Try our new research platform with insights from 80,000+ expert users

Rapid7 InsightIDR vs VMware Carbon Black Cloud comparison

Rapid7 and VMware are both solutions in the Endpoint Detection and Response (EDR) category. Rapid7 is ranked #26 with an average rating of 8.1, while VMware is ranked #44 with an average rating of 8.0. Rapid7 holds a 1.1% mindshare in EDR, compared to VMware’s 0.2% mindshare. Additionally, 95% of Rapid7 users are willing to recommend the solution, compared to 93% of VMware users who would recommend it.
Rapid7 InsightIDR
Read 32 Rapid7 InsightIDR reviews
  • 1,899 Views
  • 207 Comparison Views
95% willing to recommend
VMware Carbon Black Cloud
Read 18 VMware Carbon Black Cloud reviews
  • 369 Views
  • 81 Comparison Views
93% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Sep 9, 2024

Rapid7 InsightIDR and VMware Carbon Black Cloud are prominent cybersecurity solutions targeting enterprise environments. While VMware Carbon Black Cloud offers superior features and capabilities, Rapid7 InsightIDR excels in pricing and customer support.

Features: Rapid7 InsightIDR is known for its user-friendly incident detection and response capabilities, providing comprehensive visibility and automated alerting. VMware Carbon Black Cloud delivers advanced threat hunting functionalities, extensive endpoint coverage, and more robust features.

Room for Improvement: Rapid7 InsightIDR could benefit from better integration with third-party tools, enhanced reporting functionalities, and additional feature enhancements. VMware Carbon Black Cloud users point to the need for improved system performance, a reduction in false positives, and addressing performance lags due to its wider endpoint focus.

Ease of Deployment and Customer Service: Rapid7 InsightIDR receives high marks for easy deployment and excellent customer service with a guided setup process. VMware Carbon Black Cloud's deployment is more complex, requiring deeper initial system integration, but it maintains reputable customer support while falling slightly behind Rapid7 in overall service satisfaction.

Pricing and ROI: Rapid7 InsightIDR is praised for its cost-effectiveness, offering competitive pricing and satisfactory ROI. VMware Carbon Black Cloud, although more expensive, is justified by its advanced security features and extensive reach, making it worth the higher price for comprehensive endpoint protection.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Rapid7 InsightIDR vs. VMware Carbon Black Cloud Report (Updated: June 2025).
Buyer's Guide
Rapid7 InsightIDR vs. VMware Carbon Black Cloud
June 2025
Download the complete report
Helped 856,873 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Rapid7 InsightIDR
Ranking in Endpoint Detection and Response (EDR)
26th
Average Rating
8.4
Reviews Sentiment
7.4
Number of Reviews
32
Ranking in other categories
Security Information and Event Management (SIEM) (15th), User Entity Behavior Analytics (UEBA) (5th), Threat Deception Platforms (5th), Extended Detection and Response (XDR) (16th)
VMware Carbon Black Cloud
Ranking in Endpoint Detection and Response (EDR)
44th
Average Rating
8.4
Reviews Sentiment
7.2
Number of Reviews
18
Ranking in other categories
Security Incident Response (7th)
 

Mindshare comparison

As of June 2025, in the Endpoint Detection and Response (EDR) category, the mindshare of Rapid7 InsightIDR is 1.1%, up from 0.7% compared to the previous year. The mindshare of VMware Carbon Black Cloud is 0.2%, up from 0.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Endpoint Detection and Response (EDR)
 

Featured Reviews

Asim Naeem - PeerSpot reviewer
Providing comprehensive insight into alerts while working towards AI enhancement
I definitely recommend Rapid7 InsightIDR. It is becoming better, with improvements being continuously made to the product. Right now, I do not have any advice about Rapid7 for other users because every organization or user has different criteria or multiple use cases, so I refrain from commenting on that. I rate the overall solution seven out of ten.
Read full review
Tom Kar - PeerSpot reviewer
Shows promise for endpoint detection and response, with room for improvement in complexity and pricing
VMware Carbon Black Cloud is a user-friendly solution that can isolate machines from the rest of the network. When a machine is quarantined, it cannot communicate with any other machines on the network except for the Carbon Black Cloud server. This allows you to investigate the machine without the risk of malware escaping to the network. Carbon Black Cloud's server can communicate with the quarantined machine through DNS and VSCP. This allows you to collect data from the machine, such as system logs, process activity, and registry changes. This data can be used to investigate the infection and determine the next steps. CrowdStrike and Cybereason are also popular EDR solutions. They offer similar features to VMware Carbon Black Cloud but may have different strengths and weaknesses. It is important to evaluate all of your options before choosing an EDR solution. Additionally, it is complex to use, and the pricing should be improved.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"InsightIDR has allowed us to find potential security issues that we did not know existed, and get remediation quickly."
"The technical support is a solid 10 out of 10 as they take the time to answer any questions or problems which may arise in a reasonable time frame."
"The incident case management is the most valuable feature. Even though there's always something I find I would like to add to that feature, the ability to quickly sort through all the logs, network and endpoint data, etc., and add it to an incident case as part of the investigation, is nice. Having it automatically timeline that additional data into the original incident timeline, and correlate it to other notable events and activities on the network, results in a huge improvement in our overall confidence that we've quickly traced down the right source of an issue."
"I like that it's a cloud-based solution."
"The solution is very scalable in terms of the licensing model."
"The ability to ingest Office 365 log files, then process them into events and display them on a map."
"I rate Rapid7 nine out of 10 for affordability"
"Integration with threat modeling from the Metasploit and InsightIDR repositories."
More Rapid7 InsightIDR pros
"The detection response and quarantining are very good features."
"The ability to quickly isolate a system from the network, while still being able to perform some forensics and mitigation work remotely, was of great value to us since we had many mobile and distributed systems."
"Probably the most valuable feature of CB Response is its ability to isolate a host and take it off the network, so it's not spreading anything. We have two security operations centers around the globe. When an SOC analyst sees something on an endpoint, they can use Carbon Black Response to isolate that host from the customer's environment and prevent any kind of lateral spread."
"We are able to remotely isolate exploited endpoints in seconds and perform a live deep dive of any endpoint into its running processes (as necessary) without the need for extra scripts.​"
"The most valuable feature is its ability to seek out abnormal activity and to create alerts."
"It is nice when you're in a situation where you think someone's device is compromised and that there's some malware getting into your fleet."
"For setup, the server can be given to you as a VM image and with minimal configuration needed."
"Carbon Black insures the probability that any ransomware will be stopped before spreading."
More VMware Carbon Black Cloud pros
 

Cons

"The solution's XDR agents cannot compete with the XDR solutions out there yet."
"It takes time for the product's support team to resolve issues, making it an area of concern where improvements are required."
"I would like to see more development in InsightIDR towards building their SIEM solution and converting it to XDR."
"Currently, it lacks the functionalities provided by Rapid7's User Behavior Analytics (UBA)."
"Lacks a mobile application."
"The reporting is the weakest aspect. There needs to be multi-level grouping for events (for example, group by user and destination). Right now, we can do a group by user and a separate table or group by destination. But I'd be more interested in where a person was logging into instead of who was logging in or where he was logging in."
"InsightIDR's integration with other solutions could be improved. Also, I'd like more control from the portal over what's happening on the endpoint side. For example, when I see an attack on an endpoint, I want to be able to stop it from the portal."
"I would like the ability to adjust the threshold of certain existing alerts. Currently the only option is to change the notifications or create my own alert."
More Rapid7 InsightIDR cons
"The product detects too many false positives initially and it could integrate better with other security solutions."
"The threat intelligence feed could use some fine tweaking."
"The cloud console has a lot of bugs and issues in the analysis part."
"The biggest issue I encountered was one where old logs were not being overwritten as expected so the system drive kept filling up from time to time. However, support was usually quite responsive and happy to jump on a remote session to take a look at it for us. That log bug has probably been resolved with an update by now."
"They need to improve the batch console. It needs more capabilities. We are limited by the ones it provides..."
"Setup is incredibly complex and poorly documented. Every time an upgrade was needed we would need to engage Professional Services for troubleshooting help. Certificates and web services proved to be the most significant sticking points. Since the product runs on a Linux platform, perhaps having staff with more Linux experience could have alleviated some difficulty."
"There have been some performance issues when deploying on Windows Server, but I believe Carbon Black is working on that."
"The support team of Carbon Black CB Response needs improvement. At present, they need a lot of information. Then they give you an answer that they already gave you. You tell them it didn't work, and then they take a long time."
More VMware Carbon Black Cloud cons
 

Pricing and Cost Advice

"It is a reasonably priced solution."
"​I am sure that there are cheaper products out there, but none that meet so many of our needs whilst maintaining stability and usability.​"
"Rapid7 InsightIDR charges us based on the endpoints we connect to."
"​Accurately predict your licensing counts as this is a subscription based product.​"
"Rapid7 InsightIDR's pricing is reasonable."
"Licensing is straightforward. If, for some reason, you don’t meet the minimum licensing requirements, there is a third-party managed service that can help."
"The solution has a mid-range price point in the market"
"Rapid7 InsightIDR's pricing is reasonable but we have challenges with the Minimum Order Quantity. It is not reasonable for customers who have less than one hundred devices. If they can reduce Minimum Order Quantity, it is good. You have to pay around 5000-6000 dollars per year for the product. The pricing includes maintenance and support costs."
More Rapid7 InsightIDR pricing and cost advice
"The solution is very inexpensive so there is great cost savings to using it."
"You need to pay for the licensing of the product. The pricing is costly."
"Purchase Professional Services up front as part of the implementation package, then renew hours annually to ensure you have adequate support for upgrades and enhancements. Overbuy by at least 10% to account for infrastructure growth."
"Pricing for this solution could be made lower."
"VMware Carbon Black Cloud is an expensive solution."
"We had no issues purchasing through our preferred reseller and were able to get a fair price even when not purchasing direct. Carbon Black Enterprise Response didn’t break the bank, though adding on the matching antivirus and anti-malware components of the Protect product was more than we could afford, even with some discounting. Cb Response is really designed to complement Carbon Black’s Defense product. While Response can be used on its own, coupling with Defense seems like the best strategy if you can afford the price tag."
report
See which vendors are best for you
Use our free recommendation engine to learn which Endpoint Detection and Response (EDR) solutions are best for your needs.
See recommendations
856,873 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
15%
Financial Services Firm
9%
Manufacturing Company
8%
Government
6%
Computer Software Company
16%
Real Estate/Law Firm
11%
Healthcare Company
10%
Financial Services Firm
10%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What SOC product do you recommend?
For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...
See all answers
What do you like most about Rapid7 InsightIDR?
During simulations or demonstrations, the tool generates alerts, providing details such as the specific application, its origin, and potential threats. For instance, it can identify if an applicati...
See all answers
What is your experience regarding pricing and costs for Rapid7 InsightIDR?
The product pricing is very cheap.
See all answers
What to choose: an endpoint antivirus, an EDR solution or both?
I can recommend Carbon Black, an award-winning next-gen anti-virus (NGAV) and endpoint detection and response (EDR) security solution. The CB Predictive Security Cloud platform combines multiple hi...
See all answers
What's the difference between Carbon Black CB Response and Carbon Black CB Defense?
Carbon Black offers two different levels of Endpoint Detection and Response. One is the VM Carbon Black Cloud Endpoint Standard (CB Defense), and the other is the Carbon Black Endpoint Detection an...
See all answers
What do you like most about Carbon Black CB Response?
Threat hunting is the most valuable feature of VMware Carbon Black Cloud.
See all answers
 

Comparisons

Darktrace vs Rapid7 InsightIDR Logo
Darktrace vs Rapid7 InsightIDR
Compared 10% of the time
Microsoft Sentinel vs Rapid7 InsightIDR Logo
Microsoft Sentinel vs Rapid7 InsightIDR
Compared 9% of the time
Rapid7 InsightVM vs Rapid7 InsightIDR Logo
Rapid7 InsightVM vs Rapid7 InsightIDR
Compared 8% of the time
CrowdStrike Falcon vs Rapid7 InsightIDR Logo
CrowdStrike Falcon vs Rapid7 InsightIDR
Compared 5% of the time
Splunk Enterprise Security vs Rapid7 InsightIDR Logo
Splunk Enterprise Security vs Rapid7 InsightIDR
Compared 5% of the time
More Rapid7 InsightIDR Competitors
Splunk SOAR vs VMware Carbon Black Cloud Logo
Splunk SOAR vs VMware Carbon Black Cloud
Compared 34% of the time
Palo Alto Networks Cortex XSOAR vs VMware Carbon Black Cloud Logo
Palo Alto Networks Cortex XSOAR vs VMware Carbon Black Cloud
Compared 24% of the time
VMware Carbon Black Endpoint vs VMware Carbon Black Cloud Logo
VMware Carbon Black Endpoint vs VMware Carbon Black Cloud
Compared 20% of the time
More VMware Carbon Black Cloud Competitors
 

Product Reports

Buyer's Guide
Rapid7 InsightIDR
May 2025
Rapid7 InsightIDR reportDownload Rapid7 InsightIDR product report
Buyer's Guide
VMware Carbon Black Cloud
May 2025
VMware Carbon Black Cloud reportDownload VMware Carbon Black Cloud product report
 

Also Known As

InsightIDR
Carbon Black CB Response
 

Overview

Parsing hundreds of trivial alerts. Managing a mountain of data. Manually forwarding info from your endpoints. Forget that. InsightIDR instantly arms you with the insight you need to make better decisions across the incident detection and response lifecycle, faster.

Rapid7
Fortify Endpoint and Workload Protection Legacy approaches fall short as cybercriminals update tactics and obscure their actions. Get advanced cybersecurity fueled by behavioral analytics to spot minor fluctuations and adapt in response. Recognize New Threats Analyze attackers’ behavior patterns to detect and stop never-before-seen attacks with continuous endpoint activity data monitoring. Don’t get stuck analyzing only what’s worked in the past. Simplify Your Security Stack Streamline the response to potential incidents with a unified endpoint agent and console. Minimize downtime responding to incidents and return critical CPU cycles back to the business.
VMware
 

Sample Customers

Liberty Wines, Pioneer Telephone, Visier
ALLETE belk
Buyer's Guide
Rapid7 InsightIDR vs. VMware Carbon Black Cloud
June 2025
Free Report: Rapid7 InsightIDR vs. VMware Carbon Black Cloud
Find out what your peers are saying about Rapid7 InsightIDR vs. VMware Carbon Black Cloud and other solutions. Updated: June 2025.
DOWNLOAD NOW
856,873 professionals have used our research since 2012.
See our Rapid7 InsightIDR vs. VMware Carbon Black Cloud report.
See our list of best Endpoint Detection and Response (EDR) vendors.

We monitor all Endpoint Detection and Response (EDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.