No more typing reviews! Try our Samantha, our new voice AI agent.

Rapid7 InsightAppSec vs Rapid7 InsightCloudSec comparison

Rapid7 InsightAppSec and Rapid7 InsightCloudSec are both solutions in the AI Observability category. Rapid7 InsightAppSec is ranked #15 with an average rating of 7.7, while Rapid7 InsightCloudSec is ranked #7 with an average rating of 7.8. Rapid7 InsightAppSec holds a 0.6% mindshare in AO, compared to Rapid7 InsightCloudSec’s 1.2% mindshare. Additionally, 94% of Rapid7 InsightAppSec users are willing to recommend the solution, compared to 87% of Rapid7 InsightCloudSec users who would recommend it.
Rapid7 InsightAppSec
Read 20 Rapid7 InsightAppSec reviews
  • 2,641 Views
  • 423 Comparison Views
94% willing to recommend
Rapid7 InsightCloudSec
Read 13 Rapid7 InsightCloudSec reviews
  • 3,167 Views
  • 633 Comparison Views
87% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between Rapid7 InsightAppSec and Rapid7 InsightCloudSec based on real PeerSpot user reviews.

Find out in this report how the two AI Observability solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Rapid7 InsightAppSec vs. Rapid7 InsightCloudSec Report (Updated: April 2026).
Buyer's Guide
Rapid7 InsightAppSec vs. Rapid7 InsightCloudSec
April 2026
Download the complete report
Helped 894,738 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Rapid7 InsightAppSec
Ranking in AI Observability
15th
Average Rating
8.2
Reviews Sentiment
6.7
Number of Reviews
20
Ranking in other categories
Dynamic Application Security Testing (DAST) (5th)
Rapid7 InsightCloudSec
Ranking in AI Observability
7th
Average Rating
7.8
Reviews Sentiment
6.3
Number of Reviews
13
Ranking in other categories
Cloud Management (12th), Cloud Security Posture Management (CSPM) (13th), Cloud-Native Application Protection Platforms (CNAPP) (10th)
 

Mindshare comparison

As of May 2026, in the AI Observability category, the mindshare of Rapid7 InsightAppSec is 0.6%. The mindshare of Rapid7 InsightCloudSec is 1.2%, up from 0.3% compared to the previous year. It is calculated based on PeerSpot user engagement data.
AI Observability Mindshare Distribution
ProductMindshare (%)
Rapid7 InsightCloudSec1.2%
Rapid7 InsightAppSec0.6%
Other98.2%
AI Observability
 

Featured Reviews

Shritam Bhowmick - PeerSpot reviewer
Shritam Bhowmick
Vulnerability Management Lead at garrett
Provides reliable applications security but needs better integration options
There are areas for improvements regarding false positives. Integration capabilities are lacking, as options for integrations with other tools such as SNOW, Jira, or other integration tools are not sufficient in Rapid7 InsightAppSec. The user interface sometimes has glitches, which may prevent appropriate results during navigation, and even when we get appropriate results, it can be impossible to export them to CSV records or download files. Regarding scalability, Rapid7 InsightAppSec is not a scalable solution for our industry due to limited integration capabilities. Rapid7 relies on another tool called InsightConnect, which requires additional investment, detracting from scalability. Another area that needs improvement is the integration of AI capabilities into the platform. Both Rapid7 InsightAppSec and InsightVM need to advance in that area. In terms of behavioral and pattern recognition, identifying complex attacks such as SQL, blind SQL, JSON, and LDAP injections often results in 94% false positives. This necessitates improvement in their behavioral-based analytics feature.
Read full review
Arun Babu - PeerSpot reviewer
Arun Babu
SOC analyst at a media company with 1,001-5,000 employees
Daily endpoint monitoring has improved investigations and saved time but detection rules still need tuning
It is important to note that Rapid7 InsightCloudSec's features are not 100% precise, but I find about 70% of the time it is satisfactory. I would like to suggest that you improve it to be more precise, ideally making it 100% if possible. Some cases in Rapid7 InsightCloudSec indicate that the log is not enough, as they mostly just generate alerts, and the synchronization between data connectors is often problematic, particularly in terms of not being in sync always, especially between the AD and Rapid7 alerts, which generates numerous false positives. Additionally, the traditional rules should be updated, as this is a main point worth mentioning since we spend a lot of time fine-tuning these traditional rules. I suggest improving the legacy detection rules. If there are any authentication cases, such as impossible travel activity where a user has their SharePoint hosted in a different location, Rapid7 can often trigger alerts, creating confusion as we cannot fine-tune it properly. Another issue is with honeypot access. We sometimes lack necessary logs because Defender's advanced threat protection scanning gets detected as honeypot activity by Rapid7, leading to annoying and noisy alerts that we need to constantly close. If you can improve the traditional detection rules to reflect current detection rules, it would make it significantly easier for us to manage, as we constantly need to check legacy rules to update or possibly turn them off. Updating the legacy rules should be a priority.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Rapid7 InsightAppSec helps us in both regulatory compliance and in strengthening our security posture."
"The templates feature is very easy; you just choose the kind of attack you want on your web application, and you run it against that template and receive a report, which is great."
"You have various attack modules, and you also have the Attack Replay feature for the attack sequence. You can reproduce an attack and see it. That is a very good feature I noticed in this solution. It helps developers as well."
"If a company needs an effective product for web scanning, I can recommend this product."
"Relatively speaking, InsightAppSec is good compared to Insight VM."
"We have seen measurable decrease in the mean time to respond to threats by 20 percent."
"The product’s most valuable feature is UI. It is easy to manage and find vulnerabilities in the application."
"Relatively speaking, InsightAppSec is good compared to Insight VM."
More Rapid7 InsightAppSec pros
"I can confirm money and time savings with Rapid7 InsightCloudSec, as we can scan the entire IP range simultaneously instead of manually checking each asset for vulnerabilities, reducing the need for technicians to move around the organization and thus saving significant time."
"ICSE is cheaper compared to other tools and has a pleasant user experience with good support."
"Rapid7 InsightCloudSec has positively impacted my organization because we are using Microsoft Defender for endpoint protection alongside Rapid7."
"Since implementing Rapid7 InsightCloudSec, manual cloud security checks have been reduced by around forty to fifty percent, and mean time to resolve misconfigurations has dropped from several hours to under thirty minutes on average, significantly improving efficiency and client confidence."
"I find the security frameworks and security tools valuable. I think they're good in the infrastructure of the code security. They are also good at threat protection."
"The best features Rapid7 InsightCloudSec offers include more automation remediation, compliance reporting for auditing, improvement on multi-cloud governance, and cost visibility, which really stand out to me."
"The tool provides centralized visibility through dashboards and alerts, allowing customers to receive reports on cloud vulnerabilities and security posture. Rapid7 InsightCloudSec provides customers with a robust understanding of cloud security."
"ICSE is cheaper compared to other tools and has a pleasant user experience with good support."
More Rapid7 InsightCloudSec pros
 

Cons

"The interface should be a little bit easier to manage. Sometimes, the logic that they use is kind of strange."
"The product’s pricing could be flexible."
"The only concern I have with Rapid7 is that it does not provide enough information about vulnerabilities within AppSec."
"There is room for improvement in the response time of customer service and support levels."
"The reporting is definitely an aspect of the solution that's in need of some work."
"Rapid7 InsightAppSec needs improvement in detecting phishing pages."
"They should add more features. I would like to see them do a little more on static analysis and also interactivity analysis. Currently, it does very basic static analysis. It could do a little more static analysis, which is something that would help. A lot more interactivity analysis should also be there. It should basically look at security during interactivity."
"I required a solution to manage on-premises, but I was not as satisfied as expected."
More Rapid7 InsightAppSec cons
"A couple of modules are missing when compared to other providers, specifically related to some IAM, and the login piece needs improvement."
"For a first-time user who starts using Rapid7 InsightCloudSec, it is somewhat complicated to navigate through the UI and search for logs or vulnerabilities, so this is one aspect that could be improved."
"The tool needs to improve its documentation."
"I would say that because Rapid7 InsightCloudSec does not have automatic patching capabilities, it provides recommendations, but it does not execute anything from within Rapid7 InsightCloudSec."
"The login piece needs improvement."
"They didn't have any documentation on how to patch it."
"Rapid7 InsightCloudSec needs to provide more granular search capabilities, such as the ability to search back the last three months."
"The platform could be improved with more customizable dashboards and reporting."
More Rapid7 InsightCloudSec cons
 

Pricing and Cost Advice

"They offer a good price, but I don't remember its cost. It is fair as compared to the competition. We have opted for project-based licensing, not user-based. We can add any number of users. That doesn't matter. It is worth the money."
"Rapid7 InsightAppSec is cheap."
"I'm not sure how much it costs exactly, but I know it's expensive."
"The price of this product is very cheap."
"I rate Rapid7 InsightAppSec’s pricing an eight out of ten."
"Its price is competitive. It is not expensive."
"We're doing an annual subscription. There are additional expenses, but not within the confines of this platform."
"Companies generally buy this tool because the pricing is not that high."
report
See which vendors are best for you
Use our free recommendation engine to learn which AI Observability solutions are best for your needs.
See recommendations
894,738 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Manufacturing Company
13%
Financial Services Firm
11%
Computer Software Company
10%
Government
9%
Financial Services Firm
10%
Insurance Company
10%
Comms Service Provider
9%
Manufacturing Company
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business12
Midsize Enterprise2
Large Enterprise5
By reviewers
Company SizeCount
Small Business7
Midsize Enterprise4
Large Enterprise8
 

Questions from the Community

What needs improvement with Rapid7 InsightAppSec?
Customers sometimes experience issues with performance. One thing that I recall is that most customers often want to have reporting as per their customized dashboard. This needs to be improved beca...
See all answers
What is your primary use case for Rapid7 InsightAppSec?
I usually recommend this solution for financial institutions. Banks and financial institutions need this solution mostly because they have to follow stringent compliance advisory requirements, so t...
See all answers
What advice do you have for others considering Rapid7 InsightAppSec?
I have not heard any complaints. I do not have any recommendations because customers were initially worried about the number of scans they used to perform, and now it has been enhanced or it will s...
See all answers
What is your experience regarding pricing and costs for Rapid7 InsightCloudSec?
The pricing, setup cost, and licensing for Rapid7 InsightCloudSec are reasonable, and since our organization is growing, I have observed that the more numbers you have, the less costly the product ...
See all answers
What needs improvement with Rapid7 InsightCloudSec?
I would say that because Rapid7 InsightCloudSec does not have automatic patching capabilities, it provides recommendations, but it does not execute anything from within Rapid7 InsightCloudSec. It h...
See all answers
What is your primary use case for Rapid7 InsightCloudSec?
In my role, my main use case for Rapid7 InsightCloudSec is for vulnerability management, where I scan my machines to see zero-day vulnerabilities and receive remediation tactics recommended by Rapi...
See all answers
 

Comparisons

Invicti vs Rapid7 InsightAppSec Logo
Invicti vs Rapid7 InsightAppSec
Compared 13% of the time
PortSwigger Burp Suite Enterprise Edition vs Rapid7 InsightAppSec Logo
PortSwigger Burp Suite Enterprise Edition vs Rapid7 InsightAppSec
Compared 11% of the time
AppCheck vs Rapid7 InsightAppSec Logo
AppCheck vs Rapid7 InsightAppSec
Compared 10% of the time
Veracode vs Rapid7 InsightAppSec Logo
Veracode vs Rapid7 InsightAppSec
Compared 10% of the time
OpenText Dynamic Application Security Testing vs Rapid7 InsightAppSec Logo
OpenText Dynamic Application Security Testing vs Rapid7 InsightAppSec
Compared 7% of the time
More Rapid7 InsightAppSec Competitors
Microsoft Defender for Cloud vs Rapid7 InsightCloudSec Logo
Microsoft Defender for Cloud vs Rapid7 InsightCloudSec
Compared 10% of the time
Wiz vs Rapid7 InsightCloudSec Logo
Wiz vs Rapid7 InsightCloudSec
Compared 9% of the time
CrowdStrike Falcon Cloud Security vs Rapid7 InsightCloudSec Logo
CrowdStrike Falcon Cloud Security vs Rapid7 InsightCloudSec
Compared 7% of the time
CloudCheckr vs Rapid7 InsightCloudSec Logo
CloudCheckr vs Rapid7 InsightCloudSec
Compared 5% of the time
Snyk vs Rapid7 InsightCloudSec Logo
Snyk vs Rapid7 InsightCloudSec
Compared 5% of the time
More Rapid7 InsightCloudSec Competitors
 

Product Reports

Buyer's Guide
Rapid7 InsightAppSec
April 2026
Rapid7 InsightAppSec reportDownload Rapid7 InsightAppSec product report
Buyer's Guide
Rapid7 InsightCloudSec
April 2026
Rapid7 InsightCloudSec reportDownload Rapid7 InsightCloudSec product report
 

Also Known As

InsightAppSec
DivvyCloud
 

Overview

Rapid7 InsightAppSec is a cloud-based security tool offering robust web scanning capabilities with a user-friendly interface and seamless integration. It enhances dynamic application security testing through customizable modules, providing comprehensive reports and remediation guidance.

InsightAppSec delivers dynamic application security testing with features like Attack Replay and a centralized dashboard for vulnerability insights. It supports flexible deployment options and simplifies scheduling frequent scans. The tool's intuitive graphical interface and extensive scanning coverage make it valuable for identifying vulnerabilities in web applications, APIs, and e-commerce sites, ensuring compliance. However, improvements are needed in detection accuracy, reporting options, and integrations with external tools like WAF and ticketing systems. There is a need for better scan management, support for mobile applications, customized reporting options, pricing flexibility, improved support, and AI integration.

What are the key features of InsightAppSec?
  • Seamless Integration: Easily integrates within SDLC for automated scans.
  • User-Friendly Interface: Offers an intuitive graphical experience.
  • Robust Web Scanning: Provides extensive vulnerability scanning of web applications and APIs.
  • Customizable Attack Modules: Tailors testing to meet specific security needs.
  • Attack Replay: Facilitates re-testing of potential vulnerabilities for accuracy.
  • Centralized Dashboard: Offers comprehensive insights into vulnerabilities.
What benefits should users look for?
  • Comprehensive Reports: Delivers detailed insights into security vulnerabilities.
  • Remediation Guidance: Provides actionable advice to fix identified vulnerabilities.
  • Scalability: Supports growth by handling increased demands efficiently.
  • Extensive Coverage: Ensures thorough security testing across multiple platforms.
  • Flexible Deployment: Adapts to different operational environments.

Industries rely on InsightAppSec for vulnerability scanning to secure web applications, APIs, and e-commerce platforms. Its integration within the SDLC aids in automating scans during development. While limitations exist with certain tool integrations, its cloud-based engine and effective reporting make it essential for internal and external application security assurance.

Rapid7

Rapid7 InsightCloudSec is a comprehensive CSPM tool catering to cloud security across Docker and Kubernetes workloads, ensuring rigorous data classification and protection, focusing on AWS and Azure platforms.

Organizations leverage Rapid7 InsightCloudSec for securing cloud environments, integrating smoothly into Kubernetes settings for extensive security oversight. This tool addresses data protection with governance and access controls, providing centralized visibility and alert mechanisms. Users depend on its threat detection capabilities, easing data security management on AWS and Azure. The platform integrates automated processes and agentless scanning to foster an understanding of cloud security dynamics. Enhancements in CNAPP management and more intuitive interfaces could further streamline its use.

What are the most important features of Rapid7 InsightCloudSec?
  • Security Frameworks: Offers structured systems to enforce security policies across cloud environments.
  • Agentless Scanning: Provides insights without deploying agents, simplifying operations.
  • Automation: Streamlines routine security tasks, enhancing efficiency.
  • Centralized Visibility: Uses dashboards and alerts for comprehensive monitoring.
  • Vulnerability Management: Identifies threats with a comprehensive database.
What ROI should users look for in reviews?
  • Improved Data Security: Enhanced protection across multiple cloud platforms.
  • Compliance Facilitation: Helps meet regulatory standards effortlessly.
  • Operational Efficiency: Reduces workload with automation and intuitive tools.
  • Threat Prevention: Proactively manages vulnerabilities.

In financial sectors, Rapid7 InsightCloudSec is critical for safeguarding sensitive information and ensuring compliance. Healthcare industries use it to protect patient data, adhering to strict regulatory standards. E-commerce businesses appreciate its ability to secure transaction data while maintaining service availability through reliable threat detection and mitigation strategies.

Rapid7
 

Sample Customers

CenterPoint Energy, CPA Australia, Hypertherm, First American Financial Corporation, Rackspace
Fannie Mae, 3M, PizzaHut, Spotify, Autodesk, Discovery
Buyer's Guide
Rapid7 InsightAppSec vs. Rapid7 InsightCloudSec
April 2026
Free Report: Rapid7 InsightAppSec vs. Rapid7 InsightCloudSec
Find out what your peers are saying about Rapid7 InsightAppSec vs. Rapid7 InsightCloudSec and other solutions. Updated: April 2026.
DOWNLOAD NOW
894,738 professionals have used our research since 2012.
See our Rapid7 InsightAppSec vs. Rapid7 InsightCloudSec report.
See our list of best AI Observability vendors.

We monitor all AI Observability reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.