Rapid7 InsightIDR vs SentinelOne Singularity Identity comparison

Rapid7 InsightIDR vs. SentinelOne Singularity Identity

Download the complete report

Helped 880,315 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Rapid7 InsightIDR

Ranking in Threat Deception Platforms

4th

Average Rating

8.4

Reviews Sentiment

7.0

Number of Reviews

Ranking in other categories

Security Information and Event Management (SIEM) (15th), User Entity Behavior Analytics (UEBA) (7th), Endpoint Detection and Response (EDR) (22nd), Extended Detection and Response (XDR) (18th)

SentinelOne Singularity Ide...

Ranking in Threat Deception Platforms

3rd

Average Rating

9.0

Reviews Sentiment

7.3

Number of Reviews

Ranking in other categories

Vulnerability Management (21st), Advanced Threat Protection (ATP) (15th), Identity Threat Detection and Response (ITDR) (5th)

Mindshare comparison

As of January 2026, in the Threat Deception Platforms category, the mindshare of Rapid7 InsightIDR is 10.0%, down from 11.1% compared to the previous year. The mindshare of SentinelOne Singularity Identity is 6.4%, down from 7.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Threat Deception Platforms Market Share Distribution
Product	Market Share (%)
SentinelOne Singularity Identity	6.4%
Rapid7 InsightIDR	10.0%
Other	83.6%

Threat Deception Platforms

Featured Reviews

SohailHyder

Head of Cyber Security at Super Secure

Has supported compliance needs for mid-sized organizations but lacks customization and advanced integration

If we pitch Rapid7 InsightIDR against solutions such as SIEMs from Splunk or LogRhythm, it is not as customizable as a SIEM solution is. This is where it can improve if we keep in front the feature sets of a complete SIEM solution. Most common in the market is QRadar, but it is depleting now. It has been taken over by some other products such as Splunk and LogRhythm. If we compare these things with Rapid7 InsightIDR, then there are definitely some gaps that need to be filled. Data retention is also one concern because Rapid7 InsightIDR is cloud-based and operates on a subscription model. Whatever data you want to retain, it has to be paid for separately or it has a cost. Other solutions that are on-premises can have their own infrastructure or they provide some data retention for a month or in some capacity-wise, they provide that solution to them which makes them more attractive.

Read full review

Roftiel Constantine

Global Chief Information Security Officer at Barry-Wehmiller

Provides proactive threat remediation, reduces alert volume, and enhances incident response capabilities

During our pre-purchase evaluation of SentinelOne's EDR capabilities three years ago, we were consistently impressed by the positive relationships customers reported having with SentinelOne's engineers, sales teams, and customer success managers. These strong relationships, evident in the customers' unsolicited feedback, highlighted the "soft skills" and intangible qualities that SentinelOne possessed. This positive customer experience has been mirrored in our own interactions with them. Their responsiveness to our needs, particularly when addressing a couple of challenges we faced, has been excellent. They proactively scheduled weekly meetings to demonstrate their commitment to resolving our issues, a customer-centric approach I admire. SentinelOne's dedication to customer service, including their rapid technology updates and responsiveness to our suggestions, has been crucial to our success in protecting our organization. Their ability to quickly incorporate our needs into new releases is truly impressive and sets them apart. Overall, I highly recommend SentinelOne based on our positive interactions across all levels of their organization.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The solution is very stable and works very well for what I need it to do."

"The product works well. Stability-wise, I rate the solution a ten out of ten."

"User behavioral analytics allows us to pinpoint abnormal or suspicious behavior among millions of events every day."

"It improved my organization by building a security alerting program."

"The log aggregation and storage provided by InsightIDR has shown no issues with scalability; aggregating over one hundred millions events daily."

"Dashboards, including the main screen, provide much-needed information at a glance, without hours of coding and sifting through logs to find it. In case of an actual security incident, I have faith that insightIDR has retained all logs in a secure manner that prevents log tampering as well."

"Integration with threat modeling from the Metasploit and InsightIDR repositories."

"During simulations or demonstrations, the tool generates alerts, providing details such as the specific application, its origin, and potential threats. For instance, it can identify if an application belongs to a known ransomware group. The system rates the threat, offering a clear detection ratio, such as 97 out of 100. It not only identifies threats but also illustrates the associated behaviors, helping us understand the potential risk to a particular endpoint."

More Rapid7 InsightIDR pros

"All the features within the XDR are valuable as a whole for our organization."

"SentinelOne Singularity Identity is very lightweight as an agent or software."

"The protection provided by SentinelOne Singularity Identity is the most valuable feature."

"The AI-based detection, scanning, prevention and mitigation features are the most valuable features."

"SentinelOne Singularity Identity provides machine learning capabilities for threat detection; among the use cases, I have found static AI, behavioral AI, and dynamic AI to help with malware detection, so there are three types of AI in the Singularity console agent."

"Their ability to quickly incorporate our needs into new releases is truly impressive and sets them apart."

"Incident response is one of the key areas where the solution has been very useful. Whenever there is an incident, instead of being reactive, the government is now able to quickly gain the data that it needs to see what its end agency is also seeing and partner with them in real-time to look at the same data and to collaborate where needed, empowering the agency to be able to do their job."

"The threat detection capability is the most valuable feature."

More SentinelOne Singularity Identity pros

Cons

"The main problem lies in the processes within the client's operating systems."

"The reporting is the weakest aspect. There needs to be multi-level grouping for events (for example, group by user and destination). Right now, we can do a group by user and a separate table or group by destination. But I'd be more interested in where a person was logging into instead of who was logging in or where he was logging in."

"Rapid7 InsightIDR is not intuitive to search for logs. It should be more user-friendly and improve the dashboards. We should be able to use ready-made templates instead of having to build one."

"The dashboard is an area that could be simplified."

"Lacks a mobile application."

"Cloud risk assessment is one area where I think they need a lot of improvement."

"The searching feature in Rapid7 InsightIDR needs to evolve"

"Sometimes, it is hard to get the right queries to use. Currently, the tool lacks a pre-made set of queries."

More Rapid7 InsightIDR cons

"The primary reason for this discontent is that we frequently encounter performance issues with our servers."

"The resolution turnaround from SentinelOne Singularity Identity's support should be improved."

"The first-level support has room for improvement."

"The UI can be more user-friendly."

"We've brought three critical items to their attention regarding vulnerability management."

"Our engineers are dealing with issues to add exclusions to the antivirus for custom applications."

"Our company has different locations, such as Sunbury, Oklahoma, and Alabama. I have my devices by location, and I have not found a way to choose all the endpoints and then push the update automatically. I have been doing it one by one."

"There is a clear roadmap for improvements, including enhancing capabilities with AI and seamless functionality in an MSP model for deeper visibility across multiple agencies. Further development is anticipated to continue enhancing the solution."

More SentinelOne Singularity Identity cons

Pricing and Cost Advice

"I am sure that there are cheaper products out there, but none that meet so many of our needs whilst maintaining stability and usability."

"Rapid7 InsightIDR charges us based on the endpoints we connect to."

"I rate Rapid7 InsightIDR's price a four on a scale of one to ten, where one is cheap, and ten is expensive."

"Rapid7 InsightIDR is a cheaply priced product. On a scale of one to ten, where one is very expensive, and ten is very cheap, I rate the product's price at seven or eight."

"It is a reasonably priced solution."

"The pricing and licensing are competitive."

"The team is very willing to work with companies. My suggestion is to call the Rapid7 sales department and see how they can help."

"Licensing is straightforward. If, for some reason, you don’t meet the minimum licensing requirements, there is a third-party managed service that can help."

More Rapid7 InsightIDR pricing and cost advice

"There is a need to make yearly payments towards the licensing charges associated with the product...I think the prices associated with the product are okay and it is not too expensive."

"The pricing is a bit high."

"SentinelOne seemed to offer more while being priced lower than its competitors."

"As a SentinelOne partner, we offer competitive pricing on comprehensive packages that include the SentinelOne license, our management services, and a proof-of-concept to ensure the technology meets your needs."

"The price is affordable."

"Its price is a little bit high. It is a nice product, but it comes at a cost. Compared to other products, it is not cheap, but you sometimes have to pay for the value you get. It is not cheap, but it is worth it."

"Compared to competitors, it's well-priced for the quality offered, and I don't see anyone surpassing them in that regard."

"The cost of SentinelOne Singularity Identity is better than CrowdStrike."

More SentinelOne Singularity Identity pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Threat Deception Platforms solutions are best for your needs.

See recommendations

880,315 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

12%

Financial Services Firm

Manufacturing Company

Government

Computer Software Company

12%

Manufacturing Company

Financial Services Firm

Performing Arts

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	20
Midsize Enterprise	5
Large Enterprise	6

By reviewers
Company Size	Count
Small Business	4
Midsize Enterprise	5
Large Enterprise	13

Questions from the Community

What SOC product do you recommend?

For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...

What do you like most about Rapid7 InsightIDR?

During simulations or demonstrations, the tool generates alerts, providing details such as the specific application, its origin, and potential threats. For instance, it can identify if an applicati...

What is your experience regarding pricing and costs for Rapid7 InsightIDR?

The product pricing is very cheap.

What is your experience regarding pricing and costs for SentinelOne Singularity Identity?

I have no visibility into pricing, setup costs, or licensing as the government handles these aspects directly with SentinelOne. We do the integrating, and they process the payments.

What needs improvement with SentinelOne Singularity Identity?

Regarding improvements, I believe that API integration in third-party applications could be better. The Singularity tool uses its own credential in the record features.

What is your primary use case for SentinelOne Singularity Identity?

One of the main use cases I describe is that we face lateral movement in our customer's server side. The customer is using 50 or more servers for the news channel, Daily Thanthi. Among those, one s...

Rapid7 InsightVM vs Rapid7 InsightIDR

Comparisons

Compared 7% of the time

Microsoft Sentinel vs Rapid7 InsightIDR

Compared 6% of the time

Splunk Enterprise Security vs Rapid7 InsightIDR

Compared 5% of the time

CrowdStrike Falcon vs Rapid7 InsightIDR

Compared 4% of the time

IBM Security QRadar vs Rapid7 InsightIDR

Compared 2% of the time

More Rapid7 InsightIDR Competitors

Huntress Managed ITDR vs SentinelOne Singularity Identity

Compared 12% of the time

Tenable Vulnerability Management vs SentinelOne Singularity Identity

Compared 8% of the time

Microsoft Defender for Identity vs SentinelOne Singularity Identity

Compared 6% of the time

CrowdStrike Falcon vs SentinelOne Singularity Identity

Compared 5% of the time

Microsoft Entra ID Protection vs SentinelOne Singularity Identity

Compared 5% of the time

More SentinelOne Singularity Identity Competitors

Product Reports

Rapid7 InsightIDR

Download Rapid7 InsightIDR product report

SentinelOne Singularity Identity

Download SentinelOne Singularity Identity product report

Also Known As

InsightIDR

No data available

Overview

Parsing hundreds of trivial alerts. Managing a mountain of data. Manually forwarding info from your endpoints. Forget that. InsightIDR instantly arms you with the insight you need to make better decisions across the incident detection and response lifecycle, faster.

Rapid7

Singularity Identity, a component of the Singularity platform, provides threat detection & response (ITDR) capabilities to defend Active Directory and domain-joined endpoints in real-time from adversaries aiming to gain persistent, elevated privilege and move covertly. Singularity Identity provides actionable, high-fidelity insight as attacks emerge from managed and unmanaged devices. It detects identity misuse and reconnaissance activity happening within endpoint processes targeting critical domain servers, service accounts, local credentials, local data, network data, and cloud data. On-agent cloaking and deception techniques slow the adversary down while providing situational awareness and halting adversarial attempts at lateral movement. Singularity Identity helps you detect and respond to identity-based attacks, providing early warning while misdirecting them away from production assets.

Singularity Identity’s primary use case is to protect credential data and disrupt identity-based attacks. The most valuable function of Singularity Identity is its ability to misdirect attackers by providing deceptive data to identity-based recon attacks. Additionally, it can hide and deny access to locally stored credentials or identity data on Active Directory domain controllers.

Singularity Identity also provides rapid detection and respond to identity attacks, capturing attack activity and feeding it directly to the Singularity platform’s Security DataLake for enterprise-wide analysis and response.

By implementing Singularity Identity, organizations benefit from enhanced security, reduced credential-related risks, and improved user productivity. It detects and responds to identity-based attacks, ensuring only authorized individuals can access critical identity data. With its cloaking capabilities to hide identity stored locally on endpoints or in the identity infrastructure and it’s ability to provide decoy results to identity-based attacks, organizations can effectively secure their sensitive or privileged identities, resulting in improved overall identity security.

SentinelOne

Sample Customers

Liberty Wines, Pioneer Telephone, Visier

Information Not Available

Rapid7 InsightIDR vs. SentinelOne Singularity Identity