We performed a comparison between Rapid7 Metasploit and Skybox Security Suite based on real PeerSpot user reviews.
Find out in this report how the two Vulnerability Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The solution is open source and has many small targetted penetration tests that have been written by many people that are useful. You can choose different subjects for the test, such as Oracle databases or Apache servers."
"Stability-wise, I rate the solution a nine out of ten...Scalability-wise, I rate the solution a nine out of ten."
"Rapid7 Metasploit is a useful product."
"The Search Engineering feature is good."
"It contains almost all the available exploits and payloads."
"The most valuable feature for us is the support for testing Linux-based web server components."
"It's not possible to do penetration testing without being very proficient in Metasploit."
"It allows us to concentrate solely on identified vulnerabilities without the hassle of additional setup."
"I think that compliance checks and policy compliance are the product's good features."
"Key features for us include the firewall change audit every week. Also, being able to track firewall ACL usage, so that we can produce semiannual reports on ACL usage and shadowed and redundant rules on the firewall."
"It's given us more visibility in terms of what are the kinds of configurations that are on these devices, and how many of these are stale rules. So it's helped greatly in terms of cleaning up of rules, for sure. And it has definitely given us a more secure way of backing up the configuration on these devices."
"The product's most valuable feature is vulnerability management."
"Aside from Firewall Assurance, we are using Network Assurance and Change Manager for an overview of the whole network and for documenting requests and the recertification of the ruleset."
"Correlates logs and threats and prioritizes; provides network maps;p provides change result context and resulting vulnerability."
"The performance could be good because we chose it at the time, but it is too complex for us to appreciate its performance because we lack the necessary skills."
"The solution's most valuable and unique assets are the vulnerability management and change management solutions because they identify mistakes in the network before implementation which reduces risks."
"The solution is not user-friendly and has room for improvement."
"The solution is not very scalable, it does not provide any automation to be able to scale it."
"If your company's patch is not up to date, but you have other detection or defense solutions such as endpoint detection and response and antivirus software, the product exploit may not work effectively. This is because its exploit database update process is slow and not real-time. For zero-day vulnerabilities or new security threats, relying on Rapid7 Metasploit alone may not be effective."
"There are numerous outdated exploits in their database that should be updated."
"We'd like them to offer better coverage of malware."
"At the time I was using it, the graphical user interface needed some improvements."
"Advanced Infrastructure should be implemented in the next release for better orchestration."
"Rapid7 Metasploit could be made easier for new users to learn."
"The Network Assurance, which helps to create the network model, is not so rich."
"They are not satisfied with the complexity of the solution and the price."
"During implementation, we realised approximately 30 devices were not supported by the Skybox platform."
"The vendor's support is terrible."
"The solution needs to add more automation and orchestration capabilities. Those features would make the solution much stronger."
"The only place where Skybox has room for improvement, and they're working on releasing this, it's just a slow-go, is the UI. The user interface has historically been via a locally installed thick client. They are moving to a web-based console and it's slowly coming out."
"It's expensive."
"The solution needs to move improve its interface to a full web browser version that is more accessible and doesn't require installation for use."
Rapid7 Metasploit is ranked 12th in Vulnerability Management with 18 reviews while Skybox Security Suite is ranked 19th in Vulnerability Management with 34 reviews. Rapid7 Metasploit is rated 7.6, while Skybox Security Suite is rated 7.8. The top reviewer of Rapid7 Metasploit writes "Helps find vulnerabilities in a system to determine whether the system needs to be upgraded". On the other hand, the top reviewer of Skybox Security Suite writes "Efficient in vulnerability management, stable and easy to use ". Rapid7 Metasploit is most compared with Tenable Nessus, Pentera, Rapid7 InsightVM, Acunetix and Nucleus, whereas Skybox Security Suite is most compared with AlgoSec, Tufin Orchestration Suite, FireMon Security Manager, Palo Alto Networks Panorama and RedSeal. See our Rapid7 Metasploit vs. Skybox Security Suite report.
See our list of best Vulnerability Management vendors.
We monitor all Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.