Cybereason XDR vs Rapid7 InsightIDR comparison

Cybereason and Rapid7 are both solutions in the Extended Detection and Response (XDR) category. Cybereason is ranked #22 with an average rating of 8.7, while Rapid7 is ranked #16 with an average rating of 8.1. Cybereason holds a 0.7% mindshare in XDR, compared to Rapid7’s 2.7% mindshare. Additionally, 100% of Cybereason users are willing to recommend the solution, compared to 95% of Rapid7 users who would recommend it.

Cybereason XDR

Read 3 Cybereason XDR reviews

1,457 Views
204 Comparison Views

100% willing to recommend

Rapid7 InsightIDR

Read 32 Rapid7 InsightIDR reviews

2,690 Views
987 Comparison Views

95% willing to recommend

Cybereason XDR

Rapid7 InsightIDR

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Oct 8, 2024

Rapid7 InsightIDR and Cybereason XDR are two prominent products in the cybersecurity market. Cybereason XDR seems to have the upper hand due to its comprehensive features, while Rapid7 InsightIDR is valued for its pricing and support.

Features: Rapid7 InsightIDR is noted for its capabilities in effectively detecting threats and offering robust integrative features. Cybereason XDR is recognized for its advanced threat-hunting capabilities, superior automation, and detailed analytics.

Room for Improvement: Rapid7 InsightIDR could improve in scalability and advanced threat analysis. Cybereason XDR needs better reporting functions and reduced alert noise. Improvements are also suggested for InsightIDR's expansion capacities and Cybereason's alert management.

Ease of Deployment and Customer Service: Rapid7 InsightIDR is recognized for its straightforward deployment and reliable customer service. Cybereason XDR offers a comprehensive setup with a steeper learning curve, complemented by responsive support.

Pricing and ROI: Rapid7 InsightIDR has competitive setup costs and satisfactory ROI. Cybereason XDR, though pricier, delivers solid ROI with superior threat detection. Rapid7 is noted for its accessible pricing, making it appealing for budget-conscious users.

To learn more, read our detailed Cybereason XDR vs. Rapid7 InsightIDR Report (Updated: June 2025).

Buyer's Guide

Cybereason XDR vs. Rapid7 InsightIDR

June 2025

Download the complete report

Helped 859,129 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Cybereason XDR

Ranking in Extended Detection and Response (XDR)

22nd

Average Rating

8.6

Reviews Sentiment

6.7

Number of Reviews

Ranking in other categories

No ranking in other categories

Rapid7 InsightIDR

Ranking in Extended Detection and Response (XDR)

16th

Average Rating

8.4

Reviews Sentiment

7.4

Number of Reviews

Ranking in other categories

Security Information and Event Management (SIEM) (15th), User Entity Behavior Analytics (UEBA) (5th), Endpoint Detection and Response (EDR) (26th), Threat Deception Platforms (5th)

Mindshare comparison

As of June 2025, in the Extended Detection and Response (XDR) category, the mindshare of Cybereason XDR is 0.7%, up from 0.5% compared to the previous year. The mindshare of Rapid7 InsightIDR is 2.7%, up from 2.0% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Extended Detection and Response (XDR)

Featured Reviews

Peter Nowak

Business Development Manager for Cybereason at Bechtle

Integration of multiple firewalls enables advanced threat detection

The integration of data from firewalls and Active Directory is most valuable. Cybereason XDR facilitates two-way communication, where the firewall sends data to the Cybereason system, and it can communicate with the firewall to stop unwanted communication. Customers can deal with multiple types of firewalls with ease. The behavioral analytics help detect advanced threats when attackers use existing software. The multilayered protection approach, including NGAV, integrates XDR detection with antivirus to assess and counter threats effectively.

Read full review

Asim Naeem

Principal IT Security & Compliance at IBEX Holdings Ltd

Providing comprehensive insight into alerts while working towards AI enhancement

I definitely recommend Rapid7 InsightIDR. It is becoming better, with improvements being continuously made to the product. Right now, I do not have any advice about Rapid7 for other users because every organization or user has different criteria or multiple use cases, so I refrain from commenting on that. I rate the overall solution seven out of ten.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The integration of data from firewalls and Active Directory is most valuable."

"The solution has an investigation feature, which is useful for building storylines."

"The integration of data from firewalls and Active Directory is most valuable."

"Cybereason XDR's most useful feature is the investigation."

"Intelligent alerting to avoid the common problem of alert fatigue associated with traditional SIEMs."

"It improves because several sensors are deployed within the on-premise environment. It can be very efficient if the customer implements and operates it effectively."

"The ability to ingest Office 365 log files, then process them into events and display them on a map."

"The solution's initial setup is easy."

"Another very important part of insightIDR is the ability to collect data from endpoint devices via agent software. With a large remote workforce, this allows visibility into the endpoints that are connected to the internet, but not to the corporate network."

"It improved my organization by building a security alerting program."

"The solution is very stable and works very well for what I need it to do."

"User behavioral analytics allows us to pinpoint abnormal or suspicious behavior among millions of events every day."

More Rapid7 InsightIDR pros

Cons

"There could be more integrations with other data sources like NDR systems."

"Customer service is rated as a five out of ten. When they work and reach the right level, they are helpful, but getting to the right person can be time-consuming."

"The one thing we sometimes have issues with is its integration with other security applications like antiviruses."

"Cybereason's customer support could be better."

"The reporting is the weakest aspect. There needs to be multi-level grouping for events (for example, group by user and destination). Right now, we can do a group by user and a separate table or group by destination. But I'd be more interested in where a person was logging into instead of who was logging in or where he was logging in."

"Sometimes, it is hard to get the right queries to use. Currently, the tool lacks a pre-made set of queries."

"One of the things that could be better is digital forensics. It is there, but it can be better. They could provide more on the endpoint detection level."

"One thing that springs to mind is easier API integration with ITSMs. We are evaluating a new ITSM and I would like to have InsightIDR create a ticket when an attack is identified, and the ticket would be closed in InsightIDR when the ITSM resolution is completed. This would take out the "single point of failure" we currently have, if the email recipient is somehow absent, in recording the risk appetite for the incident and the actions taken to mitigate or not."

"I would like to see more development in InsightIDR towards building their SIEM solution and converting it to XDR."

"InsightIDR is only available in a cloud version. Some of our customers prefer an on-prem solution because they want to manage the security within their environment."

"The interface for doing investigation needs to be enhanced with minor improvements that would make it more useful."

"Tenable Nessus is easier to deal with. It's more efficient and accurate. InsightIDR is heavier than Tenable in terms of performance and scanning. Rapid7 would be much easier to use if it had a network connector like Tenable. Tenable's connector allows continuous monitoring over the B caps."

More Rapid7 InsightIDR cons

Pricing and Cost Advice

"The solution is cheaper than Microsoft Defender. It has a subscription and no standard license."

"Accurately predict your licensing counts as this is a subscription based product."

"Licensing is by endpoint and amount of retention time (at least ours is). Default retention was one year, but we are able to push the retention further if needed. There's also a provide-your-own-S3 option for longer retention if you don't want to pay for the additional retention years in your Rapid7 agreement."

"The pricing is good, and it is not very expensive."

"Rapid7 InsightIDR is a cheaply priced product. On a scale of one to ten, where one is very expensive, and ten is very cheap, I rate the product's price at seven or eight."

"It is on a yearly basis. For our own company, for about 250 users, it was 16,000 euros a year."

"It is a reasonably priced solution."

"Rapid7 InsightIDR's pricing is reasonable but we have challenges with the Minimum Order Quantity. It is not reasonable for customers who have less than one hundred devices. If they can reduce Minimum Order Quantity, it is good. You have to pay around 5000-6000 dollars per year for the product. The pricing includes maintenance and support costs."

"I am sure that there are cheaper products out there, but none that meet so many of our needs whilst maintaining stability and usability."

More Rapid7 InsightIDR pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Extended Detection and Response (XDR) solutions are best for your needs.

See recommendations

859,129 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

22%

Manufacturing Company

14%

Financial Services Firm

Comms Service Provider

Computer Software Company

15%

Financial Services Firm

Manufacturing Company

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

No data available

Questions from the Community

What do you like most about Cybereason XDR?

The solution has an investigation feature, which is useful for building storylines.

See all answers

What needs improvement with Cybereason XDR?

There could be more integrations with other data sources like NDR systems. Additionally, technical support has been slow in recent times. Enabling multifactor authentication has been problematic fo...

See all answers

What is your primary use case for Cybereason XDR?

I use Cybereason XDR for customers who don't have a SOC or managed SOC yet and want to be protected on more than their desktops. It is especially used in the manufacturing industry, yet not exclusi...

See all answers

What SOC product do you recommend?

For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...

See all answers

What do you like most about Rapid7 InsightIDR?

During simulations or demonstrations, the tool generates alerts, providing details such as the specific application, its origin, and potential threats. For instance, it can identify if an applicati...

See all answers

What is your experience regarding pricing and costs for Rapid7 InsightIDR?

The product pricing is very cheap.

See all answers

Comparisons

Wazuh vs Cybereason XDR

Compared 40% of the time

Microsoft Defender XDR vs Cybereason XDR

Compared 24% of the time

CrowdStrike Falcon vs Cybereason XDR

Compared 16% of the time

Cynet vs Cybereason XDR

Compared 11% of the time

Cortex XDR by Palo Alto Networks vs Cybereason XDR

Compared 8% of the time

More Cybereason XDR Competitors

Darktrace vs Rapid7 InsightIDR

Compared 9% of the time

Microsoft Sentinel vs Rapid7 InsightIDR

Compared 9% of the time

Rapid7 InsightVM vs Rapid7 InsightIDR

Compared 8% of the time

CrowdStrike Falcon vs Rapid7 InsightIDR

Compared 6% of the time

Splunk Enterprise Security vs Rapid7 InsightIDR

Compared 5% of the time

More Rapid7 InsightIDR Competitors

Product Reports

Buyer's Guide

Extended Detection and Response (XDR)

June 2025

Download Cybereason XDR product report

Buyer's Guide

Rapid7 InsightIDR

June 2025

Download Rapid7 InsightIDR product report

Also Known As

No data available

InsightIDR

Overview

Cybereason is the leader in endpoint protection, offering endpoint detection and response, next-generation antivirus, and managed monitoring services. Founded by elite intelligence professionals born and bred in offense-first hunting, Cybereason gives enterprises the upper hand over cyber adversaries.

Cybereason

Parsing hundreds of trivial alerts. Managing a mountain of data. Manually forwarding info from your endpoints. Forget that. InsightIDR instantly arms you with the insight you need to make better decisions across the incident detection and response lifecycle, faster.

Rapid7

Sample Customers

MOTOROLA MOBILITY

Liberty Wines, Pioneer Telephone, Visier

Buyer's Guide

Cybereason XDR vs. Rapid7 InsightIDR

June 2025

Free Report: Cybereason XDR vs. Rapid7 InsightIDR

Find out what your peers are saying about Cybereason XDR vs. Rapid7 InsightIDR and other solutions. Updated: June 2025.

DOWNLOAD NOW

859,129 professionals have used our research since 2012.

See our Cybereason XDR vs. Rapid7 InsightIDR report.

See our list of best Extended Detection and Response (XDR) vendors.

We monitor all Extended Detection and Response (XDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.