Cybereason XDR vs Rapid7 InsightIDR comparison

Cybereason and Rapid7 are both solutions in the Extended Detection and Response (XDR) category. Cybereason is ranked #22 with an average rating of 9.0, while Rapid7 is ranked #18 with an average rating of 7.8. Cybereason holds a 1.0% mindshare in XDR, compared to Rapid7’s 2.4% mindshare. Additionally, 100% of Cybereason users are willing to recommend the solution, compared to 96% of Rapid7 users who would recommend it.

Cybereason XDR

Read 3 Cybereason XDR reviews

1,477 Views
1,462 Comparison Views

100% willing to recommend

Rapid7 InsightIDR

Read 32 Rapid7 InsightIDR reviews

6,636 Views
2,190 Comparison Views

96% willing to recommend

Cybereason XDR

Rapid7 InsightIDR

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Oct 8, 2024

Rapid7 InsightIDR and Cybereason XDR are two prominent products in the cybersecurity market. Cybereason XDR seems to have the upper hand due to its comprehensive features, while Rapid7 InsightIDR is valued for its pricing and support.

Features: Rapid7 InsightIDR is noted for its capabilities in effectively detecting threats and offering robust integrative features. Cybereason XDR is recognized for its advanced threat-hunting capabilities, superior automation, and detailed analytics.

Room for Improvement: Rapid7 InsightIDR could improve in scalability and advanced threat analysis. Cybereason XDR needs better reporting functions and reduced alert noise. Improvements are also suggested for InsightIDR's expansion capacities and Cybereason's alert management.

Ease of Deployment and Customer Service: Rapid7 InsightIDR is recognized for its straightforward deployment and reliable customer service. Cybereason XDR offers a comprehensive setup with a steeper learning curve, complemented by responsive support.

Pricing and ROI: Rapid7 InsightIDR has competitive setup costs and satisfactory ROI. Cybereason XDR, though pricier, delivers solid ROI with superior threat detection. Rapid7 is noted for its accessible pricing, making it appealing for budget-conscious users.

To learn more, read our detailed Cybereason XDR vs. Rapid7 InsightIDR Report (Updated: December 2025).

Buyer's Guide

Cybereason XDR vs. Rapid7 InsightIDR

December 2025

Download the complete report

Helped 881,114 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Cybereason XDR

Ranking in Extended Detection and Response (XDR)

22nd

Average Rating

8.6

Reviews Sentiment

6.7

Number of Reviews

Ranking in other categories

No ranking in other categories

Rapid7 InsightIDR

Ranking in Extended Detection and Response (XDR)

18th

Average Rating

8.4

Reviews Sentiment

7.0

Number of Reviews

Ranking in other categories

Security Information and Event Management (SIEM) (15th), User Entity Behavior Analytics (UEBA) (7th), Endpoint Detection and Response (EDR) (22nd), Threat Deception Platforms (4th)

Mindshare comparison

As of January 2026, in the Extended Detection and Response (XDR) category, the mindshare of Cybereason XDR is 1.0%, up from 0.6% compared to the previous year. The mindshare of Rapid7 InsightIDR is 2.4%, up from 2.3% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Extended Detection and Response (XDR) Market Share Distribution
Product	Market Share (%)
Rapid7 InsightIDR	2.4%
Cybereason XDR	1.0%
Other	96.6%

Extended Detection and Response (XDR)

Featured Reviews

Peter Nowak

Business Development Manager for Cybereason at Bechtle

Integration of multiple firewalls enables advanced threat detection

The integration of data from firewalls and Active Directory is most valuable. Cybereason XDR facilitates two-way communication, where the firewall sends data to the Cybereason system, and it can communicate with the firewall to stop unwanted communication. Customers can deal with multiple types of firewalls with ease. The behavioral analytics help detect advanced threats when attackers use existing software. The multilayered protection approach, including NGAV, integrates XDR detection with antivirus to assess and counter threats effectively.

Read full review

SohailHyder

Head of Cyber Security at Super Secure

Has supported compliance needs for mid-sized organizations but lacks customization and advanced integration

If we pitch Rapid7 InsightIDR against solutions such as SIEMs from Splunk or LogRhythm, it is not as customizable as a SIEM solution is. This is where it can improve if we keep in front the feature sets of a complete SIEM solution. Most common in the market is QRadar, but it is depleting now. It has been taken over by some other products such as Splunk and LogRhythm. If we compare these things with Rapid7 InsightIDR, then there are definitely some gaps that need to be filled. Data retention is also one concern because Rapid7 InsightIDR is cloud-based and operates on a subscription model. Whatever data you want to retain, it has to be paid for separately or it has a cost. Other solutions that are on-premises can have their own infrastructure or they provide some data retention for a month or in some capacity-wise, they provide that solution to them which makes them more attractive.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"Cybereason XDR's most useful feature is the investigation."

"The solution has an investigation feature, which is useful for building storylines."

"The integration of data from firewalls and Active Directory is most valuable."

"Rapid7 InsightIDR integrates well with other solutions. It's also easy to configure because Rapid7 InsightIDR has a lot of instructions posted on their website that customers can follow if they need to get the source log."

"If you were on other solutions, you would notice that they use agents from third-party, from open-source, from a native OS, or from other tools. Here, however, it is an agent from Rapid7 itself. This adds to the solution's overall capabilities."

"The solution is very stable and works very well for what I need it to do."

"The technical support is a solid 10 out of 10 as they take the time to answer any questions or problems which may arise in a reasonable time frame."

"We were able to identify criminals attempting to login from China and put a stop on their IP locations."

"The web interface is great — very useful and user-friendly."

"The solution is easy to use, and the interface is intuitive."

"Integration with threat modeling from the Metasploit and InsightIDR repositories."

More Rapid7 InsightIDR pros

Cons

"Customer service is rated as a five out of ten. When they work and reach the right level, they are helpful, but getting to the right person can be time-consuming."

"There could be more integrations with other data sources like NDR systems."

"The one thing we sometimes have issues with is its integration with other security applications like antiviruses."

"Cybereason's customer support could be better."

"The product allows us to make only 30 custom rules."

"There are certain limitations with Rapid7 that I am working on."

"They should add more configuration and security features to it."

"The interface for doing investigation needs to be enhanced with minor improvements that would make it more useful."

"Needs a better ability to customize the check within the console."

"The reporting is the weakest aspect. There needs to be multi-level grouping for events (for example, group by user and destination). Right now, we can do a group by user and a separate table or group by destination. But I'd be more interested in where a person was logging into instead of who was logging in or where he was logging in."

"The searching feature in Rapid7 InsightIDR needs to evolve"

"The APIs can be further improved in Rapid7."

More Rapid7 InsightIDR cons

Pricing and Cost Advice

"The solution is cheaper than Microsoft Defender. It has a subscription and no standard license."

"The pricing of the solution depends on the user. But there is a yearly licensing cost."

"Rapid7 InsightIDR is priced very well and is cost-effective."

"It is on a yearly basis. For our own company, for about 250 users, it was 16,000 euros a year."

"Rapid7 InsightIDR is a cheaply priced product. On a scale of one to ten, where one is very expensive, and ten is very cheap, I rate the product's price at seven or eight."

"I rate Rapid7 InsightIDR's price a four on a scale of one to ten, where one is cheap, and ten is expensive."

"I am sure that there are cheaper products out there, but none that meet so many of our needs whilst maintaining stability and usability."

"The team is very willing to work with companies. My suggestion is to call the Rapid7 sales department and see how they can help."

"It is a reasonably priced solution."

More Rapid7 InsightIDR pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Extended Detection and Response (XDR) solutions are best for your needs.

See recommendations

881,114 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

13%

Manufacturing Company

13%

Comms Service Provider

10%

Financial Services Firm

Computer Software Company

11%

Financial Services Firm

Manufacturing Company

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

By reviewers
Company Size	Count
Small Business	20
Midsize Enterprise	5
Large Enterprise	6

Questions from the Community

What needs improvement with Cybereason XDR?

There could be more integrations with other data sources like NDR systems. Additionally, technical support has been slow in recent times. Enabling multifactor authentication has been problematic fo...

See all answers

What is your primary use case for Cybereason XDR?

I use Cybereason XDR for customers who don't have a SOC or managed SOC yet and want to be protected on more than their desktops. It is especially used in the manufacturing industry, yet not exclusi...

See all answers

What advice do you have for others considering Cybereason XDR?

I rate Cybereason XDR a nine out of ten. I recommend having hands-on experience and doing some threat hunting to familiarize yourself with the handling.

See all answers

What SOC product do you recommend?

For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...

See all answers

What do you like most about Rapid7 InsightIDR?

During simulations or demonstrations, the tool generates alerts, providing details such as the specific application, its origin, and potential threats. For instance, it can identify if an applicati...

See all answers

What is your experience regarding pricing and costs for Rapid7 InsightIDR?

The product pricing is very cheap.

See all answers

Comparisons

Microsoft Defender XDR vs Cybereason XDR

Compared 18% of the time

Wazuh vs Cybereason XDR

Compared 17% of the time

Trend Vision One vs Cybereason XDR

Compared 12% of the time

CrowdStrike Falcon vs Cybereason XDR

Compared 11% of the time

Cortex XDR by Palo Alto Networks vs Cybereason XDR

Compared 10% of the time

More Cybereason XDR Competitors

Rapid7 InsightVM vs Rapid7 InsightIDR

Compared 6% of the time

Microsoft Sentinel vs Rapid7 InsightIDR

Compared 5% of the time

Splunk Enterprise Security vs Rapid7 InsightIDR

Compared 5% of the time

CrowdStrike Falcon vs Rapid7 InsightIDR

Compared 4% of the time

Darktrace vs Rapid7 InsightIDR

Compared 4% of the time

More Rapid7 InsightIDR Competitors

Product Reports

Buyer's Guide

Extended Detection and Response (XDR)

January 2026

Download Cybereason XDR product report

Buyer's Guide

Rapid7 InsightIDR

January 2026

Download Rapid7 InsightIDR product report

Also Known As

No data available

InsightIDR

Overview

Cybereason is the leader in endpoint protection, offering endpoint detection and response, next-generation antivirus, and managed monitoring services. Founded by elite intelligence professionals born and bred in offense-first hunting, Cybereason gives enterprises the upper hand over cyber adversaries.

Cybereason

Parsing hundreds of trivial alerts. Managing a mountain of data. Manually forwarding info from your endpoints. Forget that. InsightIDR instantly arms you with the insight you need to make better decisions across the incident detection and response lifecycle, faster.

Rapid7

Sample Customers

MOTOROLA MOBILITY

Liberty Wines, Pioneer Telephone, Visier

Buyer's Guide

Cybereason XDR vs. Rapid7 InsightIDR

December 2025

Free Report: Cybereason XDR vs. Rapid7 InsightIDR

Find out what your peers are saying about Cybereason XDR vs. Rapid7 InsightIDR and other solutions. Updated: December 2025.

DOWNLOAD NOW

881,114 professionals have used our research since 2012.

See our Cybereason XDR vs. Rapid7 InsightIDR report.

See our list of best Extended Detection and Response (XDR) vendors.

We monitor all Extended Detection and Response (XDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.