TrustRadius Insights
Rapid7 NeXpose is widely used across organizations for various use cases related to vulnerability management and security assessment. With …
Starting at $19 per GB
View PricingOverview
What is Rapid7 InsightVM?
InsightVM is presented as the next evolution of Nexpose, by Rapid7. This Insight cloud-based solution features everything included in Nexpose, such as Adaptive Security and the proprietary Real Risk score, and extends visibility into cloud and containerized infrastructure. InsightVM also…
Recent Reviews
Pricing
Log Management
$19
Cloud
per GB
Vulnerability Management
$22
Cloud
per asset
insightIDR
$52
Cloud
per asset
Entry-level set up fee?
- No setup fee
Offerings
- Free Trial
- Free/Freemium Version
- Premium Consulting/Integration Services
Product Demos
Rapid7 InsightVM - Managing Remediation Activities for Discovered Vulnerabilities Lab Demo
YouTube
PrintNightmare and HiveNightmare Vulnerability Assessment with Rapid7 InsightVM - Lab Demo 5
YouTube
Rapid7 InsightVM - Security Console Features Lab Demo 3 by Jovo
YouTube
Rapid7 InsightVM –Vulnerability Analysis, Reporting & Dynamic Assets Filtering - Lab Demo 6 by Jovo
YouTube
Rapid7 InsightVM Walkthough Demo Rapid7 InsightVM Architecture and Components Session 1
YouTube
Product Details
- About
- Tech Details
- FAQs
What is Rapid7 InsightVM?
Rapid7 InsightVM Video
Overview Video: InsightVM
Rapid7 InsightVM Technical Details
| Deployment Types | Software as a Service (SaaS), Cloud, or Web-Based |
|---|---|
| Operating Systems | Unspecified |
| Mobile Application | No |
Frequently Asked Questions
InsightVM is presented as the next evolution of Nexpose, by Rapid7. This Insight cloud-based solution features everything included in Nexpose, such as Adaptive Security and the proprietary Real Risk score, and extends visibility into cloud and containerized infrastructure. InsightVM also offers advanced remediation, tracking, and reporting capabilities not included in Nexpose.
Reviewers rate Automated Alerts and Reporting and Configuration Monitoring highest, with a score of 8.7.
The most common users of Rapid7 InsightVM are from Enterprises (1,001+ employees).
Comparisons
Compare with
Reviews and Ratings
(74)
Community Insights
TrustRadius Insights are summaries of user sentiment data from TrustRadius reviews and, when necessary, 3rd-party data sources. Have feedback on this content? Let us know!
- Business Problems Solved
Rapid7 NeXpose is widely used across organizations for various use cases related to vulnerability management and security assessment. With its powerful scanning capabilities, it allows users to discover vulnerabilities in their infrastructure, including cloud-based servers. Many users implement NeXpose as a pentesting tool to scan sensitive servers and identify weaknesses that could potentially be exploited by hackers. This helps organizations proactively address vulnerabilities before they can be exploited, enhancing overall security posture. Users have found NeXpose to be valuable for vulnerability scanning of both current assets and new build servers, providing asset owners with weekly reports to track trends and prioritize remediation efforts. Security consultants also rely on NeXpose for performing vulnerability assessments for their clients, leveraging its robust features such as risk classification, impact analysis, and reporting.
In addition to vulnerability management, Rapid7 NeXpose is often utilized for meeting regulatory requirements, such as PCI compliance. Organizations leverage the tagging features of NeXpose to easily sort scans and reports for different asset owners or teams, streamlining the vulnerability management process. Furthermore, the software serves as the primary vulnerability scanner across the organization, acting as the source of truth for identifying current vulnerabilities in the environment. It supports the discovery and assessment of devices on networks, encompassing physical servers, virtual servers, and cloud-based servers. Another notable use case is its integration with Rapid7 InsightVM, allowing centralized compliance and vulnerability management by scanning services or devices in the network and generating comprehensive reports on vulnerabilities and remediation actions.
Overall, Rapid7 NeXpose provides organizations with a reliable solution to discover vulnerabilities, mitigate risks, and maintain a strong security posture through regular scanning and assessment of their infrastructure.
Attribute Ratings
Reviews
(1-11 of 11)Companies can't remove reviews or game the system. Here's why
January 13, 2023
Rapid7 InsightVM Review !
Rapid7 InsightVM is very much useful in using as a Centralized tool or console for Compliance and vulnerability management. It scans the services or devices in your network and generates reports based on its own database. This report include all the running vulnerabilities and also it gives details on remediation of it. So it becomes very much useful for handling vulnerability management and compliance requirement.
January 12, 2023
It has Insight for all your Enterprise
Score 9 out of 10
Vetted Review
Verified User
As a financial institution, we have to be up and running securely 24x7x365. So be online is easier with Cloud services but security is concern when you operate in Cloud environment and that is where Rapid7 InsightVM helps us. Rapid7 InsightVM help us to scan our overall infrastructure including cloud infra. here we have complete glance our vulnerability and remediation.
January 09, 2023
A leader tool for pentesting
I used to use Rapid7 InsightVM as a pentesting tool. I implemented the solution on servers to test the client environment by scanning sensitive servers. The main goal is to find weaknesses and vulnerabilities in the systems that could be exploited by hackers. And then generate a report that could be used as a reference for patching the system.
August 24, 2021
Great source of truth for vulnerabilities
We are currently using the software as our primary vulnerability scanner and source of truth for current vulnerabilities in the environment. For new systems, it is required for the system to be registered in Rapid7 InsightVM (Nexpose) and have a scan conducted before it is allowed into production. It is a critical pillar in our environment.
February 13, 2020
Rapid7 Nexpose, not all it's cracked up to be
We currently use Rapid7 Nexpose for all Vulnerability scanning for current and new assets. Several asset groups have been created with assets owners receiving weekly reports for just the assets they own for a weekly snapshot to gauge their trending. We also utilize ad-hoc scans to ensure new devices do not have outstanding patches before being deployed.
September 26, 2019
A very good vulnerability scanner.
I have used Rapid7 Nexpose for performing vulnerability assessment scanning. It is a vulnerability management tool which can perform vulnerability scans and report the vulnerabilities. As a security consultant, I have used this tool to perform scans for our clients.
May 15, 2018
NeXpose - Its almost there
This tool is being used across a subset of the organization; it is an intuitive vulnerability scanner with amazing support service and solves the purpose. However it has a few downsides when it comes to the level of reporting etc., we expect from a vulnerability management solution.
May 14, 2018
Dream or nightmare. Flip a coin.
Rapid7 NeXpose performs discovery and vulnerability assessment of devices on a network. This data can be exported into other tools, or produce reports for threat remediation. The software supports physical servers, virtual servers, and cloud-based servers. For large environments, additional scanners can be deployed with the same options. Multiple OSs are supported and backups can be enabled for restoration across platforms.
August 16, 2017
Rapid7 NeXpose
Rapid 7 NeXpose is used in the organization as the powerhouse of vulnerability management. It is used by the Information Security Office to discover vulnerabilities for the enterprise.
June 21, 2017
Expose on Nexpose
Nexpose from Rapid7 is a vulnerability scanner that supports the vulnerability management lifecycle. It addresses discovery, detection, verification, risk classification, impact analysis, reporting and mitigation. There are a wide variety of versions available: standalone software, an appliance, virtual machine, a managed service, or a private cloud deployment. User interaction is through a web interface. There is a free (but limited) community edition. It integrates Metasploit for vulnerability exploitation which provides very timely results against known and active vulnerabilities.
Rapid7 NeXpose is being used across the whole organization directly or indirectly by multiple departments. It is being used to scan the current assets and new build servers for vulnerabilities. It is also the main tool to find the vulnerabilities for PCI compliance and remediation. In addition, we utilize its tagging features to help sort out scans and reports for different asset owners or teams. We also use its features of services and software inventory findings to assist incident response in case any assets need a more deeper info, which may compensate some missing features in the product in case you can't find a away to achieve in the GUI.