We performed a comparison between BMC TrueSight Vulnerability Management, Rapid7 InsightVM, and Rapid7 Metasploit based on real PeerSpot user reviews.
Find out what your peers are saying about Tenable, Wiz, Check Point Software Technologies and others in Vulnerability Management."Takes reports from other vulnerabilities."
"The ease of deployment and configuration allows users to onboard quickly."
"It is stable and scalable."
"When it comes to the process, installation is very easy and does not take long."
"The solution works well."
"We feel the interface is very good. It is very easy to use, even a nontechnical person can use it."
"The most important aspect of the solution is that it rarely gives false positives, especially compared to other products. It provides very clear reports for our IT teams to look at."
"I liked the dashboard on it. I could customize my dashboard with different widgets and different heat maps."
"This solution's most useful feature is that it is entirely a single-page application."
"The option to generate phishing emails has proven to be very valuable in understanding the behavior of users."
"All of the features are great."
"It allows us to concentrate solely on identified vulnerabilities without the hassle of additional setup."
"The most valuable feature for us is the support for testing Linux-based web server components."
"Rapid7 Metasploit is a useful product."
"The reporting on the solution is good."
"The most valuable features of the solution are the scripts, the modules, and the tools that the Rapid7 Metasploit framework has."
"The greatest advantage of Rapid7 Metasploit is that it is the only system that can directly exploit vulnerabilities on the Metasploit platform."
"No third-party applications or integrations with additional software solutions."
"In order to be able to properly test the solution and make a decision, I would like to receive the test license code instantly and eliminate the wait time."
"There are certain limitations because of the product being used on a hybrid model. Rapid7 InsightVM doesn't offer a solution purely in the cloud."
"InsightVM is getting a little stale and is in danger of falling behind its competitors."
"It is still not a fully cloud-based solution. It will be helpful for customers if it is a complete cloud solution. It is a hybrid solution at the moment."
"There are not enough templates, and the reporting is weak with this solution."
"The solution could improve by being more secure."
"There is a significant learning curve, that non-technical individuals, especially those not specialized in computer science or the information security industry, might face."
"All products have room for increased security and Rapid7 InsightVM is no exception."
"We'd like them to offer better coverage of malware."
"Advanced Infrastructure should be implemented in the next release for better orchestration."
"At the time I was using it, the graphical user interface needed some improvements."
"The initial setup was a bit "tweaky" for the open-source version."
"Rapid7 Metasploit could be made easier for new users to learn."
"If your company's patch is not up to date, but you have other detection or defense solutions such as endpoint detection and response and antivirus software, the product exploit may not work effectively. This is because its exploit database update process is slow and not real-time. For zero-day vulnerabilities or new security threats, relying on Rapid7 Metasploit alone may not be effective."
"It is necessary to add some training materials and a tutorial for beginners."
"There are numerous outdated exploits in their database that should be updated."
Earn 20 points
