CrowdStrike Falcon Spotlight: vulnerability management

CrowdStrike Falcon® Spotlight provides real-time visibility across your enterprise — giving you relevant and timely information you need to reduce your exposure to attacks with zero impact on your endpoints.

Why Falcon Spotlight?


Unified threat and vulnerability management

As part of an integrated platform that prevents exploits and post-exploit activity, Falcon Spotlight™ allows you to research common vulnerabilities and exposures (CVEs) to examine threat actor profiles and targets.

Scanless and fast

Spotlight utilizes scanless technology, delivering an always-on, automated vulnerability management solution with prioritized data in real time. It eliminates bulky, dated reports with its fast, intuitive dashboard.

Zero impact

The cloud-native CrowdStrike Falcon® platform and single lightweight agent collect data once and reuse it many times. As a result, Spotlight requires no additional agents, hardware, scanners or credentials — simply turn on and go.

“My greatest difficulty before CrowdStrike was having visibility to attacks in real time. And since CrowdStrike does not need constant updating, it is able to spot new malware and viruses automatically. Before, these could sit there quietly on a machine waiting to attack. Greater visibility means we can respond faster to these malicious attempts and incidents.”

- Rodrigo Godoy, CISO, Guararapes

Read all customer stories >

Technical Features

Comprehensive Visibility Without the Burden

Exploit prediction AI and dynamic rating to predict relevant vulnerabilities

ExPRT.AI and Rating offers ever-adapting AI

  • ExPRT.AI is an advanced AI model relying on a vast database of resources including CrowdStrike threat intelligence
  • Identify vulnerabilities with greater accuracy than ever before thanks to an ever-adapting AI model
  • Use ExPRT.AI Rating to get a dynamic rating that adjusts as data flows through the ExPRT.AI algorithm
  • Gain valuable insights, predict which vulnerabilities are most relevant for your organization

Vulnerability assessment in real time

  • Continuously monitor the vulnerability status of all endpoints wherever they reside: on-premises, off-premises or in the cloud
  • Leave bulky legacy reports behind — Spotlight serves up vulnerability data in seconds via intuitive dashboards
  • The robust application programming interface (API) makes external integrations simple

Scan-free and no new agents

  • Continuous vulnerability assessment using CrowdStrike’s single, lightweight Falcon agent
  • No scanning overhead, no lag time for systems or endpoints
  • No hardware appliances or infrastructure required
  • Works seamlessly with other security tools in your vulnerability solution set

Shorten response time with at-your-fingertips endpoint data

  • See everything instantly: Go beyond the dashboard to research in real time or historically, get instant results on any type of vulnerability and filter by CVE, host, product, status and other categories
  • Pivot quickly from Spotlight to other Falcon modules to get contextual information about threat actors or potential targeted attacks
  • Utilize the full CrowdStrike Falcon® platform to actively monitor all endpoints, detect any incident, investigate and remediate quickly

Customers trust CrowdStrike


 

Tested and proven leader

CrowdStrike is proud to be recognized a leader by industry analyst and independent testing organizations.




Read the report to see why CrowdStrike was Named a “Leader” in Forrester Wave for Endpoint Detection and Response Providers, Q2 2022.

See why CrowdStrike was named a “Leader” in the IDC MarketScape: Worldwide Modern Endpoint Security for Enterprise 2021 Vendor Assessment report.