We performed a comparison between Darktrace and Rapid7 InsightIDR based on real PeerSpot user reviews.
Find out what your peers are saying about Microsoft, Cisco, TitanHQ and others in Email Security."Safe attachments, safe links, policies, and the ability to protect from zero-day threats are the most valuable features."
"The most valuable feature is protection against malicious links, fishing, and impersonation. You can train people to be aware of these threats, but they're not always careful. When they're using their phones between meetings, they click on a link, and it's game over."
"Microsoft Defender for Office 365's most valuable feature is its performance."
"Threat Explorer is an invaluable tool for me, and it plays a crucial role in helping me discern the origins of various email campaigns, pinpointing where they emanate from, and identifying the individuals within our organization who are affected."
"The most valuable feature is the integration. It's a single console, so we don't have to switch around between multiple products. Another valuable feature is the ease of operations and maintenance."
"The initial setup was easy."
"The product is not resource-intensive."
"The email protection is excellent, especially in terms of anti-phishing policies."
"A simple, powerful AI solution that just does all the work for you when you turn it on."
"The NDR is good in their solution and they have NTG for email."
"The most valuable feature is the alerts. The alerts are meaningful. The event rolls up into meaningful and actionable alerts rather than just being noise."
"The most valuable features of Darktrace are the tracing of unusual external emails and monitoring the local network."
"Darktrace is very useful for us because it has a large number of models for detecting threats."
"The models, triggers, and alerts are customizable."
"The solution can scale."
"I have found the automation and AI features to be valuable. If someone were to come in to the office at midnight and log in, Darktrace would flag it."
"The product works well. Stability-wise, I rate the solution a ten out of ten."
"The solution is very scalable in terms of the licensing model."
"Very intuitive and easy to set up."
"The solution is very stable and works very well for what I need it to do."
"I like that it's a cloud-based solution."
"Simple configuration and automatically syncs to the cloud platform."
"Great coverage of all systems within our network from endpoint to firewall."
"InsightIDR has allowed us to find potential security issues that we did not know existed, and get remediation quickly."
"We are always looking for others tools to increase automation on tasks. There can be better integration with other solutions, such as PowerPoint and email."
"Microsoft Defender for Office 365 should improve the troubleshooting tools. It's unclear whether the device is blocked at the firewall level or at the device itself. The granularity needed for troubleshooting is currently lacking. From my perspective, Microsoft should address this issue to benefit many users who likely share the same sentiment."
"Microsoft should provide more documentation for users so they can self-educate. I would like to see more documentation for advanced security features."
"One area for improvement is support, in terms of being able to reach them and, especially, technical support for configuration."
"Several simulation options are available within 365, and the phishing simulation could be better."
"The visibility for the weaknesses in the system and unauthorized access can be improved."
"There needs to be an improvement in integrating the product to work across multiple operating systems, and to have better support for non-Microsoft file types."
"Microsoft Defender for Office 365 should be more proactive."
"The dashboard and reporting for this solution could be improved as it is currently complex. The GUI for this solution could also be improved."
"I did not use the AI features because they should make it more user-friendly which would be a benefit. Additionally, the solution could integrate with more SIEM or SOAR tools."
"One thing I would like is for Darktrace to flag SMB traffic more accurately. Currently, it only flags that SMB traffic has occurred, but it doesn't specify which file was being transferred. This makes it difficult to investigate incidents involving SMB traffic, as we don't have concrete evidence of what was being sent."
"The solution can improve the reporting."
"Darktrace requires numerous configurations. It would be beneficial if the configuration could be made simpler."
"It would be helpful if they could recognize incidents and simplify the customer's challenge to identify what is happening."
"Its threat analyzer could be better. It should also have agents. They should improve this product by installing agents for the machine to get more visibility. Currently, they are monitoring only the network. They should also monitor the agents from inside. It should also have a better pricing plan because it is an expensive product."
"There aren't so many third-party vendor platforms natively integrated with the platform."
"The product allows us to make only 30 custom rules."
"Tenable Nessus is easier to deal with. It's more efficient and accurate. InsightIDR is heavier than Tenable in terms of performance and scanning. Rapid7 would be much easier to use if it had a network connector like Tenable. Tenable's connector allows continuous monitoring over the B caps."
"The solution's XDR agents cannot compete with the XDR solutions out there yet."
"The integration capabilities of the solution have certain shortcomings where improvements are required."
"The ability to tune the collector for custom logs would greatly help."
"InsightIDR is only available in a cloud version. Some of our customers prefer an on-prem solution because they want to manage the security within their environment."
"The solution needs improvement in threat intelligence. Increasing the depth of intelligence to help users understand more about threats is a possibility. My suggestion is to expand access to other websites or resources."
"Lacks a mobile application."
More Microsoft Defender for Office 365 Pricing and Cost Advice →
Darktrace is ranked 13th in Email Security with 65 reviews while Rapid7 InsightIDR is ranked 10th in Security Information and Event Management (SIEM) with 29 reviews. Darktrace is rated 8.2, while Rapid7 InsightIDR is rated 8.4. The top reviewer of Darktrace writes "Great autonomous support, offers an easy setup, and has responsive support". On the other hand, the top reviewer of Rapid7 InsightIDR writes "An affordable product that is easy to use and has many advanced features and default templates". Darktrace is most compared with CrowdStrike Falcon, Vectra AI, SentinelOne Singularity Complete, Cortex XDR by Palo Alto Networks and Trend Micro Deep Discovery, whereas Rapid7 InsightIDR is most compared with Microsoft Sentinel, Splunk Enterprise Security, Rapid7 InsightVM, Microsoft Defender for Identity and IBM Security QRadar.
We monitor all Email Security reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.