TrustRadius Insights
Rapid7 InsightIDR has proven to be highly effective for incident detection and response, with users praising its ability to provide a …
Starting at $5.89 per month per asset
View PricingOverview
What is InsightIDR?
In addition to their incident response service, Rapid7 offers InsightIDR, a combined XDR and SIEM that provides user behavior and threat analytics.
Recent Reviews
Awards
Products that are considered exceptional by their customers based on a variety of criteria win TrustRadius awards. Learn more about the types of TrustRadius awards to make the best purchase decision. More about TrustRadius Awards
Reviewer Pros & Cons
Cyber Security Training Specialist
The Knowledge Academy (Information Technology & Services, 501-1000 employees)
Pricing
InsightIDR Advanced
$5.89
Cloud
per month per asset
Entry-level set up fee?
- No setup fee
For the latest information on pricing, visithttps://www.rapid7.com/products/insight…
Offerings
- Free Trial
- Free/Freemium Version
- Premium Consulting/Integration Services
Starting price (does not include set up fee)
- $5.89 per month per asset
Product Demos
Using the Parsing Tool in InsightIDR
YouTube
User and Asset Containment in InsightIDR
YouTube
Product Details
- About
- Integrations
- Tech Details
- FAQs
What is InsightIDR?
InsightIDR is a lightweight, cloud-native infrastructure means it scales with the business. InsightIDR provides SaaS delivery and software based data collection, giving users access to new detections, new features, and product updates as soon as they’re rolled out.
InsightIDR offers wizard-guides to help users know where to go next. For this Rapid7 credits a global MDR SOC which uses and vets everything, to provide a deep and early look at user experience.
With it, the vendor states every analyst is empowered to be an expert, and there’s no more “alert fatigue," and that users can count on flexible search options, comprehensive coverage of the environment, helpful visualizations, and cloud computing power.
InsightIDR Video
Rapid7 InsightIDR 3-Min Overview
InsightIDR Integrations
InsightIDR Technical Details
| Deployment Types | Software as a Service (SaaS), Cloud, or Web-Based |
|---|---|
| Operating Systems | Unspecified |
| Mobile Application | No |
Frequently Asked Questions
In addition to their incident response service, Rapid7 offers InsightIDR, a combined XDR and SIEM that provides user behavior and threat analytics.
InsightIDR starts at $5.89.
The most common users of InsightIDR are from Enterprises (1,001+ employees).
Comparisons
Compare with
Reviews and Ratings
(35)
Community Insights
TrustRadius Insights are summaries of user sentiment data from TrustRadius reviews and, when necessary, 3rd-party data sources. Have feedback on this content? Let us know!
- Business Problems Solved
Rapid7 InsightIDR has proven to be highly effective for incident detection and response, with users praising its ability to provide a comprehensive view of endpoints and assets. It offers a single pane of glass view, ensuring maximum visibility and allowing users to view and act on alerts in real time. Customers in the financial services industry have found great value in using InsightIDR to secure their networks and endpoints from various attack scenarios, including those targeting cloud platforms such as AWS, Azure, and Oracle. The software's system monitoring tools send instant alerts in case of breaches, enabling timely response to mitigate potential threats. It has also been lauded for its capability to trap malicious behavior early in the attack chain, safeguarding vital assets from compromise. By automating regular vulnerability scanning and presenting results in a manageable format, InsightIDR streamlines vulnerability management and reduces the burden on security teams. Additionally, it integrates with other technologies to develop in-depth security strategies and facilitate threat hunting, aiding in early threat detection and response. Overall, InsightIDR serves as a primary SIEM tool that collects logs and develops alerting around behaviors in the environment, providing crucial incident detection, authentication monitoring, and endpoint visibility.
Reviews
(1-3 of 3)Companies can't remove reviews or game the system. Here's why
August 29, 2023
Completed Umbrella Suite for Overall Cyber Risk
We as a financial services provider required to adhare with customer need which is security in current world and to protect those we have to secure our network and endpoint with every single possible attack scenario which are actively and passively try to invade and can cause problems. These infra includes cloud platform which includes AWS, Azure and Oracle and some in-house data centres so get a smooth coverage we used InsightIDR to bring everything under one umbrella.
- Endpoint protection
- SIEM
- Integration with Various other sec tools
- Asset Management
- Segmentation
- False positives are high
- Dashboarding can be improved
- Incident detection and response
- Higher network visibility
- Reporting
- Minimising the Risk
- Lowering Manual Efforts
- Time
The biggest advantage it has the lightweight agent and smooth and less traffic chaos in network during log collection. Cloud Security always require extra efforts but InsightIDR reduce that burden as it has highly anticipated agents to which knows what they need to do when they captured malicious traffic.log collection and threat intelligence is major part in and xdr and here it stand out along others in the market, I started my career as qualys administration but I like InsightIDR much now.
When I arrived at my org vulnerability management was done ad hoc using an inexpensive NESSUS license. But this didn't provide results in a good manageable format. The idea was to be able to automate regular scanning and present the results in a format that would allow responsible asset owners to see the status of their systems and insofar as possible make it a self-service experience, taking as much burden off the security team as possible. InsightIDR has made this possible, and gone further through our use of the agent for detailed on device results.
- Scanning
- Vulnerability context
- Multi-user/group usage
- Allowing group owners to scan assets
- There is an occasional false positive
- Vulnerability scanning
- Agent scanning
- Robust permissions
- Identified vulnerabilities before they were exploited and became catastrophes
- Allows us to meet compliance goals
Other products are OK, but they lack the robust permissions and their interfaces are much much less intuitive. Rapid7's prioritization system for vulnerabilities makes more sense given their context as the developers of Metasploit. We thought we might be able to switch and save money and not lose too much but it turned out that we weren't comfortable with what we would lose and we wouldn't save much after an initial discount.
April 13, 2022
Rapid7 Works Great For Any Environment!
Rapid7 InsightIDR is our current product for EDR and antivirus. This product allows us to keep our environment secure from any and all vulnerabilities that could be harmful to the systems that run the business. We use it to secure our web applications as well as design plans for detection and response.
- Rapid7 InsightIDR does a very good job at keeping virus definitions up to date so that our threat intelligence is very up to date when knowing what to protect against.
- It helps us by scanning all of our infrastructure components and highlights where improvements need to be made in security so we can be proactive with our security initiatives.
- It has automated response mechanisms to triage and resolve any potentials risks allowing us to save time in the long run.
- Sometimes Rapid7 InsightIDR will be too locked down and without knowing will block applications and processes needed for day to day operation.
- System scans with Rapid7 InsightIDR can be very bandwidth-heavy on the network and system resources.
- From a recent incident, we have seen more and more false positives from Rapid7 InsightIDR on areas that we know are secure.
- Vulnerability scanning is the most important feature of Rapid7 InsightIDR for us as we use it to scan daily for any security holes in our system.
- It allows us to create reports based on findings which we can then formulate response plans against in the future.
- With Rapid7 InsightIDR you are able to break up the environments into device groups for scheduled scanning so that it doesn't disturb your network all at once.
- Rapid7 InsightIDR has allowed us to be proactive in securing our systems as the vulnerability scans give us a lens at what we need to fortify when it comes to security.
- In recent incidents its allowed us to save time and money as it mostly detects issues accurately and we are able to bring systems back quickly without too much downtime for the business.
- With recent updates, we are confident that Rapid7 InsightIDR is a good solution for the long run as they are always making adjustments to their platform and improving it with every release.
Between Rapid7 InsightIDR and Crowdstrike, we liked Rapid7 InsightIDR due to the functionality of the system and the features Rapid7 InsightIDR has. Rapid7 InsightIDR was very easy to deploy in our environment to our endpoint devices. We like the scanning capabilities and the console we felt was very easy to use and can be easily caught up to our IT staff. Also during vulnerability scans, we felt that Rapid7 InsightIDR was able to detect more and any competitor out there.