AWS CloudTrail vs. Rapid7 InsightVM

Overview
ProductRatingMost Used ByProduct SummaryStarting Price
AWS CloudTrail
Score 8.6 out of 10
N/A
AWS CloudTrail is a service that enables governance, compliance, operational auditing, and risk auditing of an AWS account. With CloudTrail, users can log, continuously monitor, and retain account activity related to actions across AWS infrastructure. CloudTrail provides event history of AWS account activity, including actions taken through the AWS Management Console, AWS SDKs, command line tools, and other AWS services. This event history simplifies security analysis, resource change tracking,…N/A
Rapid7 InsightVM
Score 8.2 out of 10
N/A
InsightVM is presented as the next evolution of Nexpose, by Rapid7. This Insight cloud-based solution features everything included in Nexpose, such as Adaptive Security and the proprietary Real Risk score, and extends visibility into cloud and containerized infrastructure. InsightVM also offers advanced remediation, tracking, and reporting capabilities not included in Nexpose.
$19
per GB
Pricing
AWS CloudTrailRapid7 InsightVM
Editions & Modules
No answers on this topic
Log Management
$19
per GB
Vulnerability Management
$22
per asset
insightIDR
$52
per asset
Application Security
$2,000
per app
insignConnect
Contact sales team
Offerings
Pricing Offerings
AWS CloudTrailRapid7 InsightVM
Free Trial
YesNo
Free/Freemium Version
YesNo
Premium Consulting/Integration Services
YesNo
Entry-level Setup FeeNo setup feeNo setup fee
Additional DetailsYou can view, filter, and download the most recent 90 days of your account activity for all management events in supported AWS services free of charge. You can set up a trail that delivers a single copy of management events in each region free of charge. Once a CloudTrail trail is set up, Amazon S3 charges apply based on your usage. You will be charged for any data events or additional copies of management events recorded in that region. In addition, you can choose CloudTrail Insights by enabling Insights events in your trails. CloudTrail Insights analyzes write management events, and you are charged based on the number of events that are analyzed in that region.
More Pricing Information
Community Pulse
AWS CloudTrailRapid7 InsightVM
Top Pros
Top Cons
Features
AWS CloudTrailRapid7 InsightVM
Threat Intelligence
Comparison of Threat Intelligence features of Product A and Product B
AWS CloudTrail
-
Ratings
Rapid7 InsightVM
8.4
3 Ratings
2% above category average
Network Analytics00 Ratings8.33 Ratings
Threat Recognition00 Ratings8.03 Ratings
Vulnerability Classification00 Ratings8.33 Ratings
Automated Alerts and Reporting00 Ratings8.73 Ratings
Threat Analysis00 Ratings8.33 Ratings
Threat Intelligence Reporting00 Ratings8.52 Ratings
Automated Threat Identification00 Ratings8.33 Ratings
Vulnerability Management Tools
Comparison of Vulnerability Management Tools features of Product A and Product B
AWS CloudTrail
-
Ratings
Rapid7 InsightVM
8.3
3 Ratings
2% below category average
IT Asset Realization00 Ratings8.03 Ratings
Authentication00 Ratings8.33 Ratings
Configuration Monitoring00 Ratings8.73 Ratings
Web Scanning00 Ratings8.33 Ratings
Vulnerability Intelligence00 Ratings8.33 Ratings
Best Alternatives
AWS CloudTrailRapid7 InsightVM
Small Businesses
Acronis Cyber Protect Cloud
Acronis Cyber Protect Cloud
Score 8.2 out of 10
ThreatDown, powered by Malwarebytes
ThreatDown, powered by Malwarebytes
Score 8.8 out of 10
Medium-sized Companies
Druva Data Resiliency Cloud
Druva Data Resiliency Cloud
Score 9.6 out of 10
CrowdStrike Falcon
CrowdStrike Falcon
Score 9.1 out of 10
Enterprises
Druva Data Resiliency Cloud
Druva Data Resiliency Cloud
Score 9.6 out of 10
CrowdStrike Falcon
CrowdStrike Falcon
Score 9.1 out of 10
All AlternativesView all alternativesView all alternatives
User Ratings
AWS CloudTrailRapid7 InsightVM
Likelihood to Recommend
8.0
(4 ratings)
8.7
(11 ratings)
Support Rating
-
(0 ratings)
7.2
(2 ratings)
User Testimonials
AWS CloudTrailRapid7 InsightVM
Likelihood to Recommend
Amazon AWS
It is necessary to enable [AWS] Cloudtrail when using AWS in a production environment, otherwise you will not have any idea what is happening within your accounts. Third party monitoring applications will all require [AWS] CloudTrail to be enabled as well. I would not recommend it solely as a monitoring tool, to get the most out of it you must send the logs elsewhere. Either to Cloudwatch logs or a third party product.
Read full review
Rapid7
Rapid7 InsightVM is perfect for a scenario where IT admin or CISO wants to scan its infrastructure to be sure that there is no vulnerability that could be exploited from outside or inside the company. It also could be used to automate patching and dealing with vulnerabilities. It's also adapted for users that need cloud security management
Read full review
Pros
Amazon AWS
  • API Log
  • User activity tracking
  • Real-time alerts
Read full review
Rapid7
  • Being a vulnerability scanner tool, its purpose is to scan the systems to find the vulnerabilities. We can define the assets like IP address for the scans and it also allows to either schedule the scan at a preferred time or start the scan immediately. Upon completion of the scan, this tool can result provide the details like host type, OS information, hardware address, along with the vulnerabilities.
  • Rapid7 Nexpose has a list of templates to perform the scan. Once the templates are defined then the scans are performed accordingly.
  • It also contains an option to add credentials/authentication using passwords, usernames, private keys to perform the credential-based scans which I think is a great feature.
Read full review
Cons
Amazon AWS
  • [In my experience] Cost can easily get out of control with multiple trails on full logging
  • Logs can be difficult to decipher
Read full review
Rapid7
  • In comparison to Tenable SecurityCenter we saw it didn't exactly find the same vulnerabilities which we would assume it should have
  • We rely on a ticketing system and not our VM tool to assign tasks so wasn't too useful having that in there
  • Filtering capabilities aren't as good as its competitors
Read full review
Support Rating
Amazon AWS
No answers on this topic
Rapid7
I gave it a seven due to the functionality and general ease of use after the initial setup headaches, but compared to Qualys, Rapid7 Nexpose falls short on features and ease of use. Their support drags this rating down a point as well. I have gone weeks with no update on semi-critical issues and typically have to make call after call to get a semi-coherent response.
Read full review
Alternatives Considered
Amazon AWS
I think in the end, CloudTrail has more features and you can dive deeper inside the logs so it depends on your usage and what you expect in the end to make the right choice, I would say that both tools are really useful and bring a lot of benefits to I.T. companies.
Read full review
Rapid7
Nessus Pro does scans, but does not maintain an inventory from scan to scan. There is no history for a specific device, you have to look inside the results of each scan. Search across inventory is non-existent. There are no dashboards for data analysis. This is no tracking for remediation
Read full review
Return on Investment
Amazon AWS
  • Allows us to investigate any strange api actions
  • Increases security
  • Audit trail of changes made in AWS
Read full review
Rapid7
  • Can reduce time to patch most critical vulnerabilities
  • Can help to identify who is spending time patching things of lower risk thus keeping the organization in a more vulnerable position
  • Easily provides the patch team with a work plan to enhance security more quickly
Read full review
ScreenShots

AWS CloudTrail Screenshots

Screenshot of CloudTrail Insights: Identify and respond to unusual operational activity
•Unexpected spikes in resource provisioning
•Bursts of IAM management actions
•Gaps in periodic maintenance activity
•Automatic analysis of API calls and usage patterns
•Alerts when unusual activity is detected