Cybereason Endpoint Detection & Response vs Rapid7 InsightIDR comparison

Cybereason and Rapid7 are both solutions in the Endpoint Detection and Response (EDR) category. Cybereason is ranked #28 with an average rating of 7.6, while Rapid7 is ranked #26 with an average rating of 8.1. Cybereason holds a 1.0% mindshare in EDR, compared to Rapid7’s 1.2% mindshare. Additionally, 85% of Cybereason users are willing to recommend the solution, compared to 95% of Rapid7 users who would recommend it.

Cybereason Endpoint Detecti...

Read 22 Cybereason Endpoint Detection & Response reviews

4,196 Views
2,476 Comparison Views

85% willing to recommend

Rapid7 InsightIDR

Read 32 Rapid7 InsightIDR reviews

7,366 Views
1,842 Comparison Views

95% willing to recommend

Cybereason Endpoint Detecti...

Rapid7 InsightIDR

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Sep 9, 2024

Cybereason Endpoint Detection & Response and Rapid7 InsightIDR compete in the cybersecurity field. Cybereason appears to have the upper hand in advanced threat hunting and real-time response capabilities, while Rapid7 is preferred for strong incident detection and investigation features.

Features: Cybereason offers advanced threat hunting, real-time response, and automated response functionalities. Rapid7 InsightIDR provides incident detection, investigation capabilities, and integration with various third-party tools.

Room for Improvement: Cybereason could improve integration with other security tools, enhance reporting capabilities, and streamline user interfaces. Rapid7 needs better alert accuracy, reduced false positives, and refined alerting mechanisms.

Ease of Deployment and Customer Service: Cybereason has a straightforward deployment process and responsive customer service. Rapid7 InsightIDR is easy to deploy with a supportive and knowledgeable customer service team.

Pricing and ROI: Cybereason has higher setup costs leading to mixed opinions on ROI. Rapid7 InsightIDR offers competitive pricing and users report favorable ROI due to its comprehensive feature set.

To learn more, read our detailed Cybereason Endpoint Detection & Response vs. Rapid7 InsightIDR Report (Updated: July 2025).

Buyer's Guide

Cybereason Endpoint Detection & Response vs. Rapid7 InsightIDR

July 2025

Download the complete report

Helped 865,295 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Cybereason Endpoint Detecti...

Ranking in Endpoint Detection and Response (EDR)

28th

Average Rating

7.8

Reviews Sentiment

5.6

Number of Reviews

Ranking in other categories

Endpoint Protection Platform (EPP) (37th)

Rapid7 InsightIDR

Ranking in Endpoint Detection and Response (EDR)

26th

Average Rating

8.4

Reviews Sentiment

7.4

Number of Reviews

Ranking in other categories

Security Information and Event Management (SIEM) (14th), User Entity Behavior Analytics (UEBA) (5th), Threat Deception Platforms (5th), Extended Detection and Response (XDR) (17th)

Mindshare comparison

As of August 2025, in the Endpoint Detection and Response (EDR) category, the mindshare of Cybereason Endpoint Detection & Response is 1.0%, down from 1.1% compared to the previous year. The mindshare of Rapid7 InsightIDR is 1.2%, up from 0.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Endpoint Detection and Response (EDR)

Featured Reviews

Ivan Burke

Head of Research Development and Innovation at CSIR

Offers useful threat hunting and response capabilities but struggles to justify cost for smaller deployments

I mostly work with incident response, so I work with a bunch of them interchangeably, but mostly with the EDR components; I also get involved with some of the XDR components, especially for the cloud. Regarding analysis features, such as deep behavioral detection, I do use it sometimes; I usually don't use the automated version of it, as I prefer threat hunting directly, depending on if the season is available. I know some of them have pretty good analytics engines, but I tend to do the threat hunting on my own. I manage incident response for a bunch of companies, so some of them have Cybereason Endpoint Detection & Response integrated into Sentinel, some into Fortinet, and others into various tools. When considering cost-effectiveness, their pricing structure works such that if you're a large organization with more than a thousand endpoints to deploy to, then Cybereason Endpoint Detection & Response is worthwhile. But for anything less than 300, it's too expensive; obviously, the more you buy, the better the price, making it cheaper for you. Cybereason Endpoint Detection & Response best fits enterprise-level businesses such as huge corporations; however, we are in the process of removing it from many of our endpoint clients because it's not really showing enough value for them at the moment. We're trying to see how we can improve it with some of our clients, but at the moment, it's struggling compared to other EDR solutions that we have deployed. On a scale of one to ten, I rate Cybereason Endpoint Detection & Response a six.

Read full review

Asim Naeem

Principal IT Security & Compliance at IBEX Holdings Ltd

Providing comprehensive insight into alerts while working towards AI enhancement

I definitely recommend Rapid7 InsightIDR. It is becoming better, with improvements being continuously made to the product. Right now, I do not have any advice about Rapid7 for other users because every organization or user has different criteria or multiple use cases, so I refrain from commenting on that. I rate the overall solution seven out of ten.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"What I find most valuable is the clarity of the platform. It is very straightforward."

"Cybereason absolutely enables us to mitigate and isolate on the fly. Our managed detection response telemetry has dropped dramatically since we began using it. It's very top-of-mind. We were running some tabletop exercises and none of the detections were getting triggered by the managed security services provider. So we needed to find a solution that would trigger high-fidelity alerts. That was Cybereason and it dramatically changed our landscape from the detection and response perspective."

"The solution is efficient."

"The initial setup was easy and straightforward."

"I haven't had any issues with the solution. Stability-wise, I rate the solution a ten out of ten."

"We didn't have the visibility that we now have. It has increased our visibility by a lot. So, we put a lot more time into really looking at our environment and what is happening throughout our different networks. It has increased our visibility by around fivefold."

"For me, the technical support is good."

"They do a very good job of providing multi-stage visualizations of malicious operations that immediately show all attack details across all devices and users. Since it is MalOp-centric model, you can see if there has been a similar operation across multiple machines. If it is the same thing appearing on multiple machines, you see all the machines and users affected in one screen."

More Cybereason Endpoint Detection & Response pros

"Intelligent alerting to avoid the common problem of alert fatigue associated with traditional SIEMs."

"Scalability-wise, I rate the solution a ten out of ten. As a cloud tool, the product is highly scalable."

"Another very important part of insightIDR is the ability to collect data from endpoint devices via agent software. With a large remote workforce, this allows visibility into the endpoints that are connected to the internet, but not to the corporate network."

"The UI is very good."

"Log search allows us to dive deep into aggregated logs and query all event types at once."

"The solution provides satisfying native integration features"

"The platform offers unlimited storage and agent-based solutions."

"Features for user behavior analytics and the rules for attack review are good."

More Rapid7 InsightIDR pros

Cons

"We are in the process of removing it from many of our endpoint clients because it's not really showing enough value for them at the moment."

"I feel that the product lacks reporting features and needs improvement."

"It should be more stable, and the sensor needs improvement in terms of connectivity."

"The integration with Microsoft solutions and Microsoft capabilities needs to be improved."

"The deployment on individual endpoints is more geared toward larger organizations. It might prove to be a bit too complicated for a smaller organization. You need to know what you're doing when you're deploying the sensor."

"Cybereason does not have sandbox functionality."

"I feel it is a shame that I cannot create groups of groups with inheritance."

"The product's reporting isn't great."

More Cybereason Endpoint Detection & Response cons

"I would like the ability to adjust the threshold of certain existing alerts. Currently the only option is to change the notifications or create my own alert."

"Customised alert recipients need to be added to allow better first-line action and quicker response. Configurable honeypots would be a welcome addition."

"Currently, it lacks the functionalities provided by Rapid7's User Behavior Analytics (UBA)."

"Inability to get access to compliance reports within the solution."

"There is a future in AI with Rapid7, however, it is not fully operated. There are certain limitations with Rapid7 that I am working on."

"The APIs can be further improved in Rapid7."

"I feel it would greatly benefit from more supported log sources."

"The integration capabilities of the solution have certain shortcomings where improvements are required."

More Rapid7 InsightIDR cons

Pricing and Cost Advice

"I had to go through a third-party to purchase it, which I wasn't really pleased about."

"In terms of pricing, it's a good solution."

"This product is somewhat expensive and should be cheaper."

"Though it is not the cheapest solution but it fits our budget. We pay an annual licensing fee."

"On a scale of one to ten, where one is cheap and ten is expensive, I rate the pricing an eight."

"We considered a few other solutions. Some were ridiculously overpriced, while others didn't have solutions for Mac endpoints. That was a deal-breaker because most of our organization is on Mac. It came down to two vendors: Cybereason and another. They had similar pitches and almost identical approaches, but in the end, Cybereason gave us the best value for our money."

"In terms of cost, this is a good choice for our needs."

"The pricing is manageable."

More Cybereason Endpoint Detection & Response pricing and cost advice

"Rapid7 InsightIDR is a cheaply priced product. On a scale of one to ten, where one is very expensive, and ten is very cheap, I rate the product's price at seven or eight."

"Rapid7 InsightIDR's pricing is reasonable but we have challenges with the Minimum Order Quantity. It is not reasonable for customers who have less than one hundred devices. If they can reduce Minimum Order Quantity, it is good. You have to pay around 5000-6000 dollars per year for the product. The pricing includes maintenance and support costs."

"Rapid7 InsightIDR charges us based on the endpoints we connect to."

"The pricing is good, and it is not very expensive."

"It is a reasonably priced solution."

"I am sure that there are cheaper products out there, but none that meet so many of our needs whilst maintaining stability and usability."

"Licensing is straightforward. If, for some reason, you don’t meet the minimum licensing requirements, there is a third-party managed service that can help."

"The team is very willing to work with companies. My suggestion is to call the Rapid7 sales department and see how they can help."

More Rapid7 InsightIDR pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Endpoint Detection and Response (EDR) solutions are best for your needs.

See recommendations

865,295 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

15%

Financial Services Firm

11%

Manufacturing Company

Government

Computer Software Company

15%

Manufacturing Company

Financial Services Firm

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What is your experience regarding pricing and costs for Cybereason Endpoint Detection & Response?

Comparison with other products showed it be cheaper than some larger competitors. Set up cost for us were cheaper as we already had users experienced with the product in other business units. Initi...

See all answers

What is your primary use case for Cybereason Endpoint Detection & Response?

My main use case for Cybereason Endpoint Detection & Response is mostly for incident response.

See all answers

What do you like most about Cybereason Endpoint Detection & Response?

The interface is user-friendly.

See all answers

What SOC product do you recommend?

For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...

See all answers

What do you like most about Rapid7 InsightIDR?

During simulations or demonstrations, the tool generates alerts, providing details such as the specific application, its origin, and potential threats. For instance, it can identify if an applicati...

See all answers

What is your experience regarding pricing and costs for Rapid7 InsightIDR?

The product pricing is very cheap.

See all answers

Comparisons

Darktrace vs Cybereason Endpoint Detection & Response

Compared 27% of the time

CrowdStrike Falcon vs Cybereason Endpoint Detection & Response

Compared 11% of the time

SentinelOne Singularity Complete vs Cybereason Endpoint Detection & Response

Compared 10% of the time

Microsoft Defender for Endpoint vs Cybereason Endpoint Detection & Response

Compared 9% of the time

ESET Inspect vs Cybereason Endpoint Detection & Response

Compared 7% of the time

More Cybereason Endpoint Detection & Response Competitors

Darktrace vs Rapid7 InsightIDR

Compared 9% of the time

Microsoft Sentinel vs Rapid7 InsightIDR

Compared 8% of the time

Rapid7 InsightVM vs Rapid7 InsightIDR

Compared 7% of the time

CrowdStrike Falcon vs Rapid7 InsightIDR

Compared 6% of the time

Splunk Enterprise Security vs Rapid7 InsightIDR

Compared 5% of the time

More Rapid7 InsightIDR Competitors

Product Reports

Buyer's Guide

Cybereason Endpoint Detection & Response

August 2025

Cybereason Endpoint Detection & Response report

Download Cybereason Endpoint Detection & Response product report

Buyer's Guide

Rapid7 InsightIDR

August 2025

Download Rapid7 InsightIDR product report

Also Known As

Cybereason EDR, Cybereason Deep Detect & Respond

InsightIDR

Overview

Cybereason's Endpoint Detection and Response platform detects in real-time both signature and non-signature-based attacks and accelerates incident investigation and response. Cybereason connects together individual pieces of evidence to form a complete picture of a malicious operation.

Cybereason

Parsing hundreds of trivial alerts. Managing a mountain of data. Manually forwarding info from your endpoints. Forget that. InsightIDR instantly arms you with the insight you need to make better decisions across the incident detection and response lifecycle, faster.

Rapid7

Sample Customers

Lockheed Martin, Spark Capital, DocuSign, Softbank Capital

Liberty Wines, Pioneer Telephone, Visier

Buyer's Guide

Cybereason Endpoint Detection & Response vs. Rapid7 InsightIDR

July 2025

Free Report: Cybereason Endpoint Detection & Response vs. Rapid7 InsightIDR

Find out what your peers are saying about Cybereason Endpoint Detection & Response vs. Rapid7 InsightIDR and other solutions. Updated: July 2025.

DOWNLOAD NOW

865,295 professionals have used our research since 2012.

See our Cybereason Endpoint Detection & Response vs. Rapid7 InsightIDR report.

See our list of best Endpoint Detection and Response (EDR) vendors.

We monitor all Endpoint Detection and Response (EDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.