Sold by: CrowdStrike
Deployed on AWS
The AI-native CrowdStrike Falcon Platform provides comprehensive protection across all areas of enterprise risk - devices, identities, data, endpoints and cloud. Powered by a single agent, crowdsourced data, expert threat intelligence, and advanced AI, the Falcon Platform simplifies security operations and stops breaches.
4.6
Overview
Organizations today face a serious challenge: managing numerous security vendors and tools while confronting an ever-evolving threat landscape. Sophisticated adversaries are becoming smarter, faster, and more evasive, launching complex attacks that can strike in minutes or even seconds. Traditional security approaches struggle to keep pace, leaving businesses vulnerable.
The CrowdStrike Falcon Platform addresses this by offering a unified, cloud-native solution. It consolidates previously siloed security solutions and incorporates third-party data into a single platform with one efficient and resource-conscious agent, leveraging advanced AI and real-time threat intelligence. This approach simplifies security operations, speeds analyst decision making, and enhances protection to stop the breach, allowing organizations to reduce risk with less complexity and lower costs.
- Cloud Security - Stop breaches from code to cloud
Secure everything in the cloud - from applications and data to AI models. Falcon Cloud Security provides unified agent and agentless platform for complete code to cloud protection. https://www.crowdstrike.com/en-us/platform/cloud-security/
- Endpoint Security - Secure the endpoint, stop the breach
Stop breaches with AI-powered protection, detection, and response backed by world-class adversary intelligence. CrowdStrike Endpoint Security delivers AI-powered protection to automatically detect, investigate, and respond to threats in real-time. https://www.crowdstrike.com/en-us/platform/endpoint-security/
- Identify Protection - Identity is the front line, defend it
Protect hybrid identities with AI that adapts, defends, and outsmarts attacks in real time. Secure the full identity attack lifecycle across hybrid environments. https://www.crowdstrike.com/en-us/platform/identity-protection/
- Next-Gen SIEM - The future of SIEM, today
To defeat threats, you must transform the SOC. Harness the power of AI, automation, and blazing-fast search to outpace adversaries. https://www.crowdstrike.com/en-us/platform/next-gen-siem/
- Data Protection - Real-time data protection from endpoint to cloud
Stop unauthorized data movement and secure sensitive data across endpoints and cloud environments. Complete, real-time data protection without complexity. https://www.crowdstrike.com/en-us/platform/data-protection/
- Exposure Management - Understand risk to stop breaches
Don't just react. Take control with proactive security. Gain full attack surface visibility, assess risk exposure, prioritize threats, and automate responses to outpace adversaries. https://www.crowdstrike.com/en-us/platform/exposure-management/
- Charlotte AI - Powering the next evolution of the SOC
Unite intelligent automation with human cyber expertise to accelerate detection, investigation and response. https://www.crowdstrike.com/en-us/platform/charlotte-ai/
- AI Detection and Response - Secure AI where AI happens
Prevent data leaks, secure AI agents, apps, models, and infrastructure, and block adversarial threats - all from a single platform. https://www.crowdstrike.com/en-us/solutions/secure-your-ai/
Highlights
- Unmatched visibility and protection: CrowdStrike Falcon provides a comprehensive, modern defense across the entire enterprise environment, across endpoint, identity, cloud, data, and more, through a single platform. Unlike legacy solutions, Falcon's cloud-native architecture enables real-time threat detection and response, keeping organizations one step ahead of adversaries.
- Simplified security operations: The Falcon platform consolidates previously siloed security tools into a single, easy-to-use console, and acts as the central hub by integrating with existing tools. This streamlined approach reduces complexity, improves efficiency, and lowers overall security costs.
- AI & threat intel-driven security: Powered by real-time threat intelligence from millions of endpoints worldwide, Falcon continuously evolves to counter the latest threats. This global perspective, combined with insights from world-class threat hunters and industry-leading AI, ensures that organizations are protected against the most sophisticated attacks.
Details
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Trust Center
Access real-time vendor security and compliance information through their Trust Center powered by Drata or Vanta. Review certifications and security standards before purchase.
Buyer guide
Gain valuable insights from real users who purchased this product, powered by PeerSpot.
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Custom pricing options
Pricing is based on your specific requirements and eligibility. Request a private offer to receive a custom quote. Sign in to view any offers that have been extended to you.
Legal
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Support
Vendor support
You can log a support ticket for any issues directly from the Falcon Portal or by emailing the support team at awsmp@crowdstrike.com .
Basic support services such as email communications to the CrowdStrike Support team, access to the support portal and basic troubleshooting and technical assistance.
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products
falcon-mcp enables seamless communication between AI agents and the CrowdStrike Falcon platform. Deployable directly onto Amazon Bedrock AgentCore, it provides programmatic access to Falcon data for agentic workflows and accelerating AI-native security automation.
Close the gap in Endpoint Detection & Response (EDR) and Next Gen AV capability by leveraging CrowdStrike's Next Gen EDR/AV solution deployed across your businesses' endpoints by Sekuro's professional services team.
More info about [CrowdStrike](https://www.crowdstrike.com/).
CrowdStrike Services helps organizations train for, react to and remediate a breach quickly and effectively — getting you back to business faster.
AWS CloudSecOps Protection Platform - CrowdStrike Host and Endpoint Security: Host and endpoint security focuses on protecting individual devices, including servers, workstations, laptops, and mobile devices, from malicious activities. The offering ensures that endpoints are equipped with robust security measures, such as endpoint protection platforms, antivirus software, and encryption, safeguarding against malware, data exfiltration, and unauthorized access.
CrowdStrike Falcon for AWS is a comprehensive endpoint protection solution, providing robust security for AWS workloads and infrastructure. Its key features include cloud-native architecture, next-gen antivirus, and endpoint detection.
Customer reviews
Mouhsine D.
Real-Time Threat Detection with Some Setup Challenges
Reviewed on May 29, 2026
Review provided by G2
What do you like best about the product?
I like CrowdStrike Falcon Endpoint Protection Platform for its real-time threat detection and cloud-based visibility. It's fast and lightweight, and the automated response features really reduce the need for manual intervention. The platform helps me quickly identify suspicious activity before it escalates into a serious incident. The cloud-based visibility is valuable because I can monitor everything from a single dashboard, which is very easy to manage. The automated response saves time by containing or isolating threats instantly.
What do you dislike about the product?
It can sometimes be a bit complex to configure at the very beginning, especially for fine-tuning policies. Also, the alert volume can feel high without good filtering, so it takes some time to adjust.
What problems is the product solving and how is that benefiting you?
I use CrowdStrike Falcon Endpoint Protection Platform to protect against malware, ransomware, and cyber threats. It prevents advanced threats, reduces breach risks, provides real-time visibility, identifies suspicious activity quickly, and saves time with automated threat response.
Sharon Z.
All-in-One Security Protection That Does It All
Reviewed on May 29, 2026
Review provided by G2
What do you like best about the product?
I like the fact that it protects and combines all the defence secuirty tools into one. it basically does most of the stuff
What do you dislike about the product?
licenses are limited not all of us in the team have the licenses due to the badget
What problems is the product solving and how is that benefiting you?
AI-driven behavioral analysis combined with real-time threat intelligence helps detect suspicious activity.
Manisha T.
Reliable and Powerful Endpoint Protection Platform
Reviewed on May 27, 2026
Review provided by G2
What do you like best about the product?
Cloud-native architecture
Falcon runs from the cloud, so there’s no heavy on-premise infrastructure to maintain. Deployment and updates are usually faster and simpler.
Lightweight agent
Compared to many traditional antivirus tools, the Falcon sensor uses relatively low system resources, which users often appreciate on employee laptops and servers.
Falcon runs from the cloud, so there’s no heavy on-premise infrastructure to maintain. Deployment and updates are usually faster and simpler.
Lightweight agent
Compared to many traditional antivirus tools, the Falcon sensor uses relatively low system resources, which users often appreciate on employee laptops and servers.
What do you dislike about the product?
High cost
Many organizations feel the licensing and add-on modules can become expensive, especially for smaller companies or growing environments.
Complexity for new users
While powerful, the platform can have a learning curve for administrators who are new to EDR/XDR tools or advanced threat hunting.
Alert volume / tuning required
Many organizations feel the licensing and add-on modules can become expensive, especially for smaller companies or growing environments.
Complexity for new users
While powerful, the platform can have a learning curve for administrators who are new to EDR/XDR tools or advanced threat hunting.
Alert volume / tuning required
What problems is the product solving and how is that benefiting you?
Detecting advanced cyber threats quickly
Falcon helps identify ransomware, malware, phishing activity, and suspicious behavior in real time using AI and behavioral analytics.
Benefit: Faster detection reduces the risk of data breaches and operational downtime.
Limited visibility across endpoints
Many companies struggle to monitor laptops, desktops, and servers across multiple locations.
Benefit: Falcon provides centralized visibility into endpoint activity, making it easier for IT and security teams to track threats from a single dashboard.
Falcon helps identify ransomware, malware, phishing activity, and suspicious behavior in real time using AI and behavioral analytics.
Benefit: Faster detection reduces the risk of data breaches and operational downtime.
Limited visibility across endpoints
Many companies struggle to monitor laptops, desktops, and servers across multiple locations.
Benefit: Falcon provides centralized visibility into endpoint activity, making it easier for IT and security teams to track threats from a single dashboard.
srivineesh m.
Exceptional Detection, Pricey and Overprotective
Reviewed on May 26, 2026
Review provided by G2
What do you like best about the product?
I liked CrowdStrike Falcon Endpoint Protection Platform for its visual process tree, which helped me handle massive text logs and map attack timelines, saving me a lot of time compared to manual work with Windows event logs. The real-time response console was another standout feature for me because it's direct, secure, and uses a CLI-based interface, allowing me to kill malicious processes and delete files without the end user noticing. Its ability to isolate an infected machine with one click and record all system behaviors also made it very useful. Additionally, the initial setup was very easy and simple, thanks to the tiny installer.
What do you dislike about the product?
The main problem was the price; even after buying Pro, it asked me to pay for features like integrated vulnerability management and automated SOAR workflows. The aggressive tamper protection made it difficult to easily uninstall or fix a broken agent. Another issue was the false positives, as it frequently flagged the dev tool and my custom internal scripts as malicious due to reliance on AI.
What problems is the product solving and how is that benefiting you?
I use CrowdStrike Falcon Endpoint Protection Platform to eliminate blind spots like script-based attacks, record system behaviors, and isolate infected machines instantly. It saves time by mapping attack timelines and allows me to manage threats globally, even on remote networks.
Anu B.
Unmatched Real-Time Visibility, Needs Smarter Alerts
Reviewed on May 26, 2026
Review provided by G2
What do you like best about the product?
I like CrowdStrike Falcon Endpoint Protection Platform for its unmatched real-time visibility, allowing me to see exactly what's happening on every endpoint as it occurs. The lightweight cloud-native agent is another standout feature, delivering powerful protection without slowing down device performance. Its real-time threat detection is also impressive. Additionally, I appreciate the integration of threat intelligence, which helps in understanding who is behind attacks and why they are happening. The unified EDR plus NGAV platform is a great combination.
What do you dislike about the product?
CrowdStrike Falcon can sometimes generate a high volume of alerts, and not all of them are meaningful, which can be a bit noisy. The pricing can get high quickly with added measures like Spotlight or identity protection, so more flexible bundles or user-based pricing could make it more accessible. Also, while integrations exist, some require extra configuration or don't sync data as smoothly as expected. Tighter and more automated integration with SIEM or SOAR tools would improve workflow.
What problems is the product solving and how is that benefiting you?
I use CrowdStrike Falcon Endpoint Protection Platform for advanced threat detection, real-time visibility into threats, stopping attacks before they spread, eliminating gaps left by traditional antivirus, and addressing slow incident response.