CrowdStrike Falcon Antivirus: Overview

This article reviews CrowdStrike Falcon, the College's antivirus solution.

What is CrowdStrike Falcon?

CrowdStrike Falcon is an antivirus solution that actively detects and prevents malicious files and behaviour.

How it's different from Sophos

CrowdStrike Falcon is configured such that there should be little to no performance impact on your computer.

Sophos was dependent on known virus signatures, essentially fingerprints, to identify and block malware. This was a tried-and-true method until you encounter malware that looks legitimate, but acts malicious.

CrowdStrike instead relies on behaviour-based detection, focusing on how software acts as opposed to how it appears. This allows it to quickly and efficiently block malware with an extremely low rate of false positives.

Detections and preventions

Anytime CrowdStrike Falcon blocks, kills, or quarantines a file or process, you will be notified via a pop-up. Any detection and prevention events are also logged in case they need to be reviewed further.

Finding CrowdStrike Falcon

CrowdStrike Falcon does not have an application or console that is accessible. Instead, a lightweight "sensor" is installed that actively detects and prevents malicious files/behaviour, while maintaining low false positives.


  1. In the bottom-right corner of your desktop, click the carat (^) to open the Windows Tray
    a red arrow pointing to the carat used to open the windows tray
  2. Click the CrowdStrike Falcon iconan icon for crowdstrike falcon
  3. This will open an information panel about CrowdStrike Falcon on your computer!an information panel that displays connection information about crowdstrike falcon


  1. Open Finder
  2. On the left-hand pane, select the Applications folder
  3. Scroll down to find Falcon

Personal devices

Unfortunately CrowdStrike Falcon for personal devices is not available at this time. LITS is currently investigating options and, when available, this document and Software for Personal Devices will be updated.

Starting an antivirus scan

On-demand scans are no longer necessary due to CrowdStrike's detection and prevention policies, allowing it to actively detect malicious files and behaviour while reducing false positives.


  1. Right-click a file or your desktop
  2. Click Show more options
  3. Hover your mouse over CrowdStrike Falcon malware scan
  4. Select from one of the following options:
    • Scan
    • Scan all drives
    • Scan system drive
    • See results of last scan


Unfortunately on-demand scanning for Apple devices is not available at this time.


If you have any additional questions or problems, don't hesitate to reach out to the Help Desk!

Phone: 610-526-7440 | Library and Help Desk hours
Email: help@brynmawr.eduService catalog
Location: Canaday Library 1st floor