Is crowdstrike.com legit?

78
/ 100
Mostly Safe
Industry: Software & Downloads

Crowdstrike.com appears to be a largely legitimate and established cybersecurity company, but some technical aspects, specifically a high number of external scripts and hidden content, raise moderate concerns. While these issues don't immediately suggest malicious intent, they warrant a closer look for users seeking maximum transparency and security.

Software & Downloads average: 78/100 · based on 75 sites

Checked: April 18, 2026 at 8:01 AM UTC · Refresh

Is crowdstrike.com a scam? Here's what we found.

Security 80/100

The security posture is robust, featuring modern TLS 1.3 encryption, HSTS, and a Content Security Policy. However, the high count of external scripts introduces a larger attack surface that could be exploited.

Identity 90/100

This is clearly an established entity, with a 15-year domain age and structured data identifying it as an Organization. The domain registrar is a common choice for protecting corporate domains.

Reputation 90/100

The site holds a strong Tranco rank, isn't blacklisted, and Google Web Risk reports it as clean. This suggests a well-recognized and reputable online presence, consistent with a major cybersecurity firm.

Transparency 75/100

While contact info, legal pages, and social media links are readily available, the substantial number of hidden elements raises questions about content transparency and potential SEO manipulation.

Compliance 95/100

The presence of both a privacy policy and terms of service demonstrates a commitment to legal and user privacy compliance, which is crucial for a data-sensitive industry like cybersecurity.

Infrastructure 80/100

The site benefits from strong email authentication (SPF/DMARC) and DNSSEC, indicating a well-managed infrastructure. The short domain expiry period is an unusual aspect that should ideally be addressed by the domain owner.

Signals Detected

[+]
Tranco Rank: Rank #2780

This is a well-known, high-traffic website

[+]
Structured Data: Found

Site uses structured data identifying itself as: Organization

[?]
Trustpilot: No Trustpilot profile

This business has no Trustpilot presence — not unusual for smaller or newer companies

[+]
SSL Certificate: Valid

Valid certificate, expires in 83 days

[?]
Certificate Issuer: Google Trust Services

Certificate issued by Google Trust Services

[+]
TLS Version: TLS 1.3

Connection uses TLS 1.3

[+]
Domain Age: 15 years, 1 months

Domain created 2010-06-07T12:55:54Z (15 years, 1 months ago)

[?]
Registrar: CSC Corporate Domains, Inc.

Registered through CSC Corporate Domains, Inc.

[~]
Domain Expiry: 2026-06-07T12:55:54Z

Expires in 50 days

[+]
DNSSEC: signedDelegation

DNSSEC status from WHOIS

[~]
External Scripts: 19 scripts

Excessive number of external scripts — may indicate malicious injection

[~]
Hidden Content: 62 hidden elements

Excessive hidden content found — may indicate cloaking or deceptive content

[+]
robots.txt: Present

robots.txt has 33 directives and references a sitemap

[?]
Branding: Basic

Site has a favicon but no social sharing metadata

[+]
HSTS Header: Present

Site enforces HTTPS via HSTS

[+]
Content Security Policy: Present

Site has Content Security Policy configured

[+]
Clickjacking Protection: Present

X-Frame-Options: ALLOW-FROM https://crowdstrike.pathfactory.com https://crowdstrike.com https://www.crowdstrike.co.uk https://go.crowdstrike.com https://store.crowdstrike.com

[?]
Server: cloudflare

Web server: cloudflare

[+]
Google Web Risk: Clean

No threats detected by Google Web Risk

[+]
DNS Resolution: 4 IP(s)

Resolves to: 2606:4700::6810:b476, 2606:4700::6810:b576, 104.16.180.118, 104.16.181.118

[+]
Email (MX Records): 2 record(s)

Mail servers: mxa-00206402.gslb.pphosted.com., mxb-00206402.gslb.pphosted.com.

[+]
SPF Record: Present

Domain has SPF email authentication configured

[+]
DMARC Record: Present

Domain has DMARC email authentication configured

[?]
Name Servers: 3 server(s)

DNS providers: blue.foundationdns.org., blue.foundationdns.com., blue.foundationdns.net.

[+]
Website Status: Online

Website is live and responding

[+]
Contact Info: Found

Website appears to have contact information

[+]
Legal Pages: Privacy & Terms found

Website has both privacy policy and terms of service pages

[+]
Social Media Presence: 4 platforms

Website links to multiple social media platforms

[+]
DNS Blacklists: Clean

Not found on any DNS blacklists

[+]
Sitemap: 5 pages

Site maintains a proper sitemap with 5 indexed pages

[?]
Web Archive: Unable to check

Could not query Wayback Machine

[?]
Certificate Transparency: Unable to check

crt.sh returned status 404

[+]
Page Load Time: 137ms

Fast page load

Embed This Badge

Own this site? Show visitors your trust score.

Trust badge for crowdstrike.com
<a href="https://verified.fyi/review/crowdstrike.com"><img src="https://verified.fyi/badge/crowdstrike.com?size=medium&style=full&theme=dark" alt="crowdstrike.com trust score — verified.fyi" /></a>
[![crowdstrike.com trust score](https://verified.fyi/badge/crowdstrike.com?size=medium&style=full&theme=dark)](https://verified.fyi/review/crowdstrike.com)

Stay Safe Online

Good habits to protect yourself, no matter the scan result.

Use a password manager

Never reuse passwords across sites.

Enable two-factor authentication

Add a second layer of security to your accounts.

Check before you buy

Always verify unfamiliar stores before entering payment info.

Crowdstrike is a prominent player in the cybersecurity space, offering endpoint protection and cloud security solutions to businesses globally. When evaluating a company like this, it's vital to look beyond marketing and into the technical underpinnings to judge its trustworthiness. For a cybersecurity firm, a robust online presence and stringent security practices are not just good practice, but a core part of its product. Most established enterprise software providers, especially in security, typically exhibit a long domain history, clear corporate identification, and advanced security protocols. Crowdstrike.com largely aligns with these expectations, boasting a 15-year old domain and using structured data to identify itself as an Organization. Its technical security measures, like TLS 1.3 and HSTS, are top-tier, essential for any service handling sensitive data. However, potential users should be aware that the site employs a large number of external scripts and has a significant amount of hidden content. While this doesn't automatically mean malicious intent for a high-traffic enterprise site (some are for analytics or dynamic content), it can sometimes indicate an unnecessary exposure to third-party vulnerabilities or a less-than-transparent approach to content. For a company whose entire business is built on trust and security, these elements warrant careful consideration by potential clients. Always ensure you're comfortable with the site's overall transparency before engaging with any service, especially one critical to your digital defense.