Rapid7 InsightVM

Overview
ProductRatingMost Used ByProduct SummaryStarting Price
Rapid7 InsightVM
Score 8.2 out of 10
N/A
InsightVM is presented as the next evolution of Nexpose, by Rapid7. This Insight cloud-based solution features everything included in Nexpose, such as Adaptive Security and the proprietary Real Risk score, and extends visibility into cloud and containerized infrastructure. InsightVM also offers advanced remediation, tracking, and reporting capabilities not included in Nexpose.
$19
per GB
Pricing
Rapid7 InsightVM
Editions & Modules
Log Management
$19
per GB
Vulnerability Management
$22
per asset
insightIDR
$52
per asset
Application Security
$2,000
per app
insignConnect
Contact sales team
Offerings
Pricing Offerings
Rapid7 InsightVM
Free Trial
No
Free/Freemium Version
No
Premium Consulting/Integration Services
No
Entry-level Setup FeeNo setup fee
Additional Details—
More Pricing Information
Community Pulse
Rapid7 InsightVM
Considered Both Products
Rapid7 InsightVM
Chose Rapid7 InsightVM
There is not major changes but I would like to say Remediation process is far organised then Qualys. Easy UI and Live dashboarding is add-on.
Chose Rapid7 InsightVM
Rapid7 InsightVM is a more professional tool than Nessus because historically, it was based on metasploit which is a powerful pentesting and exploiting tool. InsightVM covers more attacking scenarios and vulnerabilities than competitors and still a leader in this domain.cloud …
Chose Rapid7 InsightVM
I personally like Qualys much better. Out of the box, and the overall configuration is more natural, and the system itself is more stable.
Chose Rapid7 InsightVM
For reporting, dashboard, content creation etc. Tenable SecurityCenter is the clear winner with over-the-top capabilities in their application. On the agents side this one was easier to implement and way easier to manage.
Chose Rapid7 InsightVM
Nessus Pro does scans, but does not maintain an inventory from scan to scan. There is no history for a specific device, you have to look inside the results of each scan. Search across inventory is non-existent. There are no dashboards for data analysis. This is no tracking …
Chose Rapid7 InsightVM
Tenable has a more refined look for the reporting that it provides as a result of scanning events, but Nexpose seems to have a better ability to help quantify risk and help prioritize the work needed to get the quickest security result for the team and the company. The Nessus …
Chose Rapid7 InsightVM
Selection was made by my manager. We have used Nessus before and switched to Rapid7 Nexpose.
Top Pros
Top Cons
Features
Rapid7 InsightVM
Threat Intelligence
Comparison of Threat Intelligence features of Product A and Product B
Rapid7 InsightVM
8.4
3 Ratings
2% above category average
Network Analytics8.33 Ratings
Threat Recognition8.03 Ratings
Vulnerability Classification8.33 Ratings
Automated Alerts and Reporting8.73 Ratings
Threat Analysis8.33 Ratings
Threat Intelligence Reporting8.52 Ratings
Automated Threat Identification8.33 Ratings
Vulnerability Management Tools
Comparison of Vulnerability Management Tools features of Product A and Product B
Rapid7 InsightVM
8.3
3 Ratings
2% below category average
IT Asset Realization8.03 Ratings
Authentication8.33 Ratings
Configuration Monitoring8.73 Ratings
Web Scanning8.33 Ratings
Vulnerability Intelligence8.33 Ratings
Best Alternatives
Rapid7 InsightVM
Small Businesses
ThreatDown, powered by Malwarebytes
ThreatDown, powered by Malwarebytes
Score 8.8 out of 10
Medium-sized Companies
CrowdStrike Falcon
CrowdStrike Falcon
Score 9.1 out of 10
Enterprises
CrowdStrike Falcon
CrowdStrike Falcon
Score 9.1 out of 10
All AlternativesView all alternatives
User Ratings
Rapid7 InsightVM
Likelihood to Recommend
8.7
(11 ratings)
Support Rating
7.2
(2 ratings)
User Testimonials
Rapid7 InsightVM
Likelihood to Recommend
Rapid7
Rapid7 InsightVM is perfect for a scenario where IT admin or CISO wants to scan its infrastructure to be sure that there is no vulnerability that could be exploited from outside or inside the company. It also could be used to automate patching and dealing with vulnerabilities. It's also adapted for users that need cloud security management
Read full review
Pros
Rapid7
  • Being a vulnerability scanner tool, its purpose is to scan the systems to find the vulnerabilities. We can define the assets like IP address for the scans and it also allows to either schedule the scan at a preferred time or start the scan immediately. Upon completion of the scan, this tool can result provide the details like host type, OS information, hardware address, along with the vulnerabilities.
  • Rapid7 Nexpose has a list of templates to perform the scan. Once the templates are defined then the scans are performed accordingly.
  • It also contains an option to add credentials/authentication using passwords, usernames, private keys to perform the credential-based scans which I think is a great feature.
Read full review
Cons
Rapid7
  • In comparison to Tenable SecurityCenter we saw it didn't exactly find the same vulnerabilities which we would assume it should have
  • We rely on a ticketing system and not our VM tool to assign tasks so wasn't too useful having that in there
  • Filtering capabilities aren't as good as its competitors
Read full review
Support Rating
Rapid7
I gave it a seven due to the functionality and general ease of use after the initial setup headaches, but compared to Qualys, Rapid7 Nexpose falls short on features and ease of use. Their support drags this rating down a point as well. I have gone weeks with no update on semi-critical issues and typically have to make call after call to get a semi-coherent response.
Read full review
Alternatives Considered
Rapid7
Nessus Pro does scans, but does not maintain an inventory from scan to scan. There is no history for a specific device, you have to look inside the results of each scan. Search across inventory is non-existent. There are no dashboards for data analysis. This is no tracking for remediation
Read full review
Return on Investment
Rapid7
  • Can reduce time to patch most critical vulnerabilities
  • Can help to identify who is spending time patching things of lower risk thus keeping the organization in a more vulnerable position
  • Easily provides the patch team with a work plan to enhance security more quickly
Read full review
ScreenShots