GitLab vs. Rapid7 InsightVM

Rapid7 InsightVM

Overview
Product	Rating	Most Used By	Product Summary	Starting Price
GitLab	Score 8.7 out of 10	N/A	GitLab is an intelligent orchestration platform for DevSecOps, where software teams enable AI at every stage of the software lifecycle to ship faster. The platform enables teams to automate repetitive tasks across planning, building, securing, testing, deploying, and maintaining software.	$0 per month per user
Rapid7 InsightVM	Score 8.5 out of 10	N/A	InsightVM is presented as the next evolution of Nexpose, by Rapid7. This Insight cloud-based solution features everything included in Nexpose, such as Adaptive Security and the proprietary Real Risk score, and extends visibility into cloud and containerized infrastructure. InsightVM also offers advanced remediation, tracking, and reporting capabilities not included in Nexpose.	$19 per GB

Pricing

GitLab

Rapid7 InsightVM

Editions & Modules

GitLab Free (self-managed): $0
GitLab Free: $0
GitLab Premium: $29
per month per user
GitLab Premium (self-managed): $29
per month per user
GitLab Ultimate: Contact Sales
GitLab Ultimate (self-managed): Contact Sales

Log Management: $19
per GB
Vulnerability Management: $22
per asset
insightIDR: $52
per asset
Application Security: $2,000
per app
insignConnect: Contact sales team

Offerings

Pricing Offerings
GitLab	Rapid7 InsightVM
Free Trial
Yes	No
Free/Freemium Version
Yes	No
Premium Consulting/Integration Services
Yes	No

Entry-level Setup Fee

Optional

No setup fee

Additional Details

GitLab Credits enable flexible, consumption-based access to agentic AI capabilities in the GitLab platform, allowing you to scale AI adoption at your own pace while maintaining cost predictability. Powered by Duo Agent Platform, GitLab’s agentic AI capabilities help software teams to collaborate at AI speed, without compromising quality and enterprise security. If usage exceeds monthly allocations and overage terms are accepted, automated on-demand billing activates without service interruption, so your developers never lose access to AI capabilities they need. Real-time dashboards provide transparency into AI consumption patterns. Software teams can see usage across users, projects, and groups with granular attribution for cost allocation. Automated threshold alerts facilitate proactive planning. Advanced analytics deliver trending, forecasting, and FinOps integration.

—

More Pricing Information

GitLab Pricing

Community Pulse
	GitLab	Rapid7 InsightVM

Features

GitLab

Rapid7 InsightVM

Threat Intelligence

Comparison of Threat Intelligence features of Product A and Product B
	GitLab - Ratings	Rapid7 InsightVM 7.4 6 Ratings 8% below category average
Network Analytics	00 Ratings	5.36 Ratings
Threat Recognition	00 Ratings	7.06 Ratings
Vulnerability Classification	00 Ratings	9.36 Ratings
Automated Alerts and Reporting	00 Ratings	9.36 Ratings
Threat Analysis	00 Ratings	7.46 Ratings
Threat Intelligence Reporting	00 Ratings	7.05 Ratings
Automated Threat Identification	00 Ratings	6.76 Ratings

Vulnerability Management Tools

Comparison of Vulnerability Management Tools features of Product A and Product B
	GitLab - Ratings	Rapid7 InsightVM 8.3 6 Ratings 0% above category average
IT Asset Realization	00 Ratings	9.06 Ratings
Authentication	00 Ratings	8.76 Ratings
Configuration Monitoring	00 Ratings	8.76 Ratings
Web Scanning	00 Ratings	7.05 Ratings
Vulnerability Intelligence	00 Ratings	8.36 Ratings

Best Alternatives
	GitLab	Rapid7 InsightVM
Small Businesses	GitGuardian Score 9.0 out of 10	Action1 Score 9.5 out of 10
Medium-sized Companies	Veracode Score 8.8 out of 10	Action1 Score 9.5 out of 10
Enterprises	Veracode Score 8.8 out of 10	CrowdStrike Falcon Score 9.1 out of 10
All Alternatives	View all alternatives	View all alternatives

User Ratings
	GitLab	Rapid7 InsightVM
Likelihood to Recommend	8.3 (152 ratings)	9.0 (13 ratings)
Likelihood to Renew	9.0 (5 ratings)	- (0 ratings)
Usability	10.0 (6 ratings)	9.0 (3 ratings)
Performance	9.0 (1 ratings)	- (0 ratings)
Support Rating	10.0 (12 ratings)	7.2 (2 ratings)
Product Scalability	10.0 (1 ratings)	- (0 ratings)

User Testimonials
	GitLab	Rapid7 InsightVM
Likelihood to Recommend	GitLab GitLab is good if you work a lot with code and do complex repository actions. It gives you a very good overview of what were the states of your branches and the files in them at different stages in time. It's also way easier and more efficient to write pipelines for CI\CD. It's easier to read and it's easier to write them. It takes fewer clicks to achieve the same things with GitLab than it does for competitor products. Incentivized Verified User Anonymous Read full review	Rapid7 InsightVM is great for finding all devices on your network and where the misconfigurations exist. We all have to patch our systems and applications, but it can be difficult to keep track of which systems are up to date. This tool is very helpful in filling in this gap and helping you organize that information. It is easy to get a big picture view of how your organization is doing from a vulnerability perspective, and it is equally as easy to drill down and get specific details that you need. Prioritization is crucial when it comes to this space, because you can never address every vulnerability, so you need to make sure the highest priority items are being remediated. R7's tool excels in this area and highlights items you weren't even aware of. Incentivized MK Mark Knutson Manager of Information Security Read full review
Pros	GitLab GitLab excels in managing code versions, allowing easy tracking of changes, branch management, and merging contributions. It helps maintain code stability and reliability, saving time and effort in the development or research workflow. Powerful code review features, enabling collaboration and feedback among team members. Robust project management features, including issue tracking, kanban boards, and milestones. Incentivized Verified User Anonymous Read full review	Rapid7 Rapid7 InsightVM is good at agentless scanning. Rapid7 InsightVM integration with ServiceNow works very well. Rapid7 InsightVM scales very well with deploying scan engines. It can be used in large organizations. The user interface of Rapid7 InsightVM is very intuitive and user friendly. It is easy to use. Incentivized Verified User Anonymous Read full review
Cons	GitLab CI variables management is sometimes hard to use, for example, with File type variables. The scope of each variable is also hard to guess. Access Token: there are too many types (Personal, Project, global..), and it is hard to identify the scope and where it comes from once created. Runners: auto-scaled runners are for the moment hard to put in place, and monitoring is not easy. Incentivized Verified User Anonymous Read full review	Rapid7 From my experience of using this tool, sometimes it gives more false positives. A few times I had performed the scan on the same IP address using QualysGuard and Nexpose, but after comparing the scan results I had found that QualysGuard had provided more accurate vulnerability information. Incentivized Verified User Anonymous Read full review
Likelihood to Renew	GitLab I really feel the platform has matured quite faster than others, and it is always at the top of its game compared to the different vendors like GitHub, Azure pipelines, CircleCI, Travis, Jenkins. Since it provides, agents, CI/CD, repository hosting, Secrets management, user management, and Single Sign on; among other features Incentivized Marco Urrea DevOps Engineer Read full review	Rapid7 No answers on this topic
Usability	GitLab I find it easy to use, I haven't had to do the integration work, so that's why it is a 9/10, cause I can't speak to how easy that part was or the initial set up, but day to day use is great! Incentivized LK Lisa Krol Quality Assurance Engineer Read full review	Rapid7 While I think it is a great tool and platform, I believe it (like all tools and solutions) is always evolving and the needs for clients are changing as the industry evolves and threats are upgraded. Cost is good, and support is helpful. Some things could be more granular and others could be easier to understand Incentivized Verified User Anonymous Read full review
Reliability and Availability	GitLab I've never had experienced outages from GItlab itself, but regarding the code I have deployed to Gitlab, the history helps a lot to trace the cause of the issue or performing a rollback to go back to a working version Incentivized Marco Urrea DevOps Engineer Read full review	Rapid7 No answers on this topic
Performance	GitLab GItlab reponsiveness is amazing, has never left me IDLE. I've never had issues even with complex projects. I have not experienced any issues when integrating it with agents for example or SSO Incentivized Marco Urrea DevOps Engineer Read full review	Rapid7 No answers on this topic
Support Rating	GitLab At this point, I do not have much experience with Gitlab support as I have never had to engage them. They have documentation that is helpful, not quite as extensive as other documentation, but helpful nonetheless. They also seem to be relatively responsive on social media platforms (twitter) and really thrived when GitHub was acquired by Microsoft Incentivized Verified User Anonymous Read full review	Rapid7 I gave it a seven due to the functionality and general ease of use after the initial setup headaches, but compared to Qualys, Rapid7 Nexpose falls short on features and ease of use. Their support drags this rating down a point as well. I have gone weeks with no update on semi-critical issues and typically have to make call after call to get a semi-coherent response. Incentivized Verified User Anonymous Read full review
Alternatives Considered	GitLab Gitlab seems more cutting-edge than GitHub; however, its AI tools are not yet as mature as those of CoPilot. It feels like the next-generation product, so as we selected a tool for our startup, we decided to invest in the disruptor in the space. While there are fewer out-of-the-box templates for Gitlab, we have never discovered a lack of feature parity. Incentivized Austin Franchino Senior Data and Security Engineer Read full review	Rapid7 Rapid7 InsightVM is a more professional tool than Nessus because historically, it was based on metasploit which is a powerful pentesting and exploiting tool. InsightVM covers more attacking scenarios and vulnerabilities than competitors and still a leader in this domain.cloud capability is also not available forNesuus and some other products. Rapid7 InsightVM is a way better as a pentesting tool in my opinion Incentivized Verified User Anonymous Read full review
Scalability	GitLab I think is very well designed, and like any VCS it works as intended Incentivized Marco Urrea DevOps Engineer Read full review	Rapid7 No answers on this topic
Return on Investment	GitLab GitLab cut down our spent on container, package and infrastructure registry Best thing is we can now have everything in single platform which cost effective too Quality of support is really good and they do have emergency support team as well which is great Incentivized Shivangani Tamrakar DevOps Engineer Read full review	Rapid7 After spending 2 years configuring, tuning, troubleshooting, and ultimately having nothing but regrets, we migrated away from the tool and accepted the loss. Support had a variety of opinions, none of them consistent. No best practices. Lots of secret tricks known by support, none documented or shared until after problems are found. Consulting services are available to come out and do a health check of your deployment, for a fee. Incentivized Verified User Anonymous Read full review
ScreenShots	GitLab Screenshots