Try our new research platform with insights from 80,000+ expert users
Rapid7 InsightVM Logo

Rapid7 InsightVM Reviews

Vendor: Rapid7
4.0 out of 5
Badge Leader
Leave a review

What is Rapid7 InsightVM?

Rapid7 InsightVM is a comprehensive vulnerability management platform that protects your systems from attackers and is easy to scale. The solution provides easy access to vulnerability management, application security, detection and response, external threat intelligence, orchestration and automation, and more. Rapid7 InsightVM is ideal for security, IT, and DevOps teams, helping them reduce risk by enabling them to detect and respond to attacks quickly.

Get the Rapid7 InsightVM Buyer's Guide and find out what your peers are saying about Rapid7 InsightVM, Wiz, Snyk and more!
Rapid7 InsightVM is the #4 ranked solution in top Risk-Based Vulnerability Management solutions. PeerSpot users give Rapid7 InsightVM an average rating of 8.0 out of 10. Rapid7 InsightVM is most commonly compared to Wiz: Rapid7 InsightVM vs Wiz. Rapid7 InsightVM is popular among the large enterprise segment, accounting for 57% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a financial services firm, accounting for 13% of all views.
Buyer's Guide
Rapid7 InsightVM
December 2025
Get the report
Helped 880,435 peers since 2012

Featured Rapid7 InsightVM reviews

Read more reviews

Rapid7 InsightVM mindshare

Product category:
Risk-Based Vulnerability Management
As of January 2026, the mindshare of Rapid7 InsightVM in the Risk-Based Vulnerability Management category stands at 11.0%, down from 13.2% compared to the previous year, according to calculations based on PeerSpot user engagement data.
Risk-Based Vulnerability Management Market Share Distribution
ProductMarket Share (%)
Rapid7 InsightVM11.0%
Qualys VMDR12.7%
Tenable Security Center9.0%
Other67.3%
Risk-Based Vulnerability Management

PeerResearch reports based on Rapid7 InsightVM reviews

TypeTitleDate
CategoryRisk-Based Vulnerability ManagementJan 16, 2026Download
ProductReviews, tips, and advice from real usersJan 16, 2026Download
ComparisonRapid7 InsightVM vs Qualys VMDRJan 16, 2026Download
ComparisonRapid7 InsightVM vs Tenable Security CenterJan 16, 2026Download
ComparisonRapid7 InsightVM vs Tenable Vulnerability ManagementJan 16, 2026Download
Suggested products
TitleRatingMindshareRecommending
Wiz4.5N/A96%33 interviewsAdd to research
Snyk4.1N/A100%50 interviewsAdd to research
 
 
Key learnings from peers
Last updated Nov 16, 2025

Valuable Features

Rapid7 InsightVM users highlight the effective vulnerability scanning and remediation advice. Its customizable dashboards allow tailored asset management. Integration capabilities, especially with platforms like Metasploit and Jira, enhance utility. Users appreciate the intuitive interface, stable performance, and scalability. The Live Risk Score and comprehensive reporting assist in compliance and informed decision-making. Features like site and agentless scanning, and connectivity with other tools ensure efficient cybersecurity management.
  • "Rapid7 InsightVM is an on-premise type product that has helped us manage potential vulnerabilities effectively."
  • "With Rapid7 InsightVM, the deployment process is more user-friendly."
  • "The most valuable feature of the Rapid7 InsightVM solution is the Live Risk Score."

Room for Improvement

Rapid7 InsightVM faces challenges with reporting, limited templates, and integration issues, particularly with third-party tools and ticketing systems. Users struggle with false positives, memory consumption, and registration constraints. More automation, enhanced API, and a user-friendly dashboard are desired. Navigating assets and scans often proves complicated, and better customer support, especially immediate technical assistance, is frequently suggested. Users also seek improved patch management, cloud capabilities, and seamless VPN operation, with many advocating for comprehensive vulnerability assessments and real-time updates.
  • "Rapid7 InsightVM on-premise version is not that effective in the web-related systems."
  • "Customer support in Rapid7 InsightVM could be improved. The response time needs improvement."
  • "The automation capability remediation needs improvement."

ROI

Users reported a positive return from Rapid7 InsightVM, with cybersecurity benefits such as preventing cyber attacks and contributing to cost savings. The security scanner aids in managing and monitoring vulnerabilities. Users find it essential for understanding issues within their systems. The service, being subscription-based, aligns with budgetary needs and offers flexibility compared to owning hardware. Although assessments vary, many express satisfaction with its investment merits, indicating a favorable outcome.

Pricing

Rapid7 InsightVM's pricing is asset-based, flexible, and competitive compared to other market solutions. Many users mention it as expensive, yet find the value justifies the cost. Licensing is typically annual, starting at 128 IPs and scaling to over 1,000, with fees around $40,000 to $100,000 per year, depending on asset coverage. Support is generally included without extra cost, and the solution offers good bundle options, making it appealing to various enterprise clients.
  • "The tool's price is neither too high nor too low. My company needs to pay 65,000 per year. There are no additional costs apart from the licensing fees attached to the solution."
  • "The product is cheaper than the other similar tools available in the market."
  • "It is less expensive compared to other competitors."

Popular Use Cases

Rapid7 InsightVM is primarily utilized for vulnerability management and assessment, focusing on identifying and remediating vulnerabilities across networks and systems. Organizations implement it to enhance cybersecurity by scanning internal and external environments, tracking assets, and providing patch recommendations. It aids in configuration checks, monitoring real-time vulnerabilities, and ensuring compliance with security standards. Users often apply it in both on-premises and cloud environments, leveraging its scanning capabilities to strengthen defenses and manage network visibility.

Service and Support

Rapid7 InsightVM's customer service is generally appreciated for its quality, although response times need improvement, sometimes due to regional differences. Technical support is described as knowledgeable and responsive, though some find it slow. Others note that while some cases are resolved quickly, particularly notable cases require faster responses. Users find the staff friendly and attentive, yet improvements could enhance their effectiveness, especially in critical situations requiring urgent assistance. Ratings vary, reflecting diverse experiences.

Deployment

Rapid7 InsightVM's initial setup is described as straightforward and non-complex by many users. Installation and deployment typically take between a few hours to a couple of days, depending on factors such as the size and complexity of the infrastructure. Some mention that initial configurations require understanding of the technology to be scanned. Users who are experienced find the setup easier, while those new to it may encounter a learning curve.

Scalability

Rapid7 InsightVM is highly scalable, accommodating varying organizational needs with ease. It supports expansion through additional licenses and scan engines, adapting to environments with thousands of devices without significant issues. Users report effective scalability from small to large enterprise contexts, with flexibility for distributed setups. Some indicate potential slowdowns in reporting with very large environments, yet Rapid7 InsightVM remains suitable for vast numbers of assets and users, consistently earning high scalability ratings.

Stability

Rapid7 InsightVM is consistently praised for its stability, regularly rated between eight to ten by users. It operates seamlessly without bugs, glitches, or crashes. While it has minor communication issues and some memory consumption, it generally runs smoothly on Linux. Challenges include occasional cloud reporting issues and resource concerns, often linked to user setups, not the software itself. Users appreciate its ability to integrate with other platforms, acknowledging its solid and reliable performance.
These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.
Download our Rapid7 InsightVM Buyer's Guide for additional reliable information.

Review data by company size

By reviewers
Company SizeCount
Small Business24
Midsize Enterprise13
Large Enterprise22
By reviewers
By visitors reading reviews
Company SizeCount
Small Business287
Midsize Enterprise192
Large Enterprise631
By visitors reading reviews

Top industries

By visitors reading reviews
Financial Services Firm
13%
Manufacturing Company
11%
Computer Software Company
9%
Government
6%
Healthcare Company
5%
Insurance Company
5%
Comms Service Provider
4%
University
4%
Retailer
4%
Educational Organization
4%
Performing Arts
4%
Real Estate/Law Firm
3%
Outsourcing Company
3%
Wholesaler/Distributor
3%
Media Company
2%
Construction Company
2%
Energy/Utilities Company
2%
Non Profit
2%
Hospitality Company
2%
Logistics Company
2%
Legal Firm
2%
Transportation Company
1%
Consumer Goods Company
1%
Recreational Facilities/Services Company
1%
Pharma/Biotech Company
1%
Marketing Services Firm
1%
Wellness & Fitness Company
1%
Aerospace/Defense Firm
1%

Compare Rapid7 InsightVM with alternative products

Go!

Learn more about Rapid7 InsightVM

Rapid7 InsightVM Features

Rapid7 InsightVM has many valuable key features. Some of the most useful ones include:

  • Automated containment: With this feature, you can decrease exposure from vulnerabilities by automatically implementing temporary (or permanent) compensating controls via your network access control (NAC) systems, firewalls, and endpoint detection and response tools.
  • Policy assessment: Rapid7 InsightVM offers pre-built scan templates for common compliance requirements. The solution helps you take clear, actionable steps to compliance once you have assessed your risk posture. In addition, Rapid7 InsightVM’s Custom Policy Builder allows you to modify existing benchmarks or create new policies from scratch.
  • REST API: Rapid7 InsightVM REST API is easy to use and was built to easily automate virtually any aspect of vulnerability management, from data collection to risk analysis.
  • Live dashboards: Rapid7 InsightVM includes dashboards that are live and interactive by nature. The live dashboards enable you to create custom cards and full dashboards for anyone in your organization and allow you to track progress of your security program.
  • Automation-assisted patching: Rapid7 InsightVM’s automation-assisted patching gives you the autonomy to make key decisions in your patching process, such as your approval to apply certain patches to certain vulnerabilities.
  • Real risk prioritization: Rapid7 InsightVM makes it simple to know which vulnerabilities need to be prioritized and where your riskiest assets lie.
  • Goals and SLA’s: This feature enables you to make and track progress toward your goals and service level agreements (SLAs) at an appropriate pace.

Rapid7 InsightVM Benefits

There are many benefits to implementing Rapid7 InsightVM. Some of the biggest advantages the solution offers include:

  • Attack surface monitoring for maintained visibility: By leveraging attack surface monitoring with Project Sonar (a Rapid7 research project that regularly scans the internet to gain insights into global exposure to common vulnerabilities), you can gain more control of all of your external-facing assets, both known and unknown.
  • Container security: Rapid7 InsightVM integrates with your CI/CD tools, public container repositories, and private repositories to assess container images for vulnerabilities during the build process even before they are deployed.
  • Lightweight endpoint agent: Rapid7 InsightVM unifies data so you only need to install a single agent for continuous vulnerability assessment, incident detection, and log data collection.
  • Easily assign and track remediation duties: Using Rapid7 InsightVM, IT and security teams can assign as well as track remediation duties without having to deal with remediation reports, complex spreadsheets, or back-and-forth email tags.
  • Integration with cloud services and virtual infrastructure: Rapid7 InsightVM provides full visibility into risk across your physical, virtual, and cloud infrastructure.
  • Integrated threat feeds: Rapid7 InsightVM is designed with integrated threat feeds, giving you a dynamic view that shows you which threats are most relevant to your environment, enabling you to better protect against current, impending threats so you can react quickly to critical vulnerabilities.

Reviews from Real Users

Below are some reviews and helpful feedback written by PeerSpot users currently using the Rapid7 InsightVM solution.

An owner at a tech services company says, "I liked the dashboard on it. I could customize my dashboard with different widgets and different heat maps."

PeerSpot user Kimeang S., Technical Consultant at Yip Intsoi, mentions, "The most important aspect of the solution is that it rarely gives false positives, especially compared to other products. It provides very clear reports for our IT teams to look at."

A Director of Information Technology at a government explains, "The main functionality of identifying item endpoints that weren't properly patched or had vulnerabilities is the solution's most valuable feature."

Rapid7 InsightVM was previously known as InsightVM, NeXpose.

Rapid7 InsightVM customers

ACS, Acosta, AllianceData, amazon.com, biogen idec, CBRE, CATERPILLAR, Deloitte, COACH, GameStop, IBM

Related questions

  • 42
How would you choose between Rapid7 InsightVM and Tenable Nessus?
  • 12
When evaluating Cloud Security Remediation, what aspect do you think is the most important to look for?
  • 32
Why is Risk-Based Vulnerability Management important for companies?

Product Categories

Product Categories
Risk-Based Vulnerability Management
Vulnerability Management

Popular Comparisons

Popular Comparisons
Wiz vs Rapid7 InsightVM Logo
Wiz vs Rapid7 InsightVM
Snyk vs Rapid7 InsightVM Logo
Snyk vs Rapid7 InsightVM
Qualys VMDR vs Rapid7 InsightVM Logo
Qualys VMDR vs Rapid7 InsightVM
Tanium vs Rapid7 InsightVM Logo
Tanium vs Rapid7 InsightVM
Tenable Nessus vs Rapid7 InsightVM Logo
Tenable Nessus vs Rapid7 InsightVM
Tenable Security Center vs Rapid7 InsightVM Logo
Tenable Security Center vs Rapid7 InsightVM
Orca Security vs Rapid7 InsightVM Logo
Orca Security vs Rapid7 InsightVM
Tenable Vulnerability Management vs Rapid7 InsightVM Logo
Tenable Vulnerability Management vs Rapid7 InsightVM
Acunetix vs Rapid7 InsightVM Logo
Acunetix vs Rapid7 InsightVM
FortiCNAPP vs Rapid7 InsightVM Logo
FortiCNAPP vs Rapid7 InsightVM
Microsoft Defender Vulnerability Management vs Rapid7 InsightVM Logo
Microsoft Defender Vulnerability Management vs Rapid7 InsightVM
Armis vs Rapid7 InsightVM Logo
Armis vs Rapid7 InsightVM
The NodeZero Platform by Horizon3.ai vs Rapid7 InsightVM Logo
The NodeZero Platform by Horizon3.ai vs Rapid7 InsightVM
Red Canary vs Rapid7 InsightVM Logo
Red Canary vs Rapid7 InsightVM
XM Cyber vs Rapid7 InsightVM Logo
XM Cyber vs Rapid7 InsightVM
See all alternatives
 
Rapid7 InsightVM Reviews Summary
Author infoRatingReview Summary
Senior Manager - Pre-Sales at Trillium Information Security Systems3.5I use Rapid7 InsightVM for vulnerability assessment of assets to identify and remediate vulnerabilities. The Live Risk Score feature is valuable, though I feel the automation in remediation needs improvement, as it's currently a manual process.
Enterprise Security Architect at a energy/utilities company with 10,001+ employees4.0I use Rapid7 InsightVM for effective vulnerability scanning, appreciating its agentless capabilities and risk scoring system. While it surpasses QualysGuard in user-friendliness, its customer support response time needs improvement. I deploy it through Microsoft Azure.
Head of Cyber Security at Super Secure3.0We resell Rapid7 InsightVM to enhance cybersecurity for banks and manufacturers. While valued for robust features, the key improvement area is prompt support. Its subscription model offers budget flexibility, competing with Tenable and Invicti, despite some escalated technical challenges.
Manager at a financial services firm with 5,001-10,000 employees3.0I've used Rapid7 InsightVM on-premise for several years to identify OS-level vulnerabilities effectively, though it lacks robust web-related features and dashboard flexibility, making the tool average in value despite solid visualization and historical tracking capabilities.
Professional services team lead at a tech services company with 1,001-5,000 employees4.0No summary available
Manager, Information Security at ePlus Technology4.0No summary available
IT Manager at Hermanus Investments, LLC4.5I use Rapid7 InsightVM in my company for cybersecurity, valuing its agent and scanning features. It needs faster updates between the cloud and scanner. Despite this, it provides cost-saving benefits and is superior to alternatives like Nessus, offering comprehensive network security.
0 at a tech vendor with 5,001-10,000 employees4.5I find Rapid7 InsightVM valuable for its connectivity and integration with SIEM and antivirus solutions, although it could be more user-friendly. I recommend Tenable Nessus for its cost-effectiveness, having experience with it in previous roles.