Rapid7 InsightIDR vs VMware Carbon Black Cloud comparison

Rapid7 and VMware are both solutions in the Endpoint Detection and Response (EDR) category. Rapid7 is ranked #25 with an average rating of 8.1, while VMware is ranked #48 with an average rating of 7.7. Rapid7 holds a 1.2% mindshare in EDR, compared to VMware’s 0.2% mindshare. Additionally, 95% of Rapid7 users are willing to recommend the solution, compared to 93% of VMware users who would recommend it.

Rapid7 InsightIDR

Read 32 Rapid7 InsightIDR reviews

7,657 Views
1,914 Comparison Views

95% willing to recommend

VMware Carbon Black Cloud

Read 18 VMware Carbon Black Cloud reviews

628 Views
383 Comparison Views

93% willing to recommend

Rapid7 InsightIDR

VMware Carbon Black Cloud

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Sep 9, 2024

Rapid7 InsightIDR and VMware Carbon Black Cloud are prominent cybersecurity solutions targeting enterprise environments. While VMware Carbon Black Cloud offers superior features and capabilities, Rapid7 InsightIDR excels in pricing and customer support.

Features: Rapid7 InsightIDR is known for its user-friendly incident detection and response capabilities, providing comprehensive visibility and automated alerting. VMware Carbon Black Cloud delivers advanced threat hunting functionalities, extensive endpoint coverage, and more robust features.

Room for Improvement: Rapid7 InsightIDR could benefit from better integration with third-party tools, enhanced reporting functionalities, and additional feature enhancements. VMware Carbon Black Cloud users point to the need for improved system performance, a reduction in false positives, and addressing performance lags due to its wider endpoint focus.

Ease of Deployment and Customer Service: Rapid7 InsightIDR receives high marks for easy deployment and excellent customer service with a guided setup process. VMware Carbon Black Cloud's deployment is more complex, requiring deeper initial system integration, but it maintains reputable customer support while falling slightly behind Rapid7 in overall service satisfaction.

Pricing and ROI: Rapid7 InsightIDR is praised for its cost-effectiveness, offering competitive pricing and satisfactory ROI. VMware Carbon Black Cloud, although more expensive, is justified by its advanced security features and extensive reach, making it worth the higher price for comprehensive endpoint protection.

To learn more, read our detailed Rapid7 InsightIDR vs. VMware Carbon Black Cloud Report (Updated: July 2025).

Buyer's Guide

Rapid7 InsightIDR vs. VMware Carbon Black Cloud

July 2025

Download the complete report

Helped 864,053 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Rapid7 InsightIDR

Ranking in Endpoint Detection and Response (EDR)

25th

Average Rating

8.4

Reviews Sentiment

7.4

Number of Reviews

Ranking in other categories

Security Information and Event Management (SIEM) (14th), User Entity Behavior Analytics (UEBA) (5th), Threat Deception Platforms (5th), Extended Detection and Response (XDR) (16th)

VMware Carbon Black Cloud

Ranking in Endpoint Detection and Response (EDR)

48th

Average Rating

8.4

Reviews Sentiment

7.2

Number of Reviews

Ranking in other categories

Security Incident Response (7th)

Mindshare comparison

As of July 2025, in the Endpoint Detection and Response (EDR) category, the mindshare of Rapid7 InsightIDR is 1.2%, up from 0.7% compared to the previous year. The mindshare of VMware Carbon Black Cloud is 0.2%, up from 0.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Endpoint Detection and Response (EDR)

Featured Reviews

Asim Naeem

Principal IT Security & Compliance at IBEX Holdings Ltd

Providing comprehensive insight into alerts while working towards AI enhancement

I definitely recommend Rapid7 InsightIDR. It is becoming better, with improvements being continuously made to the product. Right now, I do not have any advice about Rapid7 for other users because every organization or user has different criteria or multiple use cases, so I refrain from commenting on that. I rate the overall solution seven out of ten.

Read full review

Tom Kar

Senior Security Specialist at Sopra

Shows promise for endpoint detection and response, with room for improvement in complexity and pricing

VMware Carbon Black Cloud is a user-friendly solution that can isolate machines from the rest of the network. When a machine is quarantined, it cannot communicate with any other machines on the network except for the Carbon Black Cloud server. This allows you to investigate the machine without the risk of malware escaping to the network. Carbon Black Cloud's server can communicate with the quarantined machine through DNS and VSCP. This allows you to collect data from the machine, such as system logs, process activity, and registry changes. This data can be used to investigate the infection and determine the next steps. CrowdStrike and Cybereason are also popular EDR solutions. They offer similar features to VMware Carbon Black Cloud but may have different strengths and weaknesses. It is important to evaluate all of your options before choosing an EDR solution. Additionally, it is complex to use, and the pricing should be improved.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"It is a very stable solution."

"I rate Rapid7 nine out of 10 for affordability"

"I have seen that Rapid7 InsightIDR provides security to the networks and endpoints in the company."

"InsightIDR has allowed us to find potential security issues that we did not know existed, and get remediation quickly."

"It improves because several sensors are deployed within the on-premise environment. It can be very efficient if the customer implements and operates it effectively."

"Intelligent alerting to avoid the common problem of alert fatigue associated with traditional SIEMs."

"Enables the use of honey pots, honey users, and honey files to monitor for suspicious patterns."

"Rapid7's reporting is more robust than Tenable's."

More Rapid7 InsightIDR pros

"Integration and scalability are the most valuable."

"Carbon Black insures the probability that any ransomware will be stopped before spreading."

"The most valuable feature of VMware Carbon Black Cloud is the possibility of securing any PC worldwide."

"The most valuable feature is its ability to seek out abnormal activity and to create alerts."

"They're highly stable in comparison with other solutions I have."

"The solution does very well as a baseline EDR and provides good process-level management."

"Setting up and managing the setup for this solution is okay. It is stable, scalable, and it runs just fine. No issues with technical support."

"The market information they gather from the community is really good. Their configuration capabilities are good."

More VMware Carbon Black Cloud pros

Cons

"Rapid7 InsightIDR is not intuitive to search for logs. It should be more user-friendly and improve the dashboards. We should be able to use ready-made templates instead of having to build one."

"The product allows us to make only 30 custom rules."

"It would be useful to import threat intelligence in YARA format along with known incorrect email addresses."

"The searching feature in Rapid7 InsightIDR needs to evolve"

"I would like the ability to adjust the threshold of certain existing alerts. Currently the only option is to change the notifications or create my own alert."

"The integration capabilities of the solution have certain shortcomings where improvements are required."

"I would like to see more development in InsightIDR towards building their SIEM solution and converting it to XDR."

"One thing that springs to mind is easier API integration with ITSMs. We are evaluating a new ITSM and I would like to have InsightIDR create a ticket when an attack is identified, and the ticket would be closed in InsightIDR when the ITSM resolution is completed. This would take out the "single point of failure" we currently have, if the email recipient is somehow absent, in recording the risk appetite for the incident and the actions taken to mitigate or not."

More Rapid7 InsightIDR cons

"The cloud console has a lot of bugs and issues in the analysis part."

"They have different products, but if we wanted to take their protection and their EPR, then we would need to have two agents"

"They need to improve the batch console. It needs more capabilities. We are limited by the ones it provides..."

"Setup is incredibly complex and poorly documented. Every time an upgrade was needed we would need to engage Professional Services for troubleshooting help. Certificates and web services proved to be the most significant sticking points. Since the product runs on a Linux platform, perhaps having staff with more Linux experience could have alleviated some difficulty."

"It's not highly available, so you have to have a core server. If the primary server goes down, you need a new one. It's not available at the same time, however. It's not automatically swapped from one server to another."

"The biggest issue I encountered was one where old logs were not being overwritten as expected so the system drive kept filling up from time to time. However, support was usually quite responsive and happy to jump on a remote session to take a look at it for us. That log bug has probably been resolved with an update by now."

"There have been some performance issues when deploying on Windows Server, but I believe Carbon Black is working on that."

"The solution needs to simplify the process of adding custom watchlists, as well as embrace YARA for rule creation."

More VMware Carbon Black Cloud cons

Pricing and Cost Advice

"Rapid7 InsightIDR charges us based on the endpoints we connect to."

"Rapid7 InsightIDR's pricing is reasonable."

"Rapid7 InsightIDR is priced very well and is cost-effective."

"Licensing is straightforward. If, for some reason, you don’t meet the minimum licensing requirements, there is a third-party managed service that can help."

"The pricing is good, and it is not very expensive."

"I am sure that there are cheaper products out there, but none that meet so many of our needs whilst maintaining stability and usability."

"The pricing and licensing are competitive."

"I rate Rapid7 InsightIDR's price a four on a scale of one to ten, where one is cheap, and ten is expensive."

More Rapid7 InsightIDR pricing and cost advice

"You need to pay for the licensing of the product. The pricing is costly."

"Purchase Professional Services up front as part of the implementation package, then renew hours annually to ensure you have adequate support for upgrades and enhancements. Overbuy by at least 10% to account for infrastructure growth."

"The solution is very inexpensive so there is great cost savings to using it."

"VMware Carbon Black Cloud is an expensive solution."

"Pricing for this solution could be made lower."

"We had no issues purchasing through our preferred reseller and were able to get a fair price even when not purchasing direct. Carbon Black Enterprise Response didn’t break the bank, though adding on the matching antivirus and anti-malware components of the Protect product was more than we could afford, even with some discounting. Cb Response is really designed to complement Carbon Black’s Defense product. While Response can be used on its own, coupling with Defense seems like the best strategy if you can afford the price tag."

See which vendors are best for you

Use our free recommendation engine to learn which Endpoint Detection and Response (EDR) solutions are best for your needs.

See recommendations

864,053 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

15%

Manufacturing Company

Financial Services Firm

Government

Healthcare Company

Real Estate/Law Firm

Financial Services Firm

Computer Software Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What SOC product do you recommend?

For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...

See all answers

What do you like most about Rapid7 InsightIDR?

During simulations or demonstrations, the tool generates alerts, providing details such as the specific application, its origin, and potential threats. For instance, it can identify if an applicati...

See all answers

What is your experience regarding pricing and costs for Rapid7 InsightIDR?

The product pricing is very cheap.

See all answers

What to choose: an endpoint antivirus, an EDR solution or both?

I can recommend Carbon Black, an award-winning next-gen anti-virus (NGAV) and endpoint detection and response (EDR) security solution. The CB Predictive Security Cloud platform combines multiple hi...

See all answers

What's the difference between Carbon Black CB Response and Carbon Black CB Defense?

Carbon Black offers two different levels of Endpoint Detection and Response. One is the VM Carbon Black Cloud Endpoint Standard (CB Defense), and the other is the Carbon Black Endpoint Detection an...

See all answers

What do you like most about Carbon Black CB Response?

Threat hunting is the most valuable feature of VMware Carbon Black Cloud.

See all answers

Comparisons

Darktrace vs Rapid7 InsightIDR

Compared 9% of the time

Microsoft Sentinel vs Rapid7 InsightIDR

Compared 8% of the time

Rapid7 InsightVM vs Rapid7 InsightIDR

Compared 8% of the time

CrowdStrike Falcon vs Rapid7 InsightIDR

Compared 6% of the time

Splunk Enterprise Security vs Rapid7 InsightIDR

Compared 5% of the time

More Rapid7 InsightIDR Competitors

Splunk SOAR vs VMware Carbon Black Cloud

Compared 35% of the time

Palo Alto Networks Cortex XSOAR vs VMware Carbon Black Cloud

Compared 27% of the time

VMware Carbon Black Endpoint vs VMware Carbon Black Cloud

Compared 18% of the time

More VMware Carbon Black Cloud Competitors

Product Reports

Buyer's Guide

Rapid7 InsightIDR

July 2025

Download Rapid7 InsightIDR product report

Buyer's Guide

VMware Carbon Black Cloud

July 2025

Download VMware Carbon Black Cloud product report

Also Known As

InsightIDR

Carbon Black CB Response

Overview

Parsing hundreds of trivial alerts. Managing a mountain of data. Manually forwarding info from your endpoints. Forget that. InsightIDR instantly arms you with the insight you need to make better decisions across the incident detection and response lifecycle, faster.

Rapid7

Fortify Endpoint and Workload Protection Legacy approaches fall short as cybercriminals update tactics and obscure their actions. Get advanced cybersecurity fueled by behavioral analytics to spot minor fluctuations and adapt in response. Recognize New Threats Analyze attackers’ behavior patterns to detect and stop never-before-seen attacks with continuous endpoint activity data monitoring. Don’t get stuck analyzing only what’s worked in the past. Simplify Your Security Stack Streamline the response to potential incidents with a unified endpoint agent and console. Minimize downtime responding to incidents and return critical CPU cycles back to the business.

VMware

Sample Customers

Liberty Wines, Pioneer Telephone, Visier

ALLETE belk

Buyer's Guide

Rapid7 InsightIDR vs. VMware Carbon Black Cloud

July 2025

Free Report: Rapid7 InsightIDR vs. VMware Carbon Black Cloud

Find out what your peers are saying about Rapid7 InsightIDR vs. VMware Carbon Black Cloud and other solutions. Updated: July 2025.

DOWNLOAD NOW

864,053 professionals have used our research since 2012.

See our Rapid7 InsightIDR vs. VMware Carbon Black Cloud report.

See our list of best Endpoint Detection and Response (EDR) vendors.

We monitor all Endpoint Detection and Response (EDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.