CrowdStrike is a cybersecurity technology firm that provides next-gen endpoint protection in the cloud. The company was founded in 2011 and is headquartered in Irvine, CA. In less than 5 years the company has raised over $150 million in funding, including a $100M Series C led by Google Capital.
CrowdStrike’s Falcon platform is delivered via a 100% native cloud architecture, integrated with 24/7 managed hunting capabilities and in-house threat intelligence. CrowdStrike’s unique Threat Graph harnesses the cloud to instantly analyze data from billions of endpoint events around the world utilizing its crowdsourced community. The platform uses a patented behavioral pattern recognition technology to detect adversaries.
CrowdStrike differentiates itself by targeting the attackers (or Adversaries, as they put it) themselves, rather than just looking for malware. This includes malware-free attacks that can be caused by web server compromise.
Since CrowdStrike utilizes a sensor installed on each customer machine they have access to billions of data points around the globe, rather than having to monitor from their own data centers. The data collected by each sensor is sent to a Security Operations Center where a team of security experts are analyzing data 24/7 and looking for malicious activity on behalf of the customer.
Pricing & Contract Terms
CrowdStrike dows not share pricing publicly. You can get a quote or request a free demo through their website. Pricing will vary depending on how many endpoints a customer needs to monitor (an endpoint generally being an employee machine).
CrowdStrike’s Falcon platform utilizes a small sensor installed on all customer endpoints that they use to feed data back to their Threat Intelligence Cloud. This allows them to analyze and correlate billions of events and detect patterns to determine if an attack is happening.
The two major components of CrowdStrike as a Service are:
Falcon Host: this is the small (10MB) sensor installed on every endpoint. The sensors transmit relevant information to CrowdStrike’s Advanced Threat Intelligence Cloud where it is analyzed by experts who are looking for common events across the entire sensor network. No hardware is required and it can protect both Windows and Mac OS X endpoints.
CrowdStrike Security Operations Center (CSOC): CrowdStrike’s intrusion response experts proactively hunt for adversaries 24/7 to ensure all attacks are detected in the client’s network.