TrustRadius

Metasploit vs. Rapid7 InsightVM

Overview
ProductRatingMost Used ByProduct SummaryStarting Price
Metasploit
Score 9.9 out of 10
N/A
Metasploit is open source network security software described by Rapid7 as the world’s most used penetration testing framework, designed to help security teams do more than just verify vulnerabilities, manage security assessments, and improve security awareness.N/A
Rapid7 InsightVM
Score 8.2 out of 10
N/A
InsightVM is presented as the next evolution of Nexpose, by Rapid7. This Insight cloud-based solution features everything included in Nexpose, such as Adaptive Security and the proprietary Real Risk score, and extends visibility into cloud and containerized infrastructure. InsightVM also offers advanced remediation, tracking, and reporting capabilities not included in Nexpose.
$19
per GB
Pricing
MetasploitRapid7 InsightVM
Editions & Modules
No answers on this topic
Log Management
$19
per GB
Vulnerability Management
$22
per asset
insightIDR
$52
per asset
Application Security
$2,000
per app
insignConnect
Contact sales team
Offerings
Pricing Offerings
MetasploitRapid7 InsightVM
Free Trial
NoNo
Free/Freemium Version
NoNo
Premium Consulting/Integration Services
NoNo
Entry-level Setup FeeNo setup feeNo setup fee
Additional Details——
More Pricing Information
Community Pulse
MetasploitRapid7 InsightVM
Considered Both Products
Metasploit

No answer on this topic

Rapid7 InsightVM
Verified User
Manager
Chose Rapid7 InsightVM
Tenable has a more refined look for the reporting that it provides as a result of scanning events, but Nexpose seems to have a better ability to help quantify risk and help prioritize the work needed to get the quickest security result for the team and the company. The Nessus …
Top Pros
Top Cons
Features
MetasploitRapid7 InsightVM
Threat Intelligence
Comparison of Threat Intelligence features of Product A and Product B
Metasploit
-
Ratings
Rapid7 InsightVM
8.4
3 Ratings
3% above category average
Network Analytics00 Ratings8.33 Ratings
Threat Recognition00 Ratings8.03 Ratings
Vulnerability Classification00 Ratings8.33 Ratings
Automated Alerts and Reporting00 Ratings8.73 Ratings
Threat Analysis00 Ratings8.33 Ratings
Threat Intelligence Reporting00 Ratings8.52 Ratings
Automated Threat Identification00 Ratings8.33 Ratings
Vulnerability Management Tools
Comparison of Vulnerability Management Tools features of Product A and Product B
Metasploit
-
Ratings
Rapid7 InsightVM
8.3
3 Ratings
1% below category average
IT Asset Realization00 Ratings8.03 Ratings
Authentication00 Ratings8.33 Ratings
Configuration Monitoring00 Ratings8.73 Ratings
Web Scanning00 Ratings8.33 Ratings
Vulnerability Intelligence00 Ratings8.33 Ratings
Best Alternatives
MetasploitRapid7 InsightVM
Small Businesses

No answers on this topic

ThreatDown, powered by Malwarebytes
ThreatDown, powered by Malwarebytes
Score 8.7 out of 10
Medium-sized Companies
Veracode
Veracode
Score 8.5 out of 10
CrowdStrike Falcon
CrowdStrike Falcon
Score 9.1 out of 10
Enterprises
Veracode
Veracode
Score 8.5 out of 10
CrowdStrike Falcon
CrowdStrike Falcon
Score 9.1 out of 10
All AlternativesView all alternativesView all alternatives
User Ratings
MetasploitRapid7 InsightVM
Likelihood to Recommend
10.0
(6 ratings)
8.7
(11 ratings)
Support Rating
7.0
(1 ratings)
7.2
(2 ratings)
User Testimonials
MetasploitRapid7 InsightVM
Likelihood to Recommend
Rapid7
It is easy to use with sufficient documentation on how to use the tools for end users or newbies. Experienced testers will find it easy to customise and configure the test cases. Just wished that I could have taken up a course on using this tool in my study days so that I could had explored more and improved my familiarity with the tool, unlike when working where access and time to explore the other features of the tool is limited
Verified User
Anonymous
Read full review
Rapid7
Rapid7 InsightVM is perfect for a scenario where IT admin or CISO wants to scan its infrastructure to be sure that there is no vulnerability that could be exploited from outside or inside the company. It also could be used to automate patching and dealing with vulnerabilities. It's also adapted for users that need cloud security management
Verified User
Anonymous
Read full review
Pros
Rapid7
  • Scanning our network for new or existing vulnerable systems.
  • Automation of manual tests and exploits to allow what used to be days of effort to be squeezed into hours.
  • Metasploit has become an integral part in our validation of new systems before their inclusion in our production network.
Verified User
Anonymous
Read full review
Rapid7
  • Being a vulnerability scanner tool, its purpose is to scan the systems to find the vulnerabilities. We can define the assets like IP address for the scans and it also allows to either schedule the scan at a preferred time or start the scan immediately. Upon completion of the scan, this tool can result provide the details like host type, OS information, hardware address, along with the vulnerabilities.
  • Rapid7 Nexpose has a list of templates to perform the scan. Once the templates are defined then the scans are performed accordingly.
  • It also contains an option to add credentials/authentication using passwords, usernames, private keys to perform the credential-based scans which I think is a great feature.
Verified User
Anonymous
Read full review
Cons
Rapid7
  • Have encountered issues with updating especially after moving from BackTrack to Kali.
  • Sometimes it gets a little buggy, but that's a rare occurrence.
Verified User
Anonymous
Read full review
Rapid7
  • In comparison to Tenable SecurityCenter we saw it didn't exactly find the same vulnerabilities which we would assume it should have
  • We rely on a ticketing system and not our VM tool to assign tasks so wasn't too useful having that in there
  • Filtering capabilities aren't as good as its competitors
Verified User
Anonymous
Read full review
Support Rating
Rapid7
We don't use it.
Omar Israel Sánchez Monroy | TrustRadius Reviewer
Omar Israel Sánchez Monroy
Auditor de Seguridad de la Información
Read full review
Rapid7
I gave it a seven due to the functionality and general ease of use after the initial setup headaches, but compared to Qualys, Rapid7 Nexpose falls short on features and ease of use. Their support drags this rating down a point as well. I have gone weeks with no update on semi-critical issues and typically have to make call after call to get a semi-coherent response.
Verified User
Anonymous
Read full review
Alternatives Considered
Rapid7
Metasploit is an all around good suite of tools to test and validate potential vulnerabilites. Other tools have bits and pecies such as Nmap, Nessus, Burp Suite, etc. but Metasploit can function in the same way but more.
Alan Matson, CCNA:S, MCP | TrustRadius Reviewer
Alan Matson, CCNA:S, MCP
Senior Network Security Engineer
Read full review
Rapid7
Nessus Pro does scans, but does not maintain an inventory from scan to scan. There is no history for a specific device, you have to look inside the results of each scan. Search across inventory is non-existent. There are no dashboards for data analysis. This is no tracking for remediation
Verified User
Anonymous
Read full review
Return on Investment
Rapid7
  • If you prevent an attack you will save a lot of money.
  • There is a free version that has a lot of useful exploits.
  • You can run it in an open source OS.
Omar Israel Sánchez Monroy | TrustRadius Reviewer
Omar Israel Sánchez Monroy
Auditor de Seguridad de la Información
Read full review
Rapid7
  • Can reduce time to patch most critical vulnerabilities
  • Can help to identify who is spending time patching things of lower risk thus keeping the organization in a more vulnerable position
  • Easily provides the patch team with a work plan to enhance security more quickly
Verified User
Anonymous
Read full review
ScreenShots