Sold by: CrowdStrike
Deployed on AWS
The AI-native CrowdStrike Falcon Platform provides comprehensive protection across all areas of enterprise risk - devices, identities, data, endpoints and cloud. Powered by a single agent, crowdsourced data, expert threat intelligence, and advanced AI, the Falcon Platform simplifies security operations and stops breaches.
4.6
Overview
Organizations today face a serious challenge: managing numerous security vendors and tools while confronting an ever-evolving threat landscape. Sophisticated adversaries are becoming smarter, faster, and more evasive, launching complex attacks that can strike in minutes or even seconds. Traditional security approaches struggle to keep pace, leaving businesses vulnerable.
The CrowdStrike Falcon Platform addresses this by offering a unified, cloud-native solution. It consolidates previously siloed security solutions and incorporates third-party data into a single platform with one efficient and resource-conscious agent, leveraging advanced AI and real-time threat intelligence. This approach simplifies security operations, speeds analyst decision making, and enhances protection to stop the breach, allowing organizations to reduce risk with less complexity and lower costs.
- Cloud Security - Stop breaches from code to cloud
Secure everything in the cloud - from applications and data to AI models. Falcon Cloud Security provides unified agent and agentless platform for complete code to cloud protection. https://www.crowdstrike.com/en-us/platform/cloud-security/
- Endpoint Security - Secure the endpoint, stop the breach
Stop breaches with AI-powered protection, detection, and response backed by world-class adversary intelligence. CrowdStrike Endpoint Security delivers AI-powered protection to automatically detect, investigate, and respond to threats in real-time. https://www.crowdstrike.com/en-us/platform/endpoint-security/
- Identify Protection - Identity is the front line, defend it
Protect hybrid identities with AI that adapts, defends, and outsmarts attacks in real time. Secure the full identity attack lifecycle across hybrid environments. https://www.crowdstrike.com/en-us/platform/identity-protection/
- Next-Gen SIEM - The future of SIEM, today
To defeat threats, you must transform the SOC. Harness the power of AI, automation, and blazing-fast search to outpace adversaries. https://www.crowdstrike.com/en-us/platform/next-gen-siem/
- Data Protection - Real-time data protection from endpoint to cloud
Stop unauthorized data movement and secure sensitive data across endpoints and cloud environments. Complete, real-time data protection without complexity. https://www.crowdstrike.com/en-us/platform/data-protection/
- Exposure Management - Understand risk to stop breaches
Don't just react. Take control with proactive security. Gain full attack surface visibility, assess risk exposure, prioritize threats, and automate responses to outpace adversaries. https://www.crowdstrike.com/en-us/platform/exposure-management/
- Charlotte AI - Powering the next evolution of the SOC
Unite intelligent automation with human cyber expertise to accelerate detection, investigation and response. https://www.crowdstrike.com/en-us/platform/charlotte-ai/
- AI Detection and Response - Secure AI where AI happens
Prevent data leaks, secure AI agents, apps, models, and infrastructure, and block adversarial threats - all from a single platform. https://www.crowdstrike.com/en-us/solutions/secure-your-ai/
Highlights
- Unmatched visibility and protection: CrowdStrike Falcon provides a comprehensive, modern defense across the entire enterprise environment, across endpoint, identity, cloud, data, and more, through a single platform. Unlike legacy solutions, Falcon's cloud-native architecture enables real-time threat detection and response, keeping organizations one step ahead of adversaries.
- Simplified security operations: The Falcon platform consolidates previously siloed security tools into a single, easy-to-use console, and acts as the central hub by integrating with existing tools. This streamlined approach reduces complexity, improves efficiency, and lowers overall security costs.
- AI & threat intel-driven security: Powered by real-time threat intelligence from millions of endpoints worldwide, Falcon continuously evolves to counter the latest threats. This global perspective, combined with insights from world-class threat hunters and industry-leading AI, ensures that organizations are protected against the most sophisticated attacks.
Details
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Trust Center
Access real-time vendor security and compliance information through their Trust Center powered by Drata or Vanta. Review certifications and security standards before purchase.
Buyer guide
Gain valuable insights from real users who purchased this product, powered by PeerSpot.
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Custom pricing options
Pricing is based on your specific requirements and eligibility. Request a private offer to receive a custom quote. Sign in to view any offers that have been extended to you.
Legal
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Support
Vendor support
You can log a support ticket for any issues directly from the Falcon Portal or by emailing the support team at awsmp@crowdstrike.com .
Basic support services such as email communications to the CrowdStrike Support team, access to the support portal and basic troubleshooting and technical assistance.
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products
falcon-mcp enables seamless communication between AI agents and the CrowdStrike Falcon platform. Deployable directly onto Amazon Bedrock AgentCore, it provides programmatic access to Falcon data for agentic workflows and accelerating AI-native security automation.
CrowdStrike Services helps organizations train for, react to and remediate a breach quickly and effectively — getting you back to business faster.
Close the gap in Endpoint Detection & Response (EDR) and Next Gen AV capability by leveraging CrowdStrike's Next Gen EDR/AV solution deployed across your businesses' endpoints by Sekuro's professional services team.
More info about [CrowdStrike](https://www.crowdstrike.com/).
AWS CloudSecOps Protection Platform - CrowdStrike Host and Endpoint Security: Host and endpoint security focuses on protecting individual devices, including servers, workstations, laptops, and mobile devices, from malicious activities. The offering ensures that endpoints are equipped with robust security measures, such as endpoint protection platforms, antivirus software, and encryption, safeguarding against malware, data exfiltration, and unauthorized access.
CrowdStrike Falcon for AWS is a comprehensive endpoint protection solution, providing robust security for AWS workloads and infrastructure. Its key features include cloud-native architecture, next-gen antivirus, and endpoint detection.
Customer reviews
Aman T.
Robust Detection with Seamless Quiet Operation
Reviewed on Jun 12, 2026
Review provided by G2
What do you like best about the product?
I appreciate CrowdStrike Falcon Endpoint Protection Platform's detection capability. It doesn't just rely on known signatures, but picks up on unusual behavior, which makes a big difference when dealing with newer threats. The platform runs quietly in the background, so our staff never even noticed it's there, which is exactly how it should be. The behavioral detection has caught things that traditional antivirus would have completely ignored, saving us from potential serious issues. Additionally, the agent runs very light, allowing our team to get on with their work without any complaints about slow machines, which used to be a constant issue before.
What do you dislike about the product?
The pricing is worth mentioning; it's not the cheapest option out there, and for smaller teams or businesses, it can be a tough sell. Also, when you first get into the platform, there is quite a bit to take in. The amount of data and options available is great, but it can feel like information overload until you get properly comfortable with it. Better onboarding resources would go a long way. Some short video walkthroughs or interactive guides built into the platform would really help new users find their feet faster. Right now, you end up spending a lot of time digging through documentation, which is not always the quickest way to learn.
What problems is the product solving and how is that benefiting you?
I use CrowdStrike Falcon Endpoint Protection Platform for endpoint security, monitoring devices, and catching threats early. It flags suspicious activity ahead of time, reducing stress. Its behavioral detection handles new threats well, and it runs quietly, leaving our team unbothered by slow machines.
Anup A.
Lightweight Deployment, Powerful Incident Response Visibility
Reviewed on Jun 12, 2026
Review provided by G2
What do you like best about the product?
The single-agent architecture actually lives up to the marketing buzz coming from an environment that was bogged down by clunky legacy av suites rolling out the falcon sensor via SCCM was incredibly straightforward. our end-users don't even notice it running because it barely touches local system resources there are no heavy local signature updates choking up machine memory at 9 AM.
From an incident response perspective, the great graph visualization makes life significantly easier during a triage. being able to trace a malicious process execution tree from a stray script back to its origin down to the exact command-line arguments saves us a massive amount id investigation time the behavioral detection tuning handle zero-days without throwing an un
From an incident response perspective, the great graph visualization makes life significantly easier during a triage. being able to trace a malicious process execution tree from a stray script back to its origin down to the exact command-line arguments saves us a massive amount id investigation time the behavioral detection tuning handle zero-days without throwing an un
What do you dislike about the product?
The tool is incredibly capable but the platform's modular structure can be a bit overwhelming during budget planning as getting advanced capabilities like hyper-granular identity telemetry or specialized USB controls means adding specific modules that said it does allow you to build a highly customized security stack rather than paying for a bloated all-in-one suite you don't fully use.
One the administrative side the management console has a sharp learning curve for tier-1 analysts the UI is exceptionally logic it takes some dedicated hands -on-time to confidently map out policy exclusions without feeling a bit intimidated by the sheer number of prevent toggles
One the administrative side the management console has a sharp learning curve for tier-1 analysts the UI is exceptionally logic it takes some dedicated hands -on-time to confidently map out policy exclusions without feeling a bit intimidated by the sheer number of prevent toggles
What problems is the product solving and how is that benefiting you?
We were struggling with massive blind spots on our remote endpoints, especially with developers spinning up unmanaged local VMs and accidentally exposing sensitive internal data falcon gave our security team immediate real-time visibility across our entire distributed workforce without requiring our users to be consistently tunneled through a corporate VPN.
By moving away from static signature defenses to falcon's behavioral indicators of attack (IOAs), we've drastically cut down mean time to detect (MTTD). It successfully caught a lateral movement attempt involving a compromised service account that traditional tools would have glossed over it effectively consolidated three different legacy security utilities down into one console, which cleared a tin of technical overhead from our day-to-day operations queue.
By moving away from static signature defenses to falcon's behavioral indicators of attack (IOAs), we've drastically cut down mean time to detect (MTTD). It successfully caught a lateral movement attempt involving a compromised service account that traditional tools would have glossed over it effectively consolidated three different legacy security utilities down into one console, which cleared a tin of technical overhead from our day-to-day operations queue.
Rajat M.
Lightweight and Effectively Transparent Endpoint Security
Reviewed on Jun 09, 2026
Review provided by G2
What do you like best about the product?
I appreciate that CrowdStrike Falcon Endpoint Protection Platform is lightweight, unlike legacy antivirus software that heavily taxed our systems. The lightweight design doesn't lock up our machines, as it runs quietly in the background. I also value the automatic blocking feature, which keeps my mind at ease, knowing it handles threats without intervention. I find the ability to isolate a computer from the network a handy feature for isolating issues quickly. One of the standout features is the extensive visual process tree, which streamlines alerts by showing a clear attack chain. It has changed how I handle investigations by providing precise sequences of events, like spotting if a user opened a phishing link that triggered a hidden script. This feature is a lifesaver for my team, making our daily tasks less cumbersome by eliminating guesswork and providing fast answers to executive queries. Also, it gives us a complete history of events in less than two minutes, letting us address concerns promptly and find the root cause of issues efficiently.
What do you dislike about the product?
I find the interface fields scattered. Over the years, as new modules have been added, it feels like they made it scattered. I think they need a simple mode toggle or workspace customization for general IT administrators who don't need to see all the dense, advanced features. Another issue is with update trust. Ever since a massive, global update glitch, managing and tracking which endpoints missed an update can be clunky. They should offer more granular control over updates and clearer alerts when a sensor update fails to apply. Also, they should consider lowering the cost. Finally, I think adding a junior analytics alert feature could help, so that lower-level team members can access what they need.
What problems is the product solving and how is that benefiting you?
I use CrowdStrike Falcon Endpoint Protection Platform to protect company laptops and servers from malware and ransomware. It runs quietly in the background, and I check alerts if any user downloads something sketchy.
chetan s.
Excellent Real-Time Threat Detection with a User-Friendly Dashboard
Reviewed on Jun 05, 2026
Review provided by G2
What do you like best about the product?
Its lightweight agent, real-time threat detection, and cloud-native architecture provide excellent visibility into endpoints. It helps identify and stop advanced threats quickly, and it’s also easy to deploy and manage.
What do you dislike about the product?
Some advanced features take time to learn for new users, especially for smaller IT teams that don’t have dedicated security expertise.
What problems is the product solving and how is that benefiting you?
It helps us solve challenges related to endpoint security, threat detection, and incident response across our organization.
Mohamed M.
Reliable Detection with Minimal false Positives
Reviewed on Jun 02, 2026
Review provided by G2
What do you like best about the product?
I like that the number of false positive alerts is very low and the detections are very accurate. I also appreciate getting PowerShell access to investigate and take action, as well as the ability to run Python scripts. Investigating the machine's event history is straightforward. The detection and response capabilities are much better than what I was used to with our previous product. The setup was also easy.
What do you dislike about the product?
In CrowdStrike, drive/volume references are shown as device paths rather than Windows drive letters (volume# instead of C: or E:). It would be better if they were changed to Windows style letters.
What problems is the product solving and how is that benefiting you?
I use CrowdStrike Falcon Endpoint Protection Platform for threat hunting, incident investigation, and response. It provides low false positive alerts and accurate detections. I get PowerShell access for investigation, can run Python scripts, and perform event history investigations. Detection, response, and taking action are much improved.