Try our new research platform with insights from 80,000+ expert users

Rapid7 InsightAppSec vs Spirent CyberFlood comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Rapid7 InsightAppSec
Average Rating
8.2
Reviews Sentiment
7.5
Number of Reviews
19
Ranking in other categories
Dynamic Application Security Testing (DAST) (2nd)
Spirent CyberFlood
Average Rating
8.4
Reviews Sentiment
6.6
Number of Reviews
5
Ranking in other categories
Application Security Tools (45th), Static Application Security Testing (SAST) (31st)
 

Mindshare comparison

While both are Quality Assurance solutions, they serve different purposes. Rapid7 InsightAppSec is designed for Dynamic Application Security Testing (DAST) and holds a mindshare of 11.8%, down 12.6% compared to last year.
Spirent CyberFlood, on the other hand, focuses on Application Security Tools, holds 0.2% mindshare, up 0.1% since last year.
Dynamic Application Security Testing (DAST)
Application Security Tools
 

Featured Reviews

Shritam Bhowmick - PeerSpot reviewer
Provides reliable applications security but needs better integration options
There are areas for improvements regarding false positives. Integration capabilities are lacking, as options for integrations with other tools such as SNOW, Jira, or other integration tools are not sufficient in Rapid7 InsightAppSec. The user interface sometimes has glitches, which may prevent appropriate results during navigation, and even when we get appropriate results, it can be impossible to export them to CSV records or download files. Regarding scalability, Rapid7 InsightAppSec is not a scalable solution for our industry due to limited integration capabilities. Rapid7 relies on another tool called InsightConnect, which requires additional investment, detracting from scalability. Another area that needs improvement is the integration of AI capabilities into the platform. Both Rapid7 InsightAppSec and InsightVM need to advance in that area. In terms of behavioral and pattern recognition, identifying complex attacks such as SQL, blind SQL, JSON, and LDAP injections often results in 94% false positives. This necessitates improvement in their behavioral-based analytics feature.
Jos Badimo - PeerSpot reviewer
Test assurance improves compliance and products with good performance
The user interface could be improved to facilitate easier navigation. The most significant issue I encounter with the solution is the user interface. It would be beneficial if I could remain on one screen most of the time. Even if the system navigates me to another screen, it should effectively return me to the main screen.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The reporting functionality is excellent."
"When considering DAST, it is not attributed to a singular feature but rather the capabilities of the engine that provides a genuine penetration testing experience and delivers insightful reports."
"Relatively speaking, InsightAppSec is good compared to Insight VM."
"The product’s most valuable feature is UI. It is easy to manage and find vulnerabilities in the application."
"It is very convenient to get reports from the tool, which offers high-level environmental statistics."
"Relatively speaking, InsightAppSec is good compared to Insight VM."
"Dynamic application security scanning provides predefined templates and supports customization. The ability to scan external and internal applications, including on-premises ones, is precious. Additionally, it is a cloud platform, so we don't need to deploy servers or resources. This makes it time-efficient and cost-effective."
"It's very easy to use and user-friendly. It does the job."
"CyberFlood is flexible."
"The feature I find most valuable is the traffic generator."
"The testing compliance feature is particularly impressive."
"The testing compliance feature is particularly impressive."
"Our customers use it to check for unauthorized file transfer."
"CyberFlood's best features are its user-friendliness and scheduling function."
 

Cons

"Currently, InsightAppSec lacks similar functionality. Customers must wait for remediation during the developers' preparation of a new version."
"The reporting is definitely an aspect of the solution that's in need of some work. We found that we'd try to use widgets, but often getting them to work for us wasn't very clear. They need to be more user friendly or offer better instructions."
"I would like more details of what the product can do."
"The dynamic scanning feature has simplified and improved the security testing process. I suggest adding a SaaS feature to the solution to support scanning SaaS applications, making it more comprehensive. It would be beneficial if the solution could also scan mobile applications. It only scans web applications and should also cover mobile applications, including firmware recommendations."
"There is room for improvement in Rapid7 InsightAppSec by giving clients the ability for extra columns on reports and enabling the extraction of remediation reports into a CSV format. Currently, the PDF format is cumbersome to go through when dealing with thousands of pages."
"When you add new projects for the same product, it either duplicates or replaces the scan configuration. If I run a scan for the same product with a different scan configuration, it should keep the previous scan configuration and not replace it with the new scan configuration. It should just add the new scan configuration. That would be helpful. They do keep the results as it is, but the scan configuration keeps changing. For example, I have set a scan configuration to a full scan, and next week, I want to run a new scan for the same product with some changes or new functionalities. I want to run a partial scan. Currently, if I change the scan configuration to partial, it changes the old one also to partial. That should be improved."
"In the future, if they can have integration with a lot of ticketing systems then it would be amazing."
"The reporting feature of Rapid7 InsightAppSec needs improvement as it currently provides basic reports."
"The user interface could be improved to facilitate easier navigation."
"The initial setup is not straightforward and can be quite challenging."
"Sometimes, when you configure parameters the hardware can't run, it will get stuck at those points without telling you what happened. It would be helpful if the error reporting provided more details about why the test setting is not running. It would be nice if there were a space in the hardware module for you to add some external hardware for more rigorous testing."
"I would also like to see updates on a more frequent schedule."
"CyberFlood's accessibility and support for multiple browsers could be better."
"The solution needs more ports, more speed, and more gigabytes."
 

Pricing and Cost Advice

"They offer a good price, but I don't remember its cost. It is fair as compared to the competition. We have opted for project-based licensing, not user-based. We can add any number of users. That doesn't matter. It is worth the money."
"Its price is competitive. It is not expensive."
"The price of this product is very cheap."
"I rate Rapid7 InsightAppSec’s pricing an eight out of ten."
"Rapid7 InsightAppSec is cheap."
"I'm not sure how much it costs exactly, but I know it's expensive."
"CyberFlood is reasonably priced."
report
Use our free recommendation engine to learn which Dynamic Application Security Testing (DAST) solutions are best for your needs.
861,481 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
16%
Financial Services Firm
15%
Manufacturing Company
13%
Government
8%
Manufacturing Company
17%
Computer Software Company
13%
Comms Service Provider
11%
Financial Services Firm
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

What do you like most about Rapid7 InsightAppSec?
In Rapid7 InsightAppSec, a distinctive feature is the provision of a CDM for integrating web servers and web applications. To establish the connection between these applications, you only need to p...
What needs improvement with Rapid7 InsightAppSec?
There are areas for improvements regarding false positives. Integration capabilities are lacking, as options for integrations with other tools such as SNOW, Jira, or other integration tools are not...
What is your primary use case for Rapid7 InsightAppSec?
Our main use case for Rapid7 InsightAppSec is to perform internal assessment of applications and external facing applications. We have a cloud engine plus on-premises engine, and we have been lever...
What needs improvement with Spirent CyberFlood?
The user interface could be improved to facilitate easier navigation. The most significant issue I encounter with the solution is the user interface. It would be beneficial if I could remain on one...
What is your primary use case for Spirent CyberFlood?
I have been using the solution for a year now. The customers I work with are focused on both custom test assurance and test automation. The solution is utilized in the financial services sector and...
What advice do you have for others considering Spirent CyberFlood?
The language barrier and time difference pose significant issues with customer support. The price is competitive. The biggest benefits I find are test assurance, the reliability of the test results...
 

Also Known As

InsightAppSec
CyberFlood Virtual, Spirent Mu Dynamics Application Security Testing, Mu Dynamics Application Security Testing
 

Overview

 

Sample Customers

CenterPoint Energy, CPA Australia, Hypertherm, First American Financial Corporation, Rackspace
Digicel
Find out what your peers are saying about HCLSoftware , Rapid7, OpenText and others in Dynamic Application Security Testing (DAST). Updated: June 2025.
861,481 professionals have used our research since 2012.