No more typing reviews! Try our Samantha, our new voice AI agent.

Fortra's Tripwire Enterprise vs Rapid7 InsightIDR comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Fortra's Tripwire Enterprise
Average Rating
8.0
Reviews Sentiment
7.2
Number of Reviews
8
Ranking in other categories
Intrusion Detection and Prevention Software (IDPS) (19th)
Rapid7 InsightIDR
Average Rating
8.4
Reviews Sentiment
7.1
Number of Reviews
33
Ranking in other categories
Security Information and Event Management (SIEM) (25th), User Entity Behavior Analytics (UEBA) (11th), Endpoint Detection and Response (EDR) (47th), Threat Deception Platforms (6th), Extended Detection and Response (XDR) (28th)
 

Mindshare comparison

While both are Network Security Systems solutions, they serve different purposes. Fortra's Tripwire Enterprise is designed for Intrusion Detection and Prevention Software (IDPS) and holds a mindshare of 2.2%, up 1.2% compared to last year.
Rapid7 InsightIDR, on the other hand, focuses on Security Information and Event Management (SIEM), holds 2.2% mindshare, down 2.6% since last year.
Intrusion Detection and Prevention Software (IDPS) Mindshare Distribution
ProductMindshare (%)
Fortra's Tripwire Enterprise2.2%
Darktrace10.2%
Fortinet FortiGate9.2%
Other78.4%
Intrusion Detection and Prevention Software (IDPS)
Security Information and Event Management (SIEM) Mindshare Distribution
ProductMindshare (%)
Rapid7 InsightIDR2.2%
Splunk Enterprise Security7.3%
IBM Security QRadar5.3%
Other85.2%
Security Information and Event Management (SIEM)
 

Featured Reviews

reviewer2093205 - PeerSpot reviewer
Senior Cybersecurity Analyst at a energy/utilities company with 1,001-5,000 employees
It has excellent scalability and allows you to execute custom COCR rules, letting you fine-tune agent monitoring
I'm using Tripwire Enterprise version 9.0. In my company, thirty to forty people use Tripwire Enterprise, mainly different types of engineers, governance, risk, compliance, and cybersecurity personnel. I advise people planning to use Tripwire Enterprise to take the training because the solution has a fairly complex interface. You can do a lot of work with it, but it isn't very easy. Tripwire Enterprise is a sophisticated tool. I rate the tool an eight on a scale of one to ten because it does an excellent job of handling the unique challenges of maintaining NERC CIP compliance and monitoring industrial controls.
Prajwal Chougale - PeerSpot reviewer
SOC Analyst L2 at a tech services company with 51-200 employees
Centralized threat hunting has improved alert accuracy and simplifies incident investigations
I would say there are two areas for improvement: the reporting dashboard that provides insights or reports weekly or monthly lacks detailed information about how logs are being ingested. While the details are there, they could be more concise and easier to understand for any level of authority. The second area is alert tuning; compared to Microsoft Sentinel, Rapid7 InsightIDR provides fewer alerts with more static alert functionality and lacks dynamic alerting exposures. There could be improvements to learn from past alert activities for more dynamic alert configurations. These two areas are the main areas for improvement; everything else is good.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"I would recommend to anybody to try out Tripwire Enterprise."
"The most valuable feature is the integrity, because if the file configuration has been modified this solution calculates a hash code of the file and, if someone has changed the file, the solution will recalculate the hash and the admin receives a notice that the file has been modified, by sending an email or an alert to the administrator that someone has modified, added, or deleted a line, not just in files but also in tables metadata and network device configurations."
"What's most valuable in Tripwire Enterprise is the ability to execute custom COCR rules that lets me fine-tune how I monitor Linux and Windows agents."
"We use Tripwire Enterprise as a tool to test the vulnerability of a network. That is the most valuable feature of the product for us."
"File monitoring is the most valuable feature of the solution."
"The product supports different platforms."
"The most valuable feature is integrity management. I had some discussions with service providers, and they also agreed."
"Its reporting features are great. It gives you an in-depth report. Its customization is also great, and it is working fine."
"Enables the use of honey pots, honey users, and honey files to monitor for suspicious patterns."
"The platform offers unlimited storage and agent-based solutions."
"The solution's initial setup is easy."
"The biggest reason why we chose Rapid7 was to gain value in a really quick time. Its deployment doesn't take months. It just takes a few days."
"I am able to run automated actions based on the output of reports, leaving me extra time to focus on more pressing matters."
"Rapid7 InsightIDR integrates well with other solutions. It's also easy to configure because Rapid7 InsightIDR has a lot of instructions posted on their website that customers can follow if they need to get the source log."
"The most valuable features have to do with ease-of-use, as it is easy to check the events, investigate suspicious activities, and do forensic analysis, and the web interface is great — very useful and user-friendly."
"Rapid7 is easy to use and deploy. It is a simple solution and has easy data pulling."
 

Cons

"A lot of network devices need a custom integration."
"The Windows online integration license needs to be improved."
"Cloud monitoring could be better. It would also be better if the company followed a pay-as-you-use model."
"The main way that it can be improved is through better reporting."
"The deployment with certain systems can be difficult and it needs to be simplified."
"The stability of Tripwire Enterprise has room for improvement, but it's about 75% what it should be already."
"The initial setup is complex."
"It needs more local support from the OEM side. It would be great if this can be improved."
"Currently, it lacks the functionalities provided by Rapid7's User Behavior Analytics (UBA)."
"Needs a better ability to customize the check within the console."
"Cloud risk assessment is one area where I think they need a lot of improvement."
"Sometimes, it is hard to get the right queries to use. Currently, the tool lacks a pre-made set of queries."
"I'd like to see a mobile application included and some feature related to the generality of segregation for internal users that access the application."
"I'd like to be able to get the compliance report within the solution which is currently not possible."
"Customised alert recipients need to be added to allow better first-line action and quicker response. Configurable honeypots would be a welcome addition."
"It would be useful to import threat intelligence in YARA format along with known incorrect email addresses.​"
 

Pricing and Cost Advice

"Cloud monitoring could be better. It could also be cheaper. It would be better if the company followed a pay-as-you-use model."
"The licensing depends on the equipment, how many devices and the types of devices."
"Tripwire is more expensive than Netwrix."
"The pricing is good, and it is not very expensive."
"The pricing and licensing are competitive."
"Rapid7 InsightIDR's pricing is reasonable but we have challenges with the Minimum Order Quantity. It is not reasonable for customers who have less than one hundred devices. If they can reduce Minimum Order Quantity, it is good. You have to pay around 5000-6000 dollars per year for the product. The pricing includes maintenance and support costs."
"The pricing of the solution depends on the user. But there is a yearly licensing cost."
"It is a reasonably priced solution."
"It is on a yearly basis. For our own company, for about 250 users, it was 16,000 euros a year."
"​Accurately predict your licensing counts as this is a subscription based product.​"
"Rapid7 InsightIDR charges us based on the endpoints we connect to."
report
Use our free recommendation engine to learn which Intrusion Detection and Prevention Software (IDPS) solutions are best for your needs.
904,928 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Construction Company
16%
Manufacturing Company
11%
Financial Services Firm
9%
Computer Software Company
7%
Manufacturing Company
9%
Financial Services Firm
9%
Computer Software Company
8%
Comms Service Provider
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business5
Large Enterprise3
By reviewers
Company SizeCount
Small Business22
Midsize Enterprise5
Large Enterprise6
 

Questions from the Community

Ask a question
Earn 20 points
What SOC product do you recommend?
For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...
What needs improvement with Rapid7 InsightIDR?
If we pitch Rapid7 InsightIDR against solutions such as SIEMs from Splunk or LogRhythm, it is not as customizable as a SIEM solution is. This is where it can improve if we keep in front the feature...
What is your primary use case for Rapid7 InsightIDR?
I am working with Rapid7 InsightOps and Rapid7 InsightIDR because the requirement is as such from the customer side, particularly the banks. Whatever the requirement is, these are the products that...
 

Also Known As

No data available
InsightIDR
 

Overview

 

Sample Customers

1. Aetna 2. Adobe 3. ADP 4. Airbus 5. Amazon 6. American Express 7. Aon 8. ATT 9. Bank of America 10. Barclays 11. Baxter International 12. Bechtel 13. Boeing 14. Cisco Systems 15. CocaCola 16. Comcast 17. Dell 18. ETRADE 19. ExxonMobil 20. Ford Motor Company 21. General Electric 22. General Motors 23. Google 24. JPMorgan Chase 25. Kraft Foods 26. Lockheed Martin 27. McDonald's 28. Merck 29. Microsoft 30. Morgan Stanley 31. Nike 32. Oracle
Liberty Wines, Pioneer Telephone, Visier
Find out what your peers are saying about Fortinet, Darktrace, Check Point Software Technologies and others in Intrusion Detection and Prevention Software (IDPS). Updated: July 2026.
904,928 professionals have used our research since 2012.