We performed a comparison between CrowdStrike Falcon and CylanceOPTICS based on real PeerSpot user reviews.
Find out in this report how the two Endpoint Detection and Response (EDR) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The console is easy to read. I also like the scanning part and the ability to move assets from one to the other."
"NGAV and EDR features are outstanding."
"I like FortiClient EMS. FortiEDR has a lot of great features like lockdown mode, remote wipes, and encryption. I can set malware outbreak policies and controls for detecting abnormalities. You can also simulate phishing attacks."
"Forensics is a valuable feature of Fortinet FortiEDR."
"This is stable and scalable."
"The stability is very good."
"It is stable and scalable."
"Additionally, when it comes to EDR, there are more tools available to assist with client work."
"The stability is good; we haven't experienced any glitches or bugs."
"CrowdStrike enables the infrastructure managers to visualize all the events and get information about the network."
"It provides very good protection and the ability to crosscheck environments."
"I like Falcon's threat detection and endpoint investigation features. It's a user-friendly solution."
"CrowdStrike Falcon is a very light solution. It does not use too much processor or RAM."
"It helps us to identify the threats according to the behavior of any process that is running on any particular system. It helps immensely to identify any malicious behavior on any endpoints."
"The most valuable feature of CrowdStrike Falcon for me is its unified sensor, applicable across all models."
"The most valuable feature of CrowdStrike Falcon is crowdsourcing intelligence."
"It automatically blocks the threats, helping us investigate if they harm the environment."
"The most valuable feature is the ability to respond to zero-day and unknown threats."
"I would rate the stability a nine out of ten. I would give it a close ten as possible because, like SentinelOne, I've seen incompatibility. Whereas Cylance, I've seen none."
"Cylance is not a signature-based protection solution and instead works proactively using AI and ML models to patrol for malicious behavior."
"CylanceOPTICS is easy to use."
"The solution has a high level of trust in the industry."
"CylanceOPTICS is pretty stable."
"It's pretty unintrusive"
"I haven't seen the use of AI in the solution."
"They can include the automation for the realtime updates. We have a network infrastructure with remote sites. Whenever they send updates, they are not automated. We have to go into the console and push those updates. I wish it was more automated. The update file is currently around 31 MB. It could be smaller."
"Once, we had an event that was locked and blocked, but information about it came to us two or three days later."
"FortiEDR could add a separate scanning dashboard. In incident management, we prefer to remove the endpoint system from the environment and scan the system. We typically use Symantec for that, but if we want to use FortiEDR for that, then we need a scanning tab to clarify things."
"The amount of usage, the number of details we get, or the number of options that can be tweaked is limited in comparison to that with other EDR solutions"
"FortiEDR can be improved by providing more detailed reporting."
"The only minor concern is occasional interference with desired programs."
"The support needs improvement."
"The pricing is a bit too high."
"In a future release, I would like to see more integrations for data breaches and security features."
"CrowdStrike Falcon could be enhanced by extending its security capabilities to include NDR and XDR."
"The Integration with tools, SOC tools, could be better."
"Forensic controls have room for improvement."
"CrowdStrike Falcon sometimes wrongly flags things as malicious. Let's say a user is active on Chrome only. Sometimes, our cross-segmenting will fetch from the backend data and show that it is malicious because of memory or CPU utilization."
"The portal can be clunky to navigate at times and has room for improvement."
"For CrowdStrike to work, all the machines need to have an internet connection. This makes it challenging to assist customers without an internet connection. We would like to have a mechanism or relay to make this possible."
"CylanceOPTICS could benefit from more granular control in the timeline-building process. Ideally, users would be able to drill deeper into the analysis rather than have the machine dictate the direction."
"The product's initial setup process could be easy."
"The technical support could be improved although it's probably better than you get with a lot of the other traditional antivirus solutions"
"Our customers would like to see more automation with respect to how threats are handled once they have been detected."
"The reporting is very weak and not very good at all."
"One minor issue that somebody mentioned was that they didn't like their management console."
"The detection component is something that they have to work on."
"Too many false positives are reported."
CrowdStrike Falcon is ranked 3rd in Endpoint Detection and Response (EDR) with 105 reviews while CylanceOPTICS is ranked 33rd in Endpoint Detection and Response (EDR) with 10 reviews. CrowdStrike Falcon is rated 8.8, while CylanceOPTICS is rated 7.6. The top reviewer of CrowdStrike Falcon writes "Easy to set up with good behavior-based analysis but needs a single-click recovery option". On the other hand, the top reviewer of CylanceOPTICS writes "Enables the isolation and inoculation of infected machines, offering a practical solution for dealing with threats and preventing their spread within the environment". CrowdStrike Falcon is most compared with Microsoft Defender XDR, Darktrace, Microsoft Defender for Endpoint, Trend Micro Deep Security and VMware Carbon Black Endpoint, whereas CylanceOPTICS is most compared with Microsoft Defender for Endpoint. See our CrowdStrike Falcon vs. CylanceOPTICS report.
See our list of best Endpoint Detection and Response (EDR) vendors.
We monitor all Endpoint Detection and Response (EDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.