TrustRadius

Palo Alto Networks Cortex XSOAR vs. Rapid7 InsightConnect

Overview
ProductRatingMost Used ByProduct SummaryStarting Price
Palo Alto Networks Cortex XSOAR
Score 7.2 out of 10
N/A
Cortex XSOAR, formerly Demisto and now from Palo Alto Networks since it was acquired in March 2019, provides orchestration to enable security teams to ingest alerts across sources and execute standardized, automatable playbooks for accelerated incident response. Its playbooks are powered by hundreds of integrations and thousands of security actions, striking the right balance between rapid machine execution and nuanced human oversight.N/A
Rapid7 InsightConnect
Score 10.0 out of 10
N/A
Rapid7 offers InsightConnect, a SOAR solution that integrates with existing solutions to orchestrate vulnerability management processes from notification to remediation, so users can ensure critical issues are being addressed with every security advisory that comes in—while leaving human decision points where most critical. Automate actions to scan, find patches, and verify remediation.N/A
Pricing
Palo Alto Networks Cortex XSOARRapid7 InsightConnect
Editions & Modules
No answers on this topic
No answers on this topic
Offerings
Pricing Offerings
Palo Alto Networks Cortex XSOARRapid7 InsightConnect
Free Trial
NoNo
Free/Freemium Version
NoNo
Premium Consulting/Integration Services
NoNo
Entry-level Setup FeeNo setup feeNo setup fee
Additional Details
More Pricing Information
Community Pulse
Palo Alto Networks Cortex XSOARRapid7 InsightConnect
Considered Both Products
Palo Alto Networks Cortex XSOAR
RS
Raphael Soares
CTO (Chief Technical Officer)
Chose Palo Alto Networks Cortex XSOAR
The quantity of integrations with security solutions is highest in Palo Alto Solution. The capacity to identify anomalous events is much better in Palo Alto Networks Cortex XSOAR. The flexibility of increased storage area is better as well. The dashboard is very intuitive about …
Rapid7 InsightConnect
Verified User
Employee
Chose Rapid7 InsightConnect
Palo Alto was slightly cheaper, but more complex and would need the training to be effective. Splunk was comparative from a price standpoint, but the automation features of Rapid7 InsightConnect outweighed those of Splunk SOAR. Honestly, all of these are great choices, but …
Best Alternatives
Palo Alto Networks Cortex XSOARRapid7 InsightConnect
Small Businesses

No answers on this topic

No answers on this topic

Medium-sized Companies
Splunk SOAR
Splunk SOAR
Score 8.2 out of 10
Splunk SOAR
Splunk SOAR
Score 8.2 out of 10
Enterprises
Microsoft Sentinel
Microsoft Sentinel
Score 8.7 out of 10
Palo Alto Networks Cortex XSOAR
Palo Alto Networks Cortex XSOAR
Score 7.2 out of 10
All AlternativesView all alternativesView all alternatives
User Ratings
Palo Alto Networks Cortex XSOARRapid7 InsightConnect
Likelihood to Recommend
8.2
(8 ratings)
7.9
(7 ratings)
Likelihood to Renew
10.0
(1 ratings)
-
(0 ratings)
Usability
-
(0 ratings)
9.0
(1 ratings)
Implementation Rating
10.0
(1 ratings)
-
(0 ratings)
User Testimonials
Palo Alto Networks Cortex XSOARRapid7 InsightConnect
Likelihood to Recommend
Palo Alto Networks
XSOAR is well suited for phishing detection and response. Phishing alerts are as much of a
problem today as they were decades ago. This is because: ●Attackers Can leverage automation to launch high-quantity phishing attacks with the click
of a button.
●Spear Phishing attacks are sophisticated and sometimes indistinguishable from real
emails, resulting in compromise through human error.
●Security Teams aren’t able to follow set processes while responding to phishing alerts.
They must coordinate across email inboxes, threat intel, NGFW, ticketing, and
other tools. Each tool has different consoles, data conventions, and contexts,
making it difficult for security teams to fill in the gaps while minimizing
errors. XSOAR is less suited for analyzing traffic.
Verified User
Anonymous
Read full review
Rapid7
Where Rapid7 InsightConnect excels is in environments needing the whole suite of virus protection and monitoring. In our environment we use it to make sure we have visibility over all endpoints, servers, hosts, and clusters to make sure that there are no vulnerabilities being left unattended too. It is also best in large environments. Since there are many endpoints, the automation from Rapid7 helps manage them all in an efficient manner.
Verified User
Anonymous
Read full review
Pros
Palo Alto Networks
  • Automation with immediate security responses.
  • Comprehensive phishing protection and increased email protection.
  • Analysis and reporting feature.
  • Intuitive and easy-to-view panels.
  • Alerts by email and sms of incidents for the administration.
  • Centralized monitoring.
Verified User
Anonymous
Read full review
Rapid7
  • The most significant difference is that we no longer have to examine endpoints and devices separately.
  • The cost.
  • The impact on the safety and efficiency of our business.
Verified User
Anonymous
Read full review
Cons
Palo Alto Networks
  • The XSOAR bot creates a lot of noise on the summary page of any XSOAR incident. Although the filter is available to reduce the view, by default this should not be visible cluttering the whole scenario.
  • The interface has too much data on a single pane. I would love to have many buttons to just click and do stuff.
  • Also, I would love to have search areas more interactive and easier to navigate.
SC
Sarthak Chand
Information Security Manager
Read full review
Rapid7
  • It would be great if Rapid7 InsightConnect could be configured based on pre determined specifications when installing the agent.
  • We've noticed that at times, there are certain network parameters needed in order for Rapid7 to collect and report data efficiently.
  • Sometimes there are issues with the discovery scan in Rapid7 making it hard to configure in the beginning.
Verified User
Anonymous
Read full review
Likelihood to Renew
Palo Alto Networks
It has proven to be far to valuable and effective to consider getting rid of it. Until something better comes along, this is staying in our product stack.
Verified User
Anonymous
Read full review
Rapid7
No answers on this topic
Usability
Palo Alto Networks
No answers on this topic
Rapid7
It's incredibly easy to set up, to use, to detect threats. It's easy to change, tweek and very quick to resolve all issues
Sarah Urbani | TrustRadius Reviewer
Sarah Urbani
Technical Specialist
Read full review
Implementation Rating
Palo Alto Networks
It was much easier than we all anticipated.
Verified User
Anonymous
Read full review
Rapid7
No answers on this topic
Alternatives Considered
Palo Alto Networks
The quantity of integrations with security solutions is highest in Palo Alto Solution. The capacity to identify anomalous events is much better in Palo Alto Networks Cortex XSOAR. The flexibility of increased storage area is better as well. The dashboard is very intuitive about showing the most important incidents and how to resolve them.
RS
Raphael Soares
CTO (Chief Technical Officer)
Read full review
Rapid7
Palo Alto was slightly cheaper, but more complex and would need the training to be effective. Splunk was comparative from a price standpoint, but the automation features of Rapid7 InsightConnect outweighed those of Splunk SOAR. Honestly, all of these are great choices, but for our environment, it made more sense to go with Rapid7.
Verified User
Anonymous
Read full review
Return on Investment
Palo Alto Networks
  • Demisto has Eased malware analysis and threat hunting
  • With Demisto, it is simple to create playbooks and scripts
  • This is helped automate policy configurations on our PA firewalls through Panorama
DS
Read full review
Rapid7
  • The automation and integration we set up in the dev cycle helped us provide evidence in audits
  • The automation and integration we set up in the dev cycle helped us fix vulns in our software prior to implementation thus increasing our security
  • Automations save massive time and headache's between infosec and devs
HA
holt archer
senior security engineer
Read full review
ScreenShots