We performed a comparison between Rapid7 InsightVM and Rapid7 Metasploit based on real PeerSpot user reviews.
Find out in this report how the two Risk-Based Vulnerability Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The cost is what is most valuable. Compared to the other products on the market, the cost is more palatable."
"The main functionality of identifying item endpoints that weren't properly patched or had vulnerabilities is the solution's most valuable feature."
"The product's initial setup phase was very easy."
"When it comes to the process, installation is very easy and does not take long."
"The assessment is most valuable."
"InsightVM offers a robust platform for identifying, prioritizing, and addressing vulnerabilities across an organization's IT infrastructure."
"One of the most valuable features is it's graphical dashboard feature. It is quite easy to manage the widgets, and we can customize those according to our queries."
"The product is scalable."
"It allows us to concentrate solely on identified vulnerabilities without the hassle of additional setup."
"I use Rapid7 Metasploit for payload generation and Post-Exploitation."
"I don't have any other tools like it, and I always use it when I'm doing a pen test. Metasploit is a great solution for penetration testing,"
"It is scalable. It's in line with our needs."
"The most valuable feature for us is the support for testing Linux-based web server components."
"Technical support has been helpful and responsive."
"Rapid7 Metasploit is a useful product."
"The most valuable features of the solution are the scripts, the modules, and the tools that the Rapid7 Metasploit framework has."
"Some difficulties with the online reporting and lack of integrations."
"Patch management is the only missing feature I can think of. Rapid7 detects vulnerabilities, but it should also help you manage patches."
"A definite improvement would be to make it easier to run ad-hoc scans without needing to assign the asset to a site or group."
"There is a significant learning curve, that non-technical individuals, especially those not specialized in computer science or the information security industry, might face."
"Rapid7 could be easier to manage."
"I would like to see more integration."
"InsightVM could be improved by providing passive scanning as an option."
"There have been instances where technical support takes a long time to update the status of a ticket, which is something that can be improved."
"It is necessary to add some training materials and a tutorial for beginners."
"Metasploit cannot be installed on a machine with an antivirus."
"Rapid7 Metasploit could be made easier for new users to learn."
"If your company's patch is not up to date, but you have other detection or defense solutions such as endpoint detection and response and antivirus software, the product exploit may not work effectively. This is because its exploit database update process is slow and not real-time. For zero-day vulnerabilities or new security threats, relying on Rapid7 Metasploit alone may not be effective."
"There are numerous outdated exploits in their database that should be updated."
"Rapid7 Metasploit can add a GUI feature because it is only available online."
"Better automation capabilities would be an improvement."
"I would like to see more capabilities, more functions, and more features. More types of attack vectors."
Rapid7 InsightVM is ranked 4th in Risk-Based Vulnerability Management with 55 reviews while Rapid7 Metasploit is ranked 13th in Vulnerability Management with 18 reviews. Rapid7 InsightVM is rated 8.0, while Rapid7 Metasploit is rated 7.6. The top reviewer of Rapid7 InsightVM writes "You can scan a network, and receive recommendations to address vulnerabilities with the click of a button". On the other hand, the top reviewer of Rapid7 Metasploit writes "Helps find vulnerabilities in a system to determine whether the system needs to be upgraded". Rapid7 InsightVM is most compared with Tenable Nessus, Qualys VMDR, Tenable Security Center, Microsoft Defender Vulnerability Management and Lacework, whereas Rapid7 Metasploit is most compared with Tenable Nessus, Pentera, Acunetix, Nucleus and Wireshark. See our Rapid7 InsightVM vs. Rapid7 Metasploit report.
We monitor all Risk-Based Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.