Rapid7 InsightIDR vs SentinelOne Singularity Complete comparison

Rapid7 InsightIDR vs. SentinelOne Singularity Complete

Download the complete report

Helped 856,873 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Rapid7 InsightIDR

Ranking in Endpoint Detection and Response (EDR)

26th

Ranking in Extended Detection and Response (XDR)

16th

Average Rating

8.4

Reviews Sentiment

7.4

Number of Reviews

Ranking in other categories

Security Information and Event Management (SIEM) (15th), User Entity Behavior Analytics (UEBA) (5th), Threat Deception Platforms (5th)

SentinelOne Singularity Com...

Ranking in Endpoint Detection and Response (EDR)

2nd

Ranking in Extended Detection and Response (XDR)

2nd

Average Rating

8.6

Reviews Sentiment

7.3

Number of Reviews

198

Ranking in other categories

Endpoint Protection Platform (EPP) (3rd), Anti-Malware Tools (2nd)

Mindshare comparison

As of June 2025, in the Endpoint Detection and Response (EDR) category, the mindshare of Rapid7 InsightIDR is 1.1%, up from 0.7% compared to the previous year. The mindshare of SentinelOne Singularity Complete is 5.8%, down from 7.4% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Endpoint Detection and Response (EDR)

Featured Reviews

Asim Naeem

Principal IT Security & Compliance at IBEX Holdings Ltd

Providing comprehensive insight into alerts while working towards AI enhancement

I definitely recommend Rapid7 InsightIDR. It is becoming better, with improvements being continuously made to the product. Right now, I do not have any advice about Rapid7 for other users because every organization or user has different criteria or multiple use cases, so I refrain from commenting on that. I rate the overall solution seven out of ten.

Read full review

Asim Naeem

Principal IT Security & Compliance at IBEX Holdings Ltd

It integrates well with other platforms, is user-friendly, and is stable

SentinelOne Singularity Complete integrates with our other security solutions, correlating data from NDR, ADR, SIEM, and XDR tools. All this information is consolidated within SentinelOne, providing a centralized access point. SentinelOne Singularity Complete has helped us streamline our security operations by consolidating multiple solutions into a single platform. We are currently in the process of acquiring a threat intelligence platform to complete our security stack. We use Ranger to monitor our network and track connected devices. This is crucial because it helps us quickly identify unauthorized machines connected to our infrastructure, including personal devices. We have additional security measures in place, but Ranger provides an extra layer of protection. It also alerts us if the SentinelOne Singularity Complete agent is missing from any new or existing machines, allowing us to take appropriate action. SentinelOne Ranger's agentless and hardware-independent nature is crucial for our environment with 26,000 endpoints, as manual management of such a large number would be extremely challenging. Ranger uses a multi-layered approach to prevent vulnerable devices from being compromised. We employ scanners, network configurations, and a risk scanner to assess devices, endpoints, servers, and cloud infrastructures. Vulnerability reports and timelines for remediation are shared with device owners or custodians. This proactive strategy enables us to address vulnerabilities efficiently and secure our infrastructure. SentinelOne Singularity Complete has significantly enhanced our security posture. While no system is impenetrable, this solution has brought us closer to achieving a high level of protection, ensuring we maintain at least a 90 percent security level. Our team is dedicated to refining alerts and eliminating false positives from our solutions. Additionally, a team is responsible for identifying and excluding alerts from the solution. We can manually expedite this process by reviewing these elements and utilizing our security tools. We have been able to reduce the alert volume by 20 percent. Our 30-member Security Operations Center team has been able to redirect their focus to other tasks due to the time saved after implementing SentinelOne Singularity Complete. SentinelOne Singularity Complete has helped us improve our mean time to detect threats, which we accomplish using the Vigilance service for detection and response. SentinelOne Singularity Complete has helped us decrease our organizational risk. We utilize the Security Scorecard to manage our security posture, which has remained steady at 90 percent.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The incident case management is the most valuable feature. Even though there's always something I find I would like to add to that feature, the ability to quickly sort through all the logs, network and endpoint data, etc., and add it to an incident case as part of the investigation, is nice. Having it automatically timeline that additional data into the original incident timeline, and correlate it to other notable events and activities on the network, results in a huge improvement in our overall confidence that we've quickly traced down the right source of an issue."

"The biggest reason why we chose Rapid7 was to gain value in a really quick time. Its deployment doesn't take months. It just takes a few days."

"I like that it's a cloud-based solution."

"If you were on other solutions, you would notice that they use agents from third-party, from open-source, from a native OS, or from other tools. Here, however, it is an agent from Rapid7 itself. This adds to the solution's overall capabilities."

"The solution is very stable and works very well for what I need it to do."

"Rapid7's reporting is more robust than Tenable's."

"Rapid7 is easy to use and deploy. It is a simple solution and has easy data pulling."

"The alerting to drive investigations and remediation has been its most valuable feature."

More Rapid7 InsightIDR pros

"All of the features are valuable. The way that it integrates into management with fault correction capabilities over is especially valuable. Any of the full gamut of the features that it provides are useful to us."

"The EDR functionality of the platform is what we use the most. That was the primary reason why we got SentinelOne. That is what we use the most in terms of functionality."

"The threat detection and prevention capabilities are valuable, providing development programming support that enables us to perform fair investigations."

"The single pane of glass is probably the most valuable. That is a big one. We could see everything from one view."

"The most valuable feature is the machine learning capability, as opposed to the traditional rule-based antivirus."

"The most valuable feature is that it just unintrusively works in the background to carry out the protection."

"It's a plug-and-play solution that works well with other out of box integrations that we have."

"The most valuable feature is that it does what it says it will do. It fulfills its claims. It’s not really common for products to do that today."

More SentinelOne Singularity Complete pros

Cons

"The reporting is the weakest aspect. There needs to be multi-level grouping for events (for example, group by user and destination). Right now, we can do a group by user and a separate table or group by destination. But I'd be more interested in where a person was logging into instead of who was logging in or where he was logging in."

"It takes time for the product's support team to resolve issues, making it an area of concern where improvements are required."

"There is a future in AI with Rapid7, however, it is not fully operated. There are certain limitations with Rapid7 that I am working on."

"Currently, it lacks the functionalities provided by Rapid7's User Behavior Analytics (UBA)."

"I feel it would greatly benefit from more supported log sources."

"The ability to tune the collector for custom logs would greatly help."

"The solution's XDR agents cannot compete with the XDR solutions out there yet."

"Needs a better ability to customize the check within the console."

More Rapid7 InsightIDR cons

"We need to analyze the threats and make decisions based on that, so the analytics could be better at analyzing exactly where the threats are coming from."

"I would like to see a better mobile app so that I could look through my phone at the alerts and not have to go to the website. They should make it a little more mobile-accessible."

"Singularity's reporting isn't that great. The dashboards could be more customizable. It could be better integrated with other tools. SIEM tools provide better feeds. Singularity is a separate product altogether. It does not give enough information to integrate with different solutions to correlate better."

"The reporting needs improvement and I would like to see a more granular level of administrative privileges."

"When comparing SentinelOne to CrowdStrike, I find that CrowdStrike has more comprehensive vulnerability assessment tools."

"Sometimes, support can be lacking. We would like to have more interactive sessions, which are not currently available."

"I would like to see the reports from SentinelOne more customizable, as there are very few options."

"It seems like they are doing a lot with their automatic updates. They can maybe slow down the actual release cycle to make it easier to deploy the most recent and then do it using the live update. They can continue to work on that because trying to get agent changes through change management platforms and get approvals and testing can be quite difficult."

More SentinelOne Singularity Complete cons

Pricing and Cost Advice

"Rapid7 InsightIDR is a cheaply priced product. On a scale of one to ten, where one is very expensive, and ten is very cheap, I rate the product's price at seven or eight."

"The pricing is good, and it is not very expensive."

"Rapid7 InsightIDR's pricing is reasonable."

"The pricing of the solution depends on the user. But there is a yearly licensing cost."

"Licensing is by endpoint and amount of retention time (at least ours is). Default retention was one year, but we are able to push the retention further if needed. There's also a provide-your-own-S3 option for longer retention if you don't want to pay for the additional retention years in your Rapid7 agreement."

"The pricing and licensing are competitive."

"I am sure that there are cheaper products out there, but none that meet so many of our needs whilst maintaining stability and usability."

"The team is very willing to work with companies. My suggestion is to call the Rapid7 sales department and see how they can help."

More Rapid7 InsightIDR pricing and cost advice

"It is not sold as a consumer product. It is only sold based on the number of licenses. So, as an MSP, you're probably going to pay about three and a half dollars per license, per month to have SentinelOne."

"SentinelOne Singularity Complete is expensive compared to Microsoft but not Sophos."

"The pricing and licensing make sense."

"I do not know much about the pricing. What I do know is that the person who negotiates most of the pricing is quite a hard bargainer. In that regard, he often says that he managed to get a very good deal. When we first looked at replacing our old system with Singularity Complete, its price was definitely a big factor. Back then, Singularity Complete was fairly new to the marketplace. We got quite a good deal as an early adopter. They have honored that and respected that we were an early adopter, and I feel we are still getting a very good price."

"Pricing is a bit of a pain point. That's where we have not been able to convince all of our customers to use SentinelOne. The pricing is still on the higher side. It's almost double the price, if not more, of a normal antivirus, such as NOD32, Kaspersky, or Symantec."

"The solution is a bit cheaper than CrowdStrike Falcon Pro and more expensive than smaller solutions. Still, it has a pretty reasonable price point, as I appreciate the flexibility SentinelOne Singularity Complete offers."

"I find the licensing cost for SentinelOne Singularity Complete fair."

"The pricing of the solution seems reasonable, we got a discount but it still seems reasonable. The licensing cost is $3 to $4 per endpoint and can be paid monthly or yearly, with the price changing according to commitment."

More SentinelOne Singularity Complete pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Endpoint Detection and Response (EDR) solutions are best for your needs.

See recommendations

856,873 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

15%

Financial Services Firm

Manufacturing Company

Government

Computer Software Company

20%

Manufacturing Company

Financial Services Firm

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What SOC product do you recommend?

For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...

What do you like most about Rapid7 InsightIDR?

During simulations or demonstrations, the tool generates alerts, providing details such as the specific application, its origin, and potential threats. For instance, it can identify if an applicati...

What is your experience regarding pricing and costs for Rapid7 InsightIDR?

The product pricing is very cheap.

Cortex XDR by Palo Alto vs. Sentinel One

Cortex XDR by Palo Alto vs. SentinelOne SentinelOne offers very detailed specifics with regard to risks or attacks. The ability to reverse damage caused by ransomware with minimal interruptions to...

Which is better - SentinelOne or Darktrace?

Which solution is better depends on which is more suitable specifically for your company. Darktrace, for example, is meant for smaller to medium-sized businesses. It is also a good option for organ...

What do you like most about SentinelOne Singularity?

The Ranger feature is valuable.

Darktrace vs Rapid7 InsightIDR

Comparisons

Compared 10% of the time

Microsoft Sentinel vs Rapid7 InsightIDR

Compared 9% of the time

Rapid7 InsightVM vs Rapid7 InsightIDR

Compared 8% of the time

CrowdStrike Falcon vs Rapid7 InsightIDR

Compared 5% of the time

Splunk Enterprise Security vs Rapid7 InsightIDR

Compared 5% of the time

More Rapid7 InsightIDR Competitors

Datto Endpoint Detection and Response (EDR) vs SentinelOne Singularity Complete

Compared 5% of the time

CrowdStrike Falcon vs SentinelOne Singularity Complete

Compared 5% of the time

Microsoft Defender for Endpoint vs SentinelOne Singularity Complete

Compared 5% of the time

Darktrace vs SentinelOne Singularity Complete

Compared 5% of the time

Trellix Endpoint Security Platform vs SentinelOne Singularity Complete

Compared 4% of the time

More SentinelOne Singularity Complete Competitors

Product Reports

Rapid7 InsightIDR

Download Rapid7 InsightIDR product report

SentinelOne Singularity Complete

Download SentinelOne Singularity Complete product report

Also Known As

InsightIDR

Sentinel Labs, SentinelOne Singularity

Overview

Parsing hundreds of trivial alerts. Managing a mountain of data. Manually forwarding info from your endpoints. Forget that. InsightIDR instantly arms you with the insight you need to make better decisions across the incident detection and response lifecycle, faster.

Rapid7

SentinelOne Singularity Complete provides AI-driven threat detection and response with features like ransomware protection and rollback, offering endpoint protection with minimal system impact and deep forensic analysis.

SentinelOne Singularity Complete combines machine learning and artificial intelligence to offer robust endpoint protection. It delivers real-time insights and advanced threat detection through seamless integration with third-party tools, allowing for efficient endpoint management. With an emphasis on user-friendliness, it ensures reduced false positives. Room for improvement includes better integration options, enhanced reporting, and more precise analytics to tackle false positives. Users seek improved interoperability with systems and comprehensive support for legacy systems.

What are the key features of SentinelOne Singularity Complete?

Rollback Feature: Enables restoration of affected systems to a healthy state after an attack.
Ransomware Protection: Advanced mechanisms to prevent and mitigate ransomware threats.
Machine Learning and AI: Utilizes cutting-edge technology for precise threat detection and response.
Seamless Integration: Works well with third-party tools for enhanced endpoint protection.
Real-Time Protection: Proactively defends against advanced threats with minimal delays.

What benefits and ROI should users consider?

Reduced False Positives: Accurate threat detection limits operational disruptions.
Efficient Endpoint Protection: Ensures security with low system impact.
User-Friendly Experience: Simplified management and ease of use aid productivity.
Deep Forensic Analysis: Assists in effective threat investigation and response.
Cost-Effective Security: Positions as a worthwhile alternative to traditional antivirus solutions.

Organizations from industries like finance, healthcare, and technology deploy SentinelOne Singularity Complete to safeguard endpoints such as PCs, servers, and virtual machines. Equipped with EDR, it effectively replaces traditional antivirus systems and integrates with cloud technology for real-time security insights.

SentinelOne

Sample Customers

Liberty Wines, Pioneer Telephone, Visier

Havas, Flex, Estee Lauder, McKesson, Norfolk Southern, JetBlue, Norwegian airlines, TGI Friday, AVX, Fim Bank

Rapid7 InsightIDR vs. SentinelOne Singularity Complete