Loading product reviews...
4.4 out of 5.0 (29 ratings)

Reviews Distribution

5 Stars
4 Stars
3 Stars
2 Stars
1 Star
We don't have any qualitative reviews for this vendor yet


View other vendors in this market
We have aggregated ratings data on Rapid7 but all of our reviewers have opted out of sharing their qualitative review feedback. In certain cases we allow reviewers to withhold their qualitative review feedback from public view, in order to protect their confidentiality.
  • 4 out of 5.0, Reviewed

    Product(s): Metasploit Pro,Nexpose

    Vendor Met Expectations, Metasploit was oversold.

    Overall Comment

    The Vendor met or exceeded expectations. The Metasploit addon was oversold and provided little real value to the organization.

    What do you like most about the product or service?

    It's easy to use, very efficient and effective and has very good reporting and supporting automation.

    What do you dislike most about the product?

    The internal ticketing application is irrelevant.

    Service & support - overall comment

    Support is a key differentiator. They are very good.


  • 5 out of 5.0, Reviewed

    Product(s): InsightIDR

    Always going beyond our expectations

    Overall Comment

    First and foremost InsightIDR is a great product. The visibility we now have is just fantastic. We can quickly and easily drill down through all of the subject/object interactions across the network and pick up on any anomalies or issues as they happen. The service and support from the Rapid 7 team is excellent both during setup/install and afterwards. Unlike many other technology companies the process of getting to speak directly to the experts/developers when needed is quick and efficient. The product is constantly being updated and improved too which makes us sure we have invested in the correct product and InfoSec partner.

    What do you like most about the product or service?

    The visibility it gives

    What do you dislike most about the product?

    Nothing

    Product capabilities - overall comment

    It does everything we need and more

    Integration & Deployment - Overall comment

    Deployment support was great, any issues with integration/operation of agents or data sources was quickly and efficiently dealt with by product support or the developer team.

    1 of 1 peer(s) found this review helpful.


  • 5 out of 5.0, Reviewed

    Product(s): Metasploit Pro,Nexpose

    The features are 'Best of Breed' and more keep getting added!

    Overall Comment

    The Nexpose VMS is by far the best solution that is on the market. We were previously using Qualys and were not happy with some of the features of the product; in particular the way the scanning was setup and how policies were created. Nexpose not only remedied both of these issues but also found issues that Qualys was not finding at the time.

    What do you like most about the product or service?

    Even though the product has added many features that I have benefited from that were not available when I purchased the product, I think the fact that Rapid7 is always enhancing their product and listening to their consumer base is EXTREMELY great. Not only do they listen to what customers have to say or suggest in their 'Suggestions' forums, they are regularly rolling these new features out. There are many companies that say that they are listening to their customers or going to rollout new features but Rapid7 actually does this on a regular basis.

    What do you dislike most about the product?

    In order to integrate with some of the 3rd Party Software on the market, you need to have a decent knowledge of Ruby Scripting to do so. With my issue with getting ERPM to integrate with Nexpose, there was always an issue with the version of Ruby, the version of the GEMs, etc... that kept the script from working. Rapid7 does have some built-in integrations with third parties but I believe that they could do better with more integrations.

    Product capabilities - overall comment

    As mentioned before, Rapid7 had multiple features that were part of the application that several other VMS solutions did not have. Even the ability to find every small vulnerability was greatly superior than any other solution that I did a Proof of Concept for or previously used.

    Service & support - overall comment

    Everytime I have had an issue, I have received quick and concisive responses from the Rapid7 support. Whether it was their support for the product or their Integrations team, I have never had an issue that either did not get resolved or escalated to the proper departments. Even using the Rapid7 Community has been extremely beneficial since not only do other Expert customers give comments in there but also Rapid7 support monitors these posts to try and assist users within the Support Community.


  • 4 out of 5.0, Reviewed

    Product(s): Metasploit Pro,Nexpose

    Dependable partner.

    Overall Comment

    Rapid7 has been a good partner as we mature our vulnerability management program. They have been responsive to our needs. Rapid7 has worked with us to help improve our performance and to help us look critically at how we are utilizing the resources at hand.

    What do you like most about the product or service?

    Industry leading vulnerability scanner.

    Service & support - overall comment

    We are satisfied with the support we get from Rapid7. We had one issue here recently where we were told that the Nexpose and ServiceNow API's would allow us to create tasks to be assigned. This is still being worked on.

    Integration & Deployment - Overall comment

    We have success with deployments. Any challenges we run into, we can call Rapid7 and get through it quickly.


  • 5 out of 5.0, Reviewed

    Product(s): Metasploit Pro,Nexpose

    Simple to roll out and use, with a powerful feature set.

    Overall Comment

    Rapid7's solution balances a great user experience with an extremely robust vulnerability scanning product with Nexpose. We have significantly reduced our level of risk over the last year and have even been able to deploy scanning engines in other segments of the business to make sure that we do everything that we can to tighten our security. Our account team has been great, in the rare case that I need support they are prompt and professional.

    What do you like most about the product or service?

    Ease of use, it does exactly what we need, and it's not too expensive.

    What do you dislike most about the product?

    N/A

    Service & support - overall comment

    We love Rapid7, they are consistently a trusted advisor not just a vendor we work with.

    Integration & Deployment - Overall comment

    We were able to deploy using just Rapid7's guides and knowledge base, it really couldn't have been easier.


  • 4 out of 5.0, Reviewed

    Product(s): Metasploit Pro,Nexpose

    Overall great experience.

    Overall Comment

    Implementation was a breeze. Support has been fantastic. New features have been plentiful and value-added. Feedback is taken seriously and has often been implemented into the tool sets.


  • 5 out of 5.0, Reviewed

    Product(s): Metasploit Pro,Nexpose

    Great product getting better every year.

    Overall Comment

    Although I think Rapid7's Nexpose was not totally ready for a large Enterprise solution regarding vulnerability scanning, their recent releases and product improvements, including the "Nexpose Now" dashboard solution, is presenting a solution that I can see evolving our Vulnerability Management Program alongside their product enhancements. It is not a plug and play solution and some of their support products that run the backend services require technical SMEs on hand to fully gain the value from the data and remediation of the tools capabilities.

    What do you like most about the product or service?

    I like the ability to get under the hood and work with the components that support the platform. Easy to review logs and perform root cause analysis of issues. From an admin perspective it is great.

    What do you dislike most about the product?

    They are releasing a lot of updates and capabilities, some of which need tuning and do not initially work out of the box.

    Product capabilities - overall comment

    There is still a lot of implementation to go but the overall resource this product provides our company, along with the future state and integrations, make this a top tier product in the realm of vulnerability management and validation.

    Service & support - overall comment

    They are an amazing group of people. As long as you take onwership of your instance and work with the CSM and TAM, they will bend over backwards to meet your needs.

    Integration & Deployment - Overall comment

    Was not properly installed to meet the actual needs of the company, not the fault of the vendor, it was brought on board for compliance purposes and then expanded to support the enterprise.


  • 5 out of 5.0, Reviewed

    Product(s): Metasploit Pro,Nexpose

    Easy to deploy, big impact to our overall risk, a key pillar of our security program

    Overall Comment

    We expected the rollout to take 3 months globally. We were fully implemented and functional within a month, exceeding expectations. The solution has been very effective, lowering our overall risk and we are able to operationally manage it with less than 4 hours of resources per week. The dashboard and reporting are exceptional.

    What do you like most about the product or service?

    Nexpose was the firs tool we deployed globally when we re-developed our security program. The visibility and reporting from Nexpose has helped shore up what is quite possibly the most important area for defense in IT security. It is a pillar, if not the cornerstone tool, that we look to when we measure risk.

    What do you dislike most about the product?

    Nexpose is continuing to grow its offerings and has some configuration scoring capabilities, but this area is something that could be improved.

    Product capabilities - overall comment

    We had not seen any other competing product as easy to use and deploy, without giving up substantial functionality. We have continually added new capabilities to our program through the use of this tool. It has even become a "go to" tool for questions or information on assets as well.

    Service & support - overall comment

    While we have been very happy with the product, we have had to open tickets occasionally with Rapid7. Their support team is very quick to respond, excellent at what they do and have been able to provide timely solutions for us when ever we need support.

    Integration & Deployment - Overall comment

    The deployment was simple, using virtual appliances. Standing up the technology and initial configuration took a month, done internally with no external consulting. We continue to refine the solution, adding new capabilities, but largely unchanged from initial implementation.


  • 5 out of 5.0, Reviewed

    Product(s): InsightIDR

    Plug-and-Play behavioral analytics that works out of the box.

    Overall Comment

    Vendor support was amazing, fast, and effective. The product provided ROI during the 1 week demo period and was able to identify hostile nation-state activity on one of our cloud services.

    What do you like most about the product or service?

    It just works. Very useful and actionable alerts and insight into behaviour that simply cannot be derived from log analysis alone.

    What do you dislike most about the product?

    It is still a young product and it experiences big changes as it progresses. Minor bugs with the integration with LogRhythm.

    Product capabilities - overall comment

    Works surprisingly well

    Service & support - overall comment

    Super-human support. Even minor feedback was responded to in less than an hour by email.

    Integration & Deployment - Overall comment

    Everything worked well but with a few bugs. Any problems that were encountered were solved quickly and effectively by the vendor.


  • 4 out of 5.0, Reviewed

    Product(s): Metasploit Pro,Nexpose

    Implementation was easy but virtual appliances need to be kept more current.

    Overall Comment

    Works well and provides great insight.

    What do you like most about the product or service?

    ease of use

    What do you dislike most about the product?

    lack of very tight role based access control

    Product capabilities - overall comment

    Reporting is an areas of continued improvement.

    Service & support - overall comment

    Very helpful and very engaged support model.

    Integration & Deployment - Overall comment

    Easy to deploy with prebuilt virtual appliances.


Show More Reviews

Ratings Overview

1 2 3 4 5
Section
1

Evaluation & Contracting

Overall rating of product evaluation and contract negotiation

(28)
4.5

Ability to understand your organization's needs

(11)
4.3

Timely and complete response to product questions

(11)
4.2

Pricing and contract flexibility (pricing and terms)

(10)
3.8
1 2 3 4 5
Section
1

Integration & Deployment

Overall rating of integration and deployment

(28)
4.5

How long did your deployment take?

0 - 3 months (<3)

3 - 6 months (<6)

12 months or more

6 - 9 months (<9)

9 - 12 months (<12)


Availability of quality 3rd-party resources (integrators, service providers, etc.)

(2)
4.0

Ease of integration using standard APIs and tools

(5)
3.8

Quality and availability of end-user training

(10)
3.9

Ease of deployment

(11)
4.3
1 2 3 4 5
Section
1

Service & Support

Overall rating of service and support

(29)
4.7

Did you purchase a support package from vendor?

Yes

No


Timeliness of vendor's response

(11)
4.3

Quality of technical support

(11)
4.1

Quality of peer user community

(10)
3.8
1 2 3 4 5
Section
1

Product Capabilities

Overall rating of product capabilities

(29)
4.6

Real-Time Monitoring

(9)
4.4

Threat Intelligence

(9)
4.4

Behavior Profiling

(7)
4.1

Data and User Monitoring

(8)
3.9

Application Monitoring

(8)
4.0

Analytics

(9)
4.2

Log Management and Reporting

(8)
4.0

Deployment/Support Simplicity

(10)
4.4
1 2 3 4 5
Section
1

Additional Context

What was the nature of your involvement?

Maintenance and Support

Technical Assessment

Rollout and Install

Functional Assessment

Vendor/Product Selection

Application Lead

Vendor Management

User Training

Development/Integration

Executive Sponsor

Other...


Why did you purchase a Security Information Event Management solution?

Enable/improve security event alerting, investigation

Enable/improve log collection, reporting and retention capabilities

Meet regulatory or commercial compliance requirements

Enable/improve behavioral analysis of users and other entities

Enable/improve security incident workflow and reporting

Enable/improve tracking access to and activities related to databases, applications

Meet customer or business partner expectations about your security monitoring program

Reduce costs for meeting compliance mandates

Reduce costs for threat management operations


What other vendors were considered? Multiple responses allowed.

Tenable Network Security, Inc

Splunk

Intel Security (McAfee)

Rapid7

SolarWinds

LogRhythm

AlienVault

Elasticsearch

IBM

RSA, The Security Division of EMC

Security Onion

EventTracker

Graylog

NetIQ

Symantec

Trustwave

Other...


What were the key factors that drove your decision for selecting the vendor?

Product functionality and performance

Strong technical/product support

Strong customer focus

Overall cost

Product roadmap and future vision

Strong user community

Financial/organizational viability

Pre-existing relationships

Strong consulting partnership

Availability of managed services

Other...


In which region(s) did your deployment take place? Multiple responses allowed.

North America

Europe, Middle East and Africa

Asia/Pacific

Latin America