We performed a comparison between PortSwigger Burp Suite Enterprise Edition and Rapid7 InsightVM based on real PeerSpot user reviews.
Find out in this report how the two Dynamic Application Security Testing (DAST) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The product's initial setup phase was super easy."
"This tool helps identify vulnerabilities. We then provide the report to the developers, who address the issues identified automatically. Its most valuable feature is CI/CD integration."
"The initial setup is straightforward."
"We are in the early stage of using the solution making it difficult to fully determine the best features. However, we have noticed the CMDB and device discovery features look valuable at this time."
"Parallel scans can be done with PortSwigger Burp Suite Enterprise Edition."
"The solution's extensions really expand the capabilities and features offered by the installation."
"The tool is loaded with many features that give us ROI."
"The product is easy to use."
"InsightVM's best features are the vulnerability database and remediation steps."
"Rapid7 InsightVM has given us a practical view of the vulnerabilities present in our organization."
"Using Rapid7, we can install a scan engine, we can do our VPN connections, and we can conduct internal scans of remote sites. We prefer the web application. It's smarter and more accurate from an application perspective."
"NeXpose is a pretty good vulnerability scanner... There's a nice dashboard."
"I like Rapid7's scan optimization options."
"I really love the new platform. It is really easy to understand, use, and deploy."
"The solution is automatically scheduled so it runs by itself."
"The most valuable feature for me is the risk calculation based on monthly effects."
"The cost per license per user could be cheaper, specifically for individual licensing."
"The implementation of the solution is quite complicated and could be easier."
"There's definitely room for improvement. There are lots of false positives. Once I do the manual assessment, it comes as a false positive. They need to improve the Enterprise Edition, especially the part that gives false positives."
"PortSwigger Burp Suite Enterprise Edition should incorporate a static code analysis feature. One main issue we encounter is false positives. False positives can be challenging for developers."
"The solution is a bit expensive."
"It would be better if the solution is cloud-based."
"There are features or functionality missing, but PortSwigger Burp Suite Enterprise Edition does try to update frequently to alleviate the shortcomings."
"The product needs to have the ability to evaluate more."
"The on-premise updates could improve from Rapid7 InsightVM."
"The InsightVM cannot scan if we connect to our customer by the VPN."
"The solution should include a tighter integration with third-party threat modeling and threat intelligence tools."
"The reporting is a little bit tricky because it can be difficult to exactly pinpoint some of the assets to filter them and generate a report."
"They should integrate the solution with multiple products."
"Patch management is the only missing feature I can think of. Rapid7 detects vulnerabilities, but it should also help you manage patches."
"This solution integrates with another module in Metasploit, that doesn't exist in the other solutions. It is subscribed to on our roadmap, but we chose to implement both Nexppose and AppSpider."
"There are certain limitations because of the product being used on a hybrid model. Rapid7 InsightVM doesn't offer a solution purely in the cloud."
More PortSwigger Burp Suite Enterprise Edition Pricing and Cost Advice →
PortSwigger Burp Suite Enterprise Edition is ranked 4th in Dynamic Application Security Testing (DAST) with 10 reviews while Rapid7 InsightVM is ranked 4th in Risk-Based Vulnerability Management with 55 reviews. PortSwigger Burp Suite Enterprise Edition is rated 8.0, while Rapid7 InsightVM is rated 8.0. The top reviewer of PortSwigger Burp Suite Enterprise Edition writes " With a super easy initial setup phase, the tool also offers regular updates". On the other hand, the top reviewer of Rapid7 InsightVM writes "You can scan a network, and receive recommendations to address vulnerabilities with the click of a button". PortSwigger Burp Suite Enterprise Edition is most compared with Acunetix, Tenable Nessus, Rapid7 Metasploit, Tenable Vulnerability Management and JFrog Xray, whereas Rapid7 InsightVM is most compared with Tenable Nessus, Qualys VMDR, Tenable Security Center, Microsoft Defender Vulnerability Management and Wiz. See our PortSwigger Burp Suite Enterprise Edition vs. Rapid7 InsightVM report.
We monitor all Dynamic Application Security Testing (DAST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.