Palo Alto Networks Advanced Threat Prevention vs Rapid7 InsightIDR comparison

The compared Palo Alto Networks and Rapid7 solutions aren't in the same category. Palo Alto Networks is ranked #8 in ID , with an average rating of 6.3, and holds a 5.4% mindshare in the category. Rapid7 is ranked #14 in SIEM , with an average rating of 7.8, and holds a 2.1% mindshare. Additionally, 95% of Palo Alto Networks users are willing to recommend the solution, compared to 96% of Rapid7 users who would recommend it.

Palo Alto Networks Advanced...

Read 29 Palo Alto Networks Advanced Threat Prevention reviews

3,098 Views
2,447 Comparison Views

95% willing to recommend

Rapid7 InsightIDR

Read 32 Rapid7 InsightIDR reviews

6,954 Views
3,407 Comparison Views

96% willing to recommend

Palo Alto Networks Advanced...

Rapid7 InsightIDR

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between Palo Alto Networks Advanced Threat Prevention and Rapid7 InsightIDR based on real PeerSpot user reviews.

Find out what your peers are saying about Fortinet, Darktrace, Check Point Software Technologies and others in Intrusion Detection and Prevention Software (IDPS).

To learn more, read our detailed Intrusion Detection and Prevention Software (IDPS) Report (Updated: January 2026).

Buyer's Guide

Intrusion Detection and Prevention Software (IDPS)

January 2026

Download the complete report

Helped 881,928 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Palo Alto Networks Advanced...

Average Rating

8.4

Reviews Sentiment

6.6

Number of Reviews

Ranking in other categories

Intrusion Detection and Prevention Software (IDPS) (8th)

Rapid7 InsightIDR

Average Rating

8.4

Reviews Sentiment

7.0

Number of Reviews

Ranking in other categories

Security Information and Event Management (SIEM) (14th), User Entity Behavior Analytics (UEBA) (8th), Endpoint Detection and Response (EDR) (23rd), Threat Deception Platforms (4th), Extended Detection and Response (XDR) (18th)

Mindshare comparison

While both are Network Security Systems solutions, they serve different purposes. Palo Alto Networks Advanced Threat Prevention is designed for Intrusion Detection and Prevention Software (IDPS) and holds a mindshare of 5.4%, up 5.1% compared to last year.
Rapid7 InsightIDR, on the other hand, focuses on Security Information and Event Management (SIEM), holds 2.1% mindshare, down 2.6% since last year.

Intrusion Detection and Prevention Software (IDPS) Market Share Distribution
Product	Market Share (%)
Palo Alto Networks Advanced Threat Prevention	5.4%
Fortinet FortiGate	13.2%
Darktrace	11.5%
Other	69.9%

Intrusion Detection and Prevention Software (IDPS)

Security Information and Event Management (SIEM) Market Share Distribution
Product	Market Share (%)
Rapid7 InsightIDR	2.1%
Splunk Enterprise Security	7.1%
Wazuh	6.4%
Other	84.4%

Security Information and Event Management (SIEM)

Featured Reviews

Partha Dash

Global Network Tech Lead at a tech vendor with 10,001+ employees

Advanced protection enables us to confidently secure against evolving threats

Palo Alto Networks can improve Advanced Threat Prevention by catering to the growing adoption of AI and agentic tooling. The Threat Protection modules should have the necessary intelligence to protect against those types of threats, as AI will be there to do a human job; this is an evolving area. From an Advanced Threat Protection perspective, the technology associated with Palo Alto Networks, such as their sandboxing environment, is quite good. However, Palo Alto needs to focus on how to bring that technology to end users and how easy it is to use, especially in a hybrid environment where users work from various locations. While Palo Alto excels in certain setups, they need to improve the user experience in distributed working conditions.

Read full review

SohailHyder

Head Of Cyber Security at Super Secure

Has supported compliance needs for mid-sized organizations but lacks customization and advanced integration

If we pitch Rapid7 InsightIDR against solutions such as SIEMs from Splunk or LogRhythm, it is not as customizable as a SIEM solution is. This is where it can improve if we keep in front the feature sets of a complete SIEM solution. Most common in the market is QRadar, but it is depleting now. It has been taken over by some other products such as Splunk and LogRhythm. If we compare these things with Rapid7 InsightIDR, then there are definitely some gaps that need to be filled. Data retention is also one concern because Rapid7 InsightIDR is cloud-based and operates on a subscription model. Whatever data you want to retain, it has to be paid for separately or it has a cost. Other solutions that are on-premises can have their own infrastructure or they provide some data retention for a month or in some capacity-wise, they provide that solution to them which makes them more attractive.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"With the IP address flag, I was able to see that I was being hacked. The moment there was an interaction between somebody on my network and that IP, the solution was able to flag it, and we were able to protect ourselves."

"The most valuable feature is its use of machine learning to detect potentially unknown threats."

"One of the most valuable features is the anti-malware protection."

"Everything has been okay with the solution. We are using all of the features."

"The application control and vulnerability protection are the most valuable features."

"The most valuable features are that it's user-friendly, has interesting features, URL filtering, and threat prevention."

"It's very easy to use and configure. What is nice about Palo Alto is that even if you don't understand how to use it, you can just click on upload and upload everything that needs to be blocked."

"You can scale the product."

More Palo Alto Networks Advanced Threat Prevention pros

"The technical support is a solid 10 out of 10 as they take the time to answer any questions or problems which may arise in a reasonable time frame."

"The incident case management is the most valuable feature. Even though there's always something I find I would like to add to that feature, the ability to quickly sort through all the logs, network and endpoint data, etc., and add it to an incident case as part of the investigation, is nice. Having it automatically timeline that additional data into the original incident timeline, and correlate it to other notable events and activities on the network, results in a huge improvement in our overall confidence that we've quickly traced down the right source of an issue."

"Scalability-wise, I rate the solution a ten out of ten. As a cloud tool, the product is highly scalable."

"I rate Rapid7 nine out of 10 for affordability"

"The biggest reason why we chose Rapid7 was to gain value in a really quick time. Its deployment doesn't take months. It just takes a few days."

"The UI is very good."

"During simulations or demonstrations, the tool generates alerts, providing details such as the specific application, its origin, and potential threats. For instance, it can identify if an application belongs to a known ransomware group. The system rates the threat, offering a clear detection ratio, such as 97 out of 100. It not only identifies threats but also illustrates the associated behaviors, helping us understand the potential risk to a particular endpoint."

"User behavioral analytics allows us to pinpoint abnormal or suspicious behavior among millions of events every day."

More Rapid7 InsightIDR pros

Cons

"The organization mail security solutions could be improved. There is no mail security solution available."

"Palo Alto Networks Threat Prevention could improve the commercial offing. Other solutions, such as Fortinet provide better commercial features."

"The solution could benefit from improved AI analytics to predict potential attacks before they occur, similar to NDR systems."

"In Africa, the technical support is probably not as good as in Europe and the USA because it's a specific premium support, partner-enabled premium support and all of that. But it's really good, I don't really have any complaints, it's fairly good. I'll give them 80%."

"In terms of what needs improvement, the only thing I don't like is the support."

"I think they can use some improvement on FID."

"The solution needs to improve its local technical support services. There is no premium support offered in our market."

"While Palo Alto excels in certain setups, they need to improve the user experience in distributed working conditions."

More Palo Alto Networks Advanced Threat Prevention cons

"InsightIDR is only available in a cloud version. Some of our customers prefer an on-prem solution because they want to manage the security within their environment."

"Inability to get access to compliance reports within the solution."

"The APIs can be further improved in Rapid7."

"Customised alert recipients need to be added to allow better first-line action and quicker response. Configurable honeypots would be a welcome addition."

"One of the things that could be better is digital forensics. It is there, but it can be better. They could provide more on the endpoint detection level."

"Needs a better ability to customize the check within the console."

"Currently, it lacks the functionalities provided by Rapid7's User Behavior Analytics (UBA)."

"The integration capabilities of the solution have certain shortcomings where improvements are required."

More Rapid7 InsightIDR cons

Pricing and Cost Advice

"The pricing has improved with the newer generation of their Firewalls, but the price could always be lower."

"It's not too expensive."

"If you want to have all of the good features then you have to pay extra for licensing."

"The pricing and the licensing are pretty competitive at this stage. As a reseller, I would like to see the price come down a little bit so I can compete better against other firewalls because we do that all the time."

"It is an expensive solution and I would like to see a drop in price."

"There is an initial, expensive investment but the return is good."

"The product’s pricing is expensive for small companies."

"The cost involves the price of the hardware, which is expensive. However, most of the Palo Alto solutions are expensive."

More Palo Alto Networks Advanced Threat Prevention pricing and cost advice

"The pricing is good, and it is not very expensive."

"Accurately predict your licensing counts as this is a subscription based product."

"Licensing is straightforward. If, for some reason, you don’t meet the minimum licensing requirements, there is a third-party managed service that can help."

"The pricing of the solution depends on the user. But there is a yearly licensing cost."

"The pricing and licensing are competitive."

"Rapid7 InsightIDR's pricing is reasonable but we have challenges with the Minimum Order Quantity. It is not reasonable for customers who have less than one hundred devices. If they can reduce Minimum Order Quantity, it is good. You have to pay around 5000-6000 dollars per year for the product. The pricing includes maintenance and support costs."

"Rapid7 InsightIDR is priced very well and is cost-effective."

"I rate Rapid7 InsightIDR's price a four on a scale of one to ten, where one is cheap, and ten is expensive."

More Rapid7 InsightIDR pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Intrusion Detection and Prevention Software (IDPS) solutions are best for your needs.

See recommendations

881,928 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

Financial Services Firm

Manufacturing Company

Performing Arts

Computer Software Company

11%

Financial Services Firm

Manufacturing Company

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	9
Midsize Enterprise	4
Large Enterprise	14

By reviewers
Company Size	Count
Small Business	20
Midsize Enterprise	5
Large Enterprise	6

Questions from the Community

Which is the best DDoS protection solution for a big ISP for monitoring and mitigating?

Arbor would be the best bid, apart from Arbor, Palo Alto and Fortinet have good solutions. As this is an ISP, I would prefer Arbor.

See all answers

What is your experience regarding pricing and costs for Palo Alto Networks Threat Prevention?

Palo Alto Networks Advanced Threat Prevention requires an add-on license and is considered expensive compared to competitors like Cisco AMP and FortiGate ( /products/fortinet-fortigate-reviews ) fi...

See all answers

What needs improvement with Palo Alto Networks Threat Prevention?

See all answers

What SOC product do you recommend?

For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...

See all answers

What do you like most about Rapid7 InsightIDR?

During simulations or demonstrations, the tool generates alerts, providing details such as the specific application, its origin, and potential threats. For instance, it can identify if an applicati...

See all answers

What is your experience regarding pricing and costs for Rapid7 InsightIDR?

The product pricing is very cheap.

See all answers

Comparisons

Darktrace vs Palo Alto Networks Advanced Threat Prevention

Compared 10% of the time

Forcepoint Next Generation Firewall vs Palo Alto Networks Advanced Threat Prevention

Compared 8% of the time

Fortinet FortiGate vs Palo Alto Networks Advanced Threat Prevention

Compared 8% of the time

Vectra AI vs Palo Alto Networks Advanced Threat Prevention

Compared 7% of the time

Cisco Sourcefire SNORT vs Palo Alto Networks Advanced Threat Prevention

Compared 6% of the time

More Palo Alto Networks Advanced Threat Prevention Competitors

Rapid7 InsightVM vs Rapid7 InsightIDR

Compared 5% of the time

Microsoft Sentinel vs Rapid7 InsightIDR

Compared 5% of the time

Splunk Enterprise Security vs Rapid7 InsightIDR

Compared 5% of the time

CrowdStrike Falcon vs Rapid7 InsightIDR

Compared 4% of the time

Darktrace vs Rapid7 InsightIDR

Compared 3% of the time

More Rapid7 InsightIDR Competitors

Product Reports

Buyer's Guide

Palo Alto Networks Advanced Threat Prevention

January 2026

Palo Alto Networks Advanced Threat Prevention report

Download Palo Alto Networks Advanced Threat Prevention product report

Buyer's Guide

Rapid7 InsightIDR

January 2026

Download Rapid7 InsightIDR product report

Also Known As

No data available

InsightIDR

Overview

Palo Alto Networks Advanced Threat Prevention is a cloud-based security service that combines cutting-edge technologies, including machine learning, artificial intelligence, and expert human monitoring, to effectively thwart advanced threats like malware, zero-day attacks, and command-and-control threats. It offers inline protection, scrutinizing all network traffic irrespective of port, protocol, or encryption. An integral component of Palo Alto Networks' security platform, it enjoys widespread adoption across diverse organizations. With its robust security capabilities, it's an ideal choice for entities of all sizes, particularly those in high-risk sectors such as finance, healthcare, and government agencies, seeking to safeguard their networks from a broad spectrum of advanced threats.

Palo Alto Networks

Parsing hundreds of trivial alerts. Managing a mountain of data. Manually forwarding info from your endpoints. Forget that. InsightIDR instantly arms you with the insight you need to make better decisions across the incident detection and response lifecycle, faster.

Rapid7

Sample Customers

University of Arkansas, JBG SMITH, SkiStar AB, TRI-AD, Temple University, Telkom Indonesia

Liberty Wines, Pioneer Telephone, Visier

Buyer's Guide

Intrusion Detection and Prevention Software (IDPS)

January 2026

Download Free Report

Find out what your peers are saying about Fortinet, Darktrace, Check Point Software Technologies and others in Intrusion Detection and Prevention Software (IDPS). Updated: January 2026.

DOWNLOAD NOW

881,928 professionals have used our research since 2012.

We monitor all Intrusion Detection and Prevention Software (IDPS) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.