Skip to main content
TrustRadius

Overview

What is InsightIDR?

In addition to their incident response service, Rapid7 offers InsightIDR, a combined XDR and SIEM that provides user behavior and threat analytics.

Read more

Learn from top reviewers

Return to navigation

Pricing

View all pricing

InsightIDR Advanced

$5.89

Cloud
per month per asset

Entry-level set up fee?

  • No setup fee
For the latest information on pricing, visithttps://www.rapid7.com/products/insight…

Offerings

  • Free Trial
  • Free/Freemium Version
  • Premium Consulting/Integration Services

Starting price (does not include set up fee)

  • $5.89 per month per asset
Return to navigation

Product Demos

Using the Parsing Tool in InsightIDR

YouTube

User and Asset Containment in InsightIDR

YouTube
Return to navigation

Product Details

What is InsightIDR?

InsightIDR is a lightweight, cloud-native infrastructure means it scales with the business. InsightIDR provides SaaS delivery and software based data collection, giving users access to new detections, new features, and product updates as soon as they’re rolled out.

InsightIDR offers wizard-guides to help users know where to go next. For this Rapid7 credits a global MDR SOC which uses and vets everything, to provide a deep and early look at user experience.

With it, the vendor states every analyst is empowered to be an expert, and there’s no more “alert fatigue," and that users can count on flexible search options, comprehensive coverage of the environment, helpful visualizations, and cloud computing power.

InsightIDR Video

Rapid7 InsightIDR 3-Min Overview

InsightIDR Technical Details

Deployment TypesSoftware as a Service (SaaS), Cloud, or Web-Based
Operating SystemsUnspecified
Mobile ApplicationNo

Frequently Asked Questions

In addition to their incident response service, Rapid7 offers InsightIDR, a combined XDR and SIEM that provides user behavior and threat analytics.

InsightIDR starts at $5.89.

The most common users of InsightIDR are from Mid-sized Companies (51-1,000 employees).
Return to navigation

Comparisons

View all alternatives
Return to navigation

Reviews From Top Reviewers

(1-5 of 9)

Superb, multi-faceted, multi-featured, multi-purpose Detection and Response tool

Rating: 10 out of 10
August 29, 2024
AC
Vetted Review
Verified User
Rapid7 InsightIDR
2 years of experience
We use it mainly as our incident detection and response application of choice, but it has helped us out enormously with its feature rich capabilities in numerous other areas. InsightIDR provides us with a single pane of glass view that allows us to have maximum visibility of our endpoints, while being aware of all assets, even newly created ones. It also allows us the ability to view and act on alerts in real time by conducting deep root cause analysis with additional functions. Our installation is cloud based so we have integration with other applications. Additionally, Reports can be formulated with ease and convenience and on a bespoke basis.
  • Alerts detection
  • Simple and effective monitoring of endpoints
  • Allows all security incidents to be saved in single pane of glass
  • Intuitive approach to sorting Logs in terrms of labelling and importance
  • Straightforward reporting tool, that allows for numerous types of reports to be created
  • Dashboards feature lots of detail
Cons
  • Sometimes there is lag and latency when we have heavy date loads
  • Integration with certain APIs are not easy and always straighfroward
  • Automation is a bit limited.
It has been brilliant for us in terms of understanding the behaviour affecting our endpoints and assets. We have full visibility of our alerts, which menas we can act on them immediately. We use a single pain of glass with dashboards that can be easily drilled down into to get further information. It has laso helped us eo create bespoke reports for senios Managmeent, while at the same time supports other teams like Network Mnagement and Operations.

Great SIEM

Rating: 7 out of 10
January 27, 2023
CG
Vetted Review
Verified User
Rapid7 InsightIDR
3 years of experience
Product has been our primary SIEM tools to collect logs and develop alerting around behaviors in our environment. We monitor network,cloud logins and firewall traffic with this tool. Along with MS log data. This has been a great one pane of glass tool to see all logs.
  • Easy to inject logs
  • Lots of useful information
  • Lots of connections with out products
Cons
  • Can be difficult to query logs
  • UI can be overwhelming
  • Sometimes it’s hard to see data of an alert
Great place for small team to gather and monitor logs from many resources to get a better picture of behaviors in your environment.

Delivering Automated Cybersecurity like a Pro

Rating: 7 out of 10
April 25, 2022
GN
Vetted Review
Verified User
Rapid7 InsightIDR
3 years of experience
Rapid7 InsightIDR is our cybersecurity software and we use it to handle Endpoint Detection and Response. My line of duty involves deploying AI bots under a cloud-based infrastructure that's prone to cyber attacks and viruses invasion to compromise the bots functionality. The security team engaged Rapid7 InsightIDR to help secure critical data being handled by the bots and systems, networks at large. I use it's system monitoring tools in my jurisdiction. It sends instant alerts in case of breaches to prevent major damages.
  • It provides network visibility with the sensor unlock over your environment.
  • Has a lightweight sensor for suspicious activity that's also noiseless.
Cons
  • The indicators of compromise are complex to analyze.
  • Running system scans consumes heavily the network bandwidth slowing processes.
Rapid7 InsightIDR handles malware like a pro. It's able to identify the steathly techniques used by attackers. There was a certain attack where the hacker masked as an employee of our company to escape the radar but we were able to sample out the activity with Rapid7 UEBA. It's also worth noting that Rapid7 InsightIDR has a complex architecture and while running system scans, operations may slow down as it takes up most of the network bandwidth.

Rapid threat detection with InsightIDR.

Rating: 9 out of 10
April 16, 2022
MR
Vetted Review
Verified User
Rapid7 InsightIDR
2 years of experience
We are using Rapid7 for incident detection and responses on our servers by reducing the attack's dwell time. We've also utilized it for IOCs TTP procedures to map the threat indicators metrics. We picked it because it's capable of trapping malicious behavior on the attack chain early enough before the vital assets are compromised.
  • Attacks are detected early enough on the peripheral assets to allow us more time to initiate responses with SOAR before compromising the critical assets.
  • Provides a good analysis of log and network data.
Cons
  • InsightIDR has limited SIEM capabilities, we are using another software for that.
InsightIDR has been very suitable for deception and extra. It maps attacks on our servers and networks in a very detailed manner, stating not only the log and network data but also important information like how the loops in which the attack was orchestrated and how the attackers got in. Also, during an attack, it weaves the intruder in InsightIDR's' honeypot' to give us plenty of time to initiate security response protocols.

An Amazing Tool to Secure your organisation.

Rating: 7 out of 10
April 13, 2022
SS
Vetted Review
Verified User
Rapid7 InsightIDR
1 year of experience
Rapid7 InsightIDR is a wonderful, easy to use tool for incident detection, authentication monitoring and endpoint visibility. It provide due diligence on your security we are mainly using this to protect our organisation security venerability. It has the ability to monitor numerous of endpoints and dispatch the security breach alerts in no time.
  • Incident detection
  • authentication monitoring
  • endpoint visibility
Cons
  • There should be an testing version
  • make more user friendly
  • add PII rules as well.
Rapid7 InsightIDR is an amazing tool for your organisation security it suites well if your organisation is growing and expanding globally it help to make secure data transactions among team or groups and help to avoid security threads. if you're tiny company like 1-10 people then your might not needed Rapid7 InsightIDR.
Return to navigation