Rapid7 InsightIDR vs Trellix XDR comparison

"The product works well. Stability-wise, I rate the solution a ten out of ten."

"Very intuitive and easy to set up."

"It improves because several sensors are deployed within the on-premise environment. It can be very efficient if the customer implements and operates it effectively."

"InsightIDR’s ability to process millions of transactions per day, and to notify me of the most critical ones, is priceless. InsightIDR has the alerts tuned, and has the ability to quickly drill down to determine the threat level."

"I rate Rapid7 nine out of 10 for affordability"

"Rapid7 is easy to use and deploy. It is a simple solution and has easy data pulling."

"Integration with threat modeling from the Metasploit and InsightIDR repositories."

"Log search allows us to dive deep into aggregated logs and query all event types at once.​"

"It contributes to our system's robust event detection and analysis, enabling us to respond effectively to incidents."

"The analytics assessment and flexibility of the platform are valuable."

"Trellix XDR is an excellent solution that is continually improving."

"The interface for doing investigation needs to be enhanced with minor improvements that would make it more useful."

"Customised alert recipients need to be added to allow better first-line action and quicker response. Configurable honeypots would be a welcome addition."

"One thing that springs to mind is easier API integration with ITSMs. We are evaluating a new ITSM and I would like to have InsightIDR create a ticket when an attack is identified, and the ticket would be closed in InsightIDR when the ITSM resolution is completed. This would take out the "single point of failure" we currently have, if the email recipient is somehow absent, in recording the risk appetite for the incident and the actions taken to mitigate or not."

"I would like to see more development in InsightIDR towards building their SIEM solution and converting it to XDR."

"The reporting is the weakest aspect. There needs to be multi-level grouping for events (for example, group by user and destination). Right now, we can do a group by user and a separate table or group by destination. But I'd be more interested in where a person was logging into instead of who was logging in or where he was logging in."

"The main problem lies in the processes within the client's operating systems."

"One of the things that could be better is digital forensics. It is there, but it can be better. They could provide more on the endpoint detection level."

"I would like the ability to adjust the threshold of certain existing alerts. Currently the only option is to change the notifications or create my own alert."

"Technical support is crucial, especially when facing critical issues. It's rated six out of ten. Improvements are needed in the support sector, with a focus on providing expert assistance during production periods."

"The platform should enhance compatibility with all other SIEM solutions."

"The EdgeGear solution is an area that requires attention, specifically regarding AI solutions and intelligence features."

"Rapid7 InsightIDR is priced very well and is cost-effective."

"The solution has a mid-range price point in the market"

"​Accurately predict your licensing counts as this is a subscription based product.​"

"I rate Rapid7 InsightIDR's price a four on a scale of one to ten, where one is cheap, and ten is expensive."

"It is on a yearly basis. For our own company, for about 250 users, it was 16,000 euros a year."

"It is a reasonably priced solution."

"It is more reasonably priced than other vendors."

"The pricing and licensing are competitive."