response time and technical support for integration issues, especially when dealing with multiple vendors."
"I haven't seen the use of AI in the solution."
"The amount of usage, the number of details we get, or the number of options that can be tweaked is limited in comparison to that with other EDR solutions"
"Everything with Fortinet having to do with their cloud services. They need to invest more in their internal infrastructure that they are running in the cloud. One of the things I find with their cloud environment compared to others' is that they go cheap on the equipment. So it causes some performance degradation."
"The EDR console should have more extensive reporting. You shouldn't need to purchase FortiAnalyzer. It should be included in the EDR part. The security adviser cloud platform could be improved with more options for exclusive or intensive rules for devices."
"We find the solution to be a bit expensive."
"The support needs improvement."
"The SIEM could be improved."
"The pricing structure should allow for some flexibility."
"A year and a half ago or more, if you put in a support request by email, then it wasn't timely addressed. It could be a day to three days before you received a response, which was a bit frustrating. There was a lot of customer feedback around this issue, which has been greatly refined."
"Falcon could be improved with more function on the mobile end of things and better optimization with mobile devices."
"CrowdStrike Falcon needs to improve their host management system."
"I would like them to improve the correlation of data in the search algorithms. When we run an investigation, malware, phishing, etc., I want to look at multiple endpoints at once to correlate that data to see the likenesses, e.g., how are they not alike or what systems and processes are running across those systems? I don't want to have to run the same search in their Spotlight module five, 10, 15, or 100 times to get 100 different results, copy that data out, and then correlate it on my own. In a very simple way, I want to be able to load up a comma-delimited list giving me the spotlight data on these X amount of hosts, letting me search for it quickly. We have had to go back to CrowdStrike, and say, "Our search are taking far too long for even one host." They did bump up the cores and that did improve performance, but it is still kind of slow to get that Spotlight data. That is probably our biggest pain point. I think that needs some help. I understand this kind of information access is probably not the easiest thing to do. It is probably a big ask depending on how their back-end is setup."
"The dashboard area must be improved. We have integration with Splunk, and we are creating a dashboard there. Their dashboard area must be up to date. It should have more details and more options to create the reports and things like that."
"CrowdStrike should add support for ransomware protection."
"CrowdStrike needs to quit making up stuff about its features and functionality to bash its competition."
"The tool is not 100% stable."
"We would like the solution to have more in-built intelligence in the way that it reviews potential security risks, rather than our team constantly having to update the policies."
"The licensing can be on the expensive side, especially in the cloud space."
"The security features could be better."
"The solution needs to improve its backup."
"It wasn't easy or intuitive enough for me to start using it. So, the reason was that the solution changed."
"Not all settings can be configured automatically and most still require manual configuration. However, there is an automation tool available that can be used to input all the configurations either as a script or a tool it would be helpful."
"The price of Microsoft Exchange Online Protection could be reduced to make it more competitive."
More Microsoft Exchange Online Protection (EOP) Pricing and Cost Advice →
CrowdStrike Falcon is ranked 3rd in Endpoint Detection and Response (EDR) with 110 reviews while Microsoft Exchange Online Protection (EOP) is ranked 11th in Anti-Malware Tools with 34 reviews. CrowdStrike Falcon is rated 8.6, while Microsoft Exchange Online Protection (EOP) is rated 8.2. The top reviewer of CrowdStrike Falcon writes "Easy to set up with good behavior-based analysis but needs a single-click recovery option". On the other hand, the top reviewer of Microsoft Exchange Online Protection (EOP) writes "An effective email security solution that provides DLP, Safe Attachment, and Safe Links". CrowdStrike Falcon is most compared with Microsoft Defender XDR, Darktrace, Microsoft Defender for Endpoint, Trend Micro Deep Security and VMware Carbon Black Endpoint, whereas Microsoft Exchange Online Protection (EOP) is most compared with Microsoft Defender for Office 365, Proofpoint Email Protection, Cisco Secure Email, Fortinet FortiMail and Mimecast Email Security. See our CrowdStrike Falcon vs. Microsoft Exchange Online Protection (EOP) report.
We monitor all Endpoint Detection and Response (EDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.