Cisco Sourcefire SNORT vs Rapid7 InsightIDR comparison

The compared Cisco and Rapid7 solutions aren't in the same category. Cisco is ranked #14 in ID , with an average rating of 7.7, and holds a 3.5% mindshare in the category. Rapid7 is ranked #15 in SIEM , with an average rating of 8.1, and holds a 2.6% mindshare. Additionally, 95% of Cisco users are willing to recommend the solution, compared to 95% of Rapid7 users who would recommend it.

Cisco Sourcefire SNORT

Read 19 Cisco Sourcefire SNORT reviews

1,102 Views
676 Comparison Views

95% willing to recommend

Rapid7 InsightIDR

Read 32 Rapid7 InsightIDR reviews

3,876 Views
1,926 Comparison Views

95% willing to recommend

Cisco Sourcefire SNORT

Rapid7 InsightIDR

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Cisco Sourcefire SNORT and Rapid7 InsightIDR based on real PeerSpot user reviews.

Find out what your peers are saying about Darktrace, Check Point Software Technologies, Fortinet and others in Intrusion Detection and Prevention Software (IDPS).

To learn more, read our detailed Intrusion Detection and Prevention Software (IDPS) Report (Updated: May 2025).

Buyer's Guide

Intrusion Detection and Prevention Software (IDPS)

May 2025

Download the complete report

Helped 858,038 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Cisco Sourcefire SNORT

Average Rating

7.6

Reviews Sentiment

6.8

Number of Reviews

Ranking in other categories

Intrusion Detection and Prevention Software (IDPS) (14th)

Rapid7 InsightIDR

Average Rating

8.4

Reviews Sentiment

7.4

Number of Reviews

Ranking in other categories

Security Information and Event Management (SIEM) (15th), User Entity Behavior Analytics (UEBA) (5th), Endpoint Detection and Response (EDR) (26th), Threat Deception Platforms (5th), Extended Detection and Response (XDR) (16th)

Mindshare comparison

While both are Network Security Systems solutions, they serve different purposes. Cisco Sourcefire SNORT is designed for Intrusion Detection and Prevention Software (IDPS) and holds a mindshare of 3.5%, down 3.8% compared to last year.
Rapid7 InsightIDR, on the other hand, focuses on Security Information and Event Management (SIEM), holds 2.6% mindshare, down 2.6% since last year.

Intrusion Detection and Prevention Software (IDPS)

Security Information and Event Management (SIEM)

Featured Reviews

Jack Poon

Treasury Specialist at Dah Sing Bank

Offers ease of setup and good documentation

When it comes to the product's deployment phase, we have a lot of vendor support. We have a lot of skills here in Hong Kong. Our company doesn't find any problem deploying Cisco solutions. The solution is deployed on an on-premises version. Speaking about the time required to deploy the solution, I would say that we have quite a lot of previous experience with deploying Cisco products. We have our company's standard design document, which we need to follow. We have a standard testing procedure for all those features. We just take out some appropriate parts and then compile them into one document for an individual project. It is actually quite easy for us to do the documentation, so it just takes one or two hours, and we can do the implementation because all the materials and testing procedures are already in our company standard documents, so it is not that difficult for us.

Read full review

Asim Naeem

Principal IT Security & Compliance at IBEX Holdings Ltd

Providing comprehensive insight into alerts while working towards AI enhancement

I definitely recommend Rapid7 InsightIDR. It is becoming better, with improvements being continuously made to the product. Right now, I do not have any advice about Rapid7 for other users because every organization or user has different criteria or multiple use cases, so I refrain from commenting on that. I rate the overall solution seven out of ten.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The product is inexpensive compared to leading brands such as Palo Alto or Fortinet."

"The most valuable features of Cisco Sourcefire SNORT are the dashboard for monitoring events."

"Cisco technical support is unbeatable. It offers a premium service every time."

"The most valuable feature is the ability to automatically learn the traffic in our environment, and change the merit recommendations based on that."

"The URL filtering is very good and you can create a group for customized URLs."

"It simplifies the configuration process by offering pre-defined base configurations, including security and connectivity settings."

"The solution is rather easy to use."

"The solution can be integrated with some network electors like Cisco Stealthwatch, Cisco ISE, and Active Directory to provide the client with authentication certificates."

More Cisco Sourcefire SNORT pros

"The UI is very good."

"The platform offers unlimited storage and agent-based solutions."

"Integration with threat modeling from the Metasploit and InsightIDR repositories."

"Rapid7 InsightIDR integrates well with other solutions. It's also easy to configure because Rapid7 InsightIDR has a lot of instructions posted on their website that customers can follow if they need to get the source log."

"If you were on other solutions, you would notice that they use agents from third-party, from open-source, from a native OS, or from other tools. Here, however, it is an agent from Rapid7 itself. This adds to the solution's overall capabilities."

"Very intuitive and easy to set up."

"The product works well. Stability-wise, I rate the solution a ten out of ten."

"It is a very stable solution."

More Rapid7 InsightIDR pros

Cons

"I want to see a better dashboard for the product. The dashboard can be a bit modified or enhanced."

"With the next release, I would like to see some PBR, so that you can do the configuration with the features."

"I did not experience any pain points that required improvement. Maybe a couple of false-positives, but that's about it."

"I would like to have analytics included in the suite."

"We are unhappy with technical support for this solution, and it is not as professional as what we typically expect from Cisco."

"I don't think this solution is a time-based control system, because one cannot filter traffic based on time."

"The customization of the rules can be simplified."

"There are problems setting up VPNs for some regions."

More Cisco Sourcefire SNORT cons

"I would like the ability to adjust the threshold of certain existing alerts. Currently the only option is to change the notifications or create my own alert."

"I feel it would greatly benefit from more supported log sources."

"The interface for doing investigation needs to be enhanced with minor improvements that would make it more useful."

"I would like to see more development in InsightIDR towards building their SIEM solution and converting it to XDR."

"Tenable Nessus is easier to deal with. It's more efficient and accurate. InsightIDR is heavier than Tenable in terms of performance and scanning. Rapid7 would be much easier to use if it had a network connector like Tenable. Tenable's connector allows continuous monitoring over the B caps."

"There are certain limitations with Rapid7 that I am working on."

"They should add more configuration and security features to it."

"The integration capabilities of the solution have certain shortcomings where improvements are required."

More Rapid7 InsightIDR cons

Pricing and Cost Advice

"We have a three-year license for this solution."

"I don't know the exact amount, but most of the time when I go to a company with a proposition, they will say, "This thing that you are selling is good, but it's expensive. Why don't you propose something like FortiGate, Check Point, or Palo Alto?" Cisco device are expensive compared to other devices."

"If one is an extremely expensive product, and ten is cheap, I rate the tool's price as a five."

"Licensing for this solution is paid on a yearly basis."

"The cost is per port and can be expensive but it does include training and support for three years."

"Rapid7 InsightIDR is priced very well and is cost-effective."

"It is on a yearly basis. For our own company, for about 250 users, it was 16,000 euros a year."

"I am sure that there are cheaper products out there, but none that meet so many of our needs whilst maintaining stability and usability."

"The solution has a mid-range price point in the market"

"Licensing is straightforward. If, for some reason, you don’t meet the minimum licensing requirements, there is a third-party managed service that can help."

"The team is very willing to work with companies. My suggestion is to call the Rapid7 sales department and see how they can help."

"Accurately predict your licensing counts as this is a subscription based product."

"The pricing is good, and it is not very expensive."

More Rapid7 InsightIDR pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Intrusion Detection and Prevention Software (IDPS) solutions are best for your needs.

See recommendations

858,038 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

19%

Financial Services Firm

12%

University

Government

Computer Software Company

15%

Financial Services Firm

Manufacturing Company

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about Cisco Sourcefire SNORT?

The product is inexpensive compared to leading brands such as Palo Alto or Fortinet.

See all answers

What is your experience regarding pricing and costs for Cisco Sourcefire SNORT?

If one is an extremely expensive product, and ten is cheap, I rate the tool's price as a five. There are some other tools in the market that are more expensive than Cisco. There are no additional c...

See all answers

What needs improvement with Cisco Sourcefire SNORT?

Cisco offers the Cisco DNA Center, which is a source that provides crucial information for us to monitor performance, and see whether there is any trouble. We are using Cisco DNA center, but again,...

See all answers

What SOC product do you recommend?

For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...

See all answers

What do you like most about Rapid7 InsightIDR?

During simulations or demonstrations, the tool generates alerts, providing details such as the specific application, its origin, and potential threats. For instance, it can identify if an applicati...

See all answers

What is your experience regarding pricing and costs for Rapid7 InsightIDR?

The product pricing is very cheap.

See all answers

Comparisons

Palo Alto Networks Advanced Threat Prevention vs Cisco Sourcefire SNORT

Compared 20% of the time

Fortinet FortiGate IPS vs Cisco Sourcefire SNORT

Compared 19% of the time

Cisco Secure IPS (NGIPS) vs Cisco Sourcefire SNORT

Compared 16% of the time

Vectra AI vs Cisco Sourcefire SNORT

Compared 10% of the time

ExtremeCloud IQ vs Cisco Sourcefire SNORT

Compared 8% of the time

More Cisco Sourcefire SNORT Competitors

Darktrace vs Rapid7 InsightIDR

Compared 10% of the time

Microsoft Sentinel vs Rapid7 InsightIDR

Compared 9% of the time

Rapid7 InsightVM vs Rapid7 InsightIDR

Compared 8% of the time

CrowdStrike Falcon vs Rapid7 InsightIDR

Compared 5% of the time

Splunk Enterprise Security vs Rapid7 InsightIDR

Compared 5% of the time

More Rapid7 InsightIDR Competitors

Product Reports

Buyer's Guide

Cisco Sourcefire SNORT

June 2025

Download Cisco Sourcefire SNORT product report

Buyer's Guide

Rapid7 InsightIDR

May 2025

Download Rapid7 InsightIDR product report

Also Known As

Sourcefire SNORT

InsightIDR

Overview

Snort is an open-source, rule-based, intrusion detection and prevention system. It combines the benefits of signature-, protocol-, and anomaly-based inspection methods to deliver flexible protection from malware attacks. Snort gained notoriety for being able to accurately detect threats at high speeds.

Cisco

Parsing hundreds of trivial alerts. Managing a mountain of data. Manually forwarding info from your endpoints. Forget that. InsightIDR instantly arms you with the insight you need to make better decisions across the incident detection and response lifecycle, faster.

Rapid7

Sample Customers

CareCore, City of Biel, Dimension Data, LightEdge, Lone Star College System, National Rugby League, Port Aventura, Smart City Networks, Telecom Italia, The Department of Education in Western Australia

Liberty Wines, Pioneer Telephone, Visier

Buyer's Guide

Intrusion Detection and Prevention Software (IDPS)

May 2025

Download Free Report

Find out what your peers are saying about Darktrace, Check Point Software Technologies, Fortinet and others in Intrusion Detection and Prevention Software (IDPS). Updated: May 2025.

DOWNLOAD NOW

858,038 professionals have used our research since 2012.

We monitor all Intrusion Detection and Prevention Software (IDPS) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.