Carasoft Services for Rapid 7 could be improved in terms of integration of Windows log sources. Rapid 7 SIEM has a feature whereby I can integrate Active Directory. However, when I want to integrate system logs, application logs, and everything from my event viewer, Rapid 7 does not have a customized feature for that. Most times, I have to leverage NXLog, which is not ideal. It would be better to have a ready-to-go plugin for it. Additionally, for InsightConnect, an orchestrator, sometimes when I am integrating with third-party ticketing solutions, SNMP might give me issues. Finally, the TLS feature of Rapid 7 is a bit unreliable.
Carasoft Services for Rapid 7 could be improved in terms of integration of Windows log sources. Rapid 7 SIEM has a feature whereby I can integrate Active Directory. However, when I want to integrate system logs, application logs, and everything from my event viewer, Rapid 7 does not have a customized feature for that. Most times, I have to leverage NXLog, which is not ideal. It would be better to have a ready-to-go plugin for it. Additionally, for InsightConnect, an orchestrator, sometimes when I am integrating with third-party ticketing solutions, SNMP might give me issues. Finally, the TLS feature of Rapid 7 is a bit unreliable.