Try our new research platform with insights from 80,000+ expert users

Rapid7 InsightIDR vs Trellix Endpoint Detection and Response (EDR) comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Sep 9, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Rapid7 InsightIDR
Ranking in Endpoint Detection and Response (EDR)
25th
Average Rating
8.4
Reviews Sentiment
7.4
Number of Reviews
32
Ranking in other categories
Security Information and Event Management (SIEM) (14th), User Entity Behavior Analytics (UEBA) (5th), Threat Deception Platforms (5th), Extended Detection and Response (XDR) (16th)
Trellix Endpoint Detection ...
Ranking in Endpoint Detection and Response (EDR)
22nd
Average Rating
7.4
Reviews Sentiment
7.2
Number of Reviews
23
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of July 2025, in the Endpoint Detection and Response (EDR) category, the mindshare of Rapid7 InsightIDR is 1.2%, up from 0.7% compared to the previous year. The mindshare of Trellix Endpoint Detection and Response (EDR) is 1.2%, up from 0.5% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Endpoint Detection and Response (EDR)
 

Featured Reviews

Asim Naeem - PeerSpot reviewer
Providing comprehensive insight into alerts while working towards AI enhancement
I definitely recommend Rapid7 InsightIDR. It is becoming better, with improvements being continuously made to the product. Right now, I do not have any advice about Rapid7 for other users because every organization or user has different criteria or multiple use cases, so I refrain from commenting on that. I rate the overall solution seven out of ten.
CESARCASTRO - PeerSpot reviewer
Enhancements needed for security alerts while ongoing training strengthens defenses
This year, I am going to improve some tools to be installed or maybe acquire some services to better manage our web services and work with my coworkers. Application fiber also needs attention. Nowadays I am making applications that are publicly seen on the Internet. I need some protection, possibly multi-factor authentication improvements. I am seeing, for workflows, some sort of ethical hacking to test our environment. Knowledge of everything, not only the product - maybe some kind of alerts - needs to emerge. I see the current ones as very low-tier, and they must improve.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"I am able to run automated actions based on the output of reports, leaving me extra time to focus on more pressing matters."
"​​User behavioral analytics allows us to pinpoint abnormal or suspicious behavior among millions of events every day."
"Features for user behavior analytics and the rules for attack review are good."
"The solution's initial setup is easy."
"The solution is easy to use, and the interface is intuitive."
"InsightIDR’s ability to process millions of transactions per day, and to notify me of the most critical ones, is priceless. InsightIDR has the alerts tuned, and has the ability to quickly drill down to determine the threat level."
"I like that it's a cloud-based solution."
"The solution provides satisfying native integration features"
"The product's initial setup phase was very straightforward since you just need to install it, and it works."
"The most valuable feature I found in McAfee MVISION Endpoint Detection and Response is the guided analytics or guided EDR investigation."
"Blocking browser navigation is a feature of the solution with which we have experienced success."
"Trellix has done a good job reducing threats."
"The most valuable feature of the solution is its area for threat detection."
"Trellix has a user-friendly interface."
"It is a scalable solution and very easy to use."
"It relies on external systems for detection and then asks the endpoint to handle blocking. However, the most crucial feature is its investigative capabilities. With real-time search and other functionalities, it enables comprehensive detection and response."
 

Cons

"Needs a better ability to customize the check within the console."
"One thing that springs to mind is easier API integration with ITSMs. We are evaluating a new ITSM and I would like to have InsightIDR create a ticket when an attack is identified, and the ticket would be closed in InsightIDR when the ITSM resolution is completed. This would take out the "single point of failure" we currently have, if the email recipient is somehow absent, in recording the risk appetite for the incident and the actions taken to mitigate or not."
"The dashboard is an area that could be simplified."
"Customised alert recipients need to be added to allow better first-line action and quicker response. Configurable honeypots would be a welcome addition."
"They should add more configuration and security features to it."
"The product allows us to make only 30 custom rules."
"It would be useful to import threat intelligence in YARA format along with known incorrect email addresses.​"
"Sometimes, it is hard to get the right queries to use. Currently, the tool lacks a pre-made set of queries."
"I'd like the tool to become more like an XDR, with one management system and endpoint activation."
"The dashboard is split across different platforms. For example, if you want information on Incident Detection, you have to access one dashboard, and for DLP reporting, there's a separate platform. This fragmentation means you can't access everything from a single dashboard."
"I need some protection, possibly multi-factor authentication improvements."
"The technical support must be improved."
"The endpoints and utilization are too high, which impacts the production activity."
"The solution's downside stems from the fact that Trellix Endpoint Detection and Response (EDR) and McAfee MVISION Endpoint are not combined into a single solution, so from an improvement perspective, they need to be combined into a single solution."
"An area for improvement in McAfee MVISION Endpoint Detection and Response is the historical search. For example: when you have information on the artifact and a precedent, you want to do a search, and that is a bit lacking in the tool."
"The console has a lot of bugs, and it creates many issues."
 

Pricing and Cost Advice

"Rapid7 InsightIDR is a cheaply priced product. On a scale of one to ten, where one is very expensive, and ten is very cheap, I rate the product's price at seven or eight."
"​I am sure that there are cheaper products out there, but none that meet so many of our needs whilst maintaining stability and usability.​"
"The pricing and licensing are competitive."
"It is a reasonably priced solution."
"The team is very willing to work with companies. My suggestion is to call the Rapid7 sales department and see how they can help.​"
"The pricing is good, and it is not very expensive."
"I rate Rapid7 InsightIDR's price a four on a scale of one to ten, where one is cheap, and ten is expensive."
"​Accurately predict your licensing counts as this is a subscription based product.​"
"The pricing is always high."
"Pricing is a problem in South Africa. It could be cheaper here. The rand-to-dollar exchange rate makes it expensive for us. A 25 dollar endpoint cost becomes quite significant when converted to rand."
"The product’s pricing is reasonable."
"The cost is okay, compared to other products."
"The price is reasonable."
"The licensing costs attached to the solution are very easy to manage. There is a need to make yearly payments towards the licensing costs."
"On a scale of one to ten, where one is low and ten is high, I rate the solution's pricing an eight out of ten."
"Pricing for McAfee MVISION Endpoint Detection and Response is not that expensive, but it's not something that a startup could buy. Pricing for it is for midsized businesses. There's an additional payment if you want data retention for more than thirty days. They gave us data retention for thirty days. Then if you want longer data retention, they have the paid option for a three-month data retention period and for a one-year data retention period."
report
Use our free recommendation engine to learn which Endpoint Detection and Response (EDR) solutions are best for your needs.
861,803 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
15%
Financial Services Firm
8%
Manufacturing Company
8%
Government
6%
Computer Software Company
14%
Government
12%
Financial Services Firm
11%
Manufacturing Company
10%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What SOC product do you recommend?
For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...
What do you like most about Rapid7 InsightIDR?
During simulations or demonstrations, the tool generates alerts, providing details such as the specific application, its origin, and potential threats. For instance, it can identify if an applicati...
What is your experience regarding pricing and costs for McAfee MVISION Endpoint Detection and Response?
I haven't had any really great problems with pricing in the past two or three years.
What needs improvement with McAfee MVISION Endpoint Detection and Response?
This year, I am going to improve some tools to be installed or maybe acquire some services to better manage our web services and work with my coworkers. Application fiber also needs attention. Nowa...
 

Also Known As

InsightIDR
McAfee MVISION EDR, MVISION EDR, MVISION Endpoint Detection and Response
 

Overview

 

Sample Customers

Liberty Wines, Pioneer Telephone, Visier
Sutherland Global Services
Find out what your peers are saying about Rapid7 InsightIDR vs. Trellix Endpoint Detection and Response (EDR) and other solutions. Updated: June 2025.
861,803 professionals have used our research since 2012.