We performed a comparison between Darktrace and Rapid7 InsightIDR based on real PeerSpot user reviews.
Find out what your peers are saying about Microsoft, Cisco, TitanHQ and others in Email Security."The basic features are okay and I'm satisfied with the Defender."
"Safe attachments, safe links, policies, and the ability to protect from zero-day threats are the most valuable features."
"Microsoft Defender for Office 365 has improved my organization's security. It makes it easier to manage the infrastructure without the help of third-party applications."
"The benefit that stands out to me is the ability for multiple individuals to collaborate simultaneously within the same document. Additionally, there is the option to save the document directly in the integrated OneDrive or SharePoint."
"The two main features that prove most beneficial for us are URL scanning and attachment scanning."
"The product's scalability is good."
"It also gives the vulnerability status according to the versions you have selected. Let's say you have Google Chrome. It mentions the versions it has, and it updates. Within two hours of an update, it is reflected in the dashboard. That's really nice to have."
"Microsoft Defender for Office 365's most valuable feature is its performance."
"The NDR is good in their solution and they have NTG for email."
"Darktrace is very flexible."
"Darktrace's most valuable features are that it understands the network environment and is able to trace the traffic and alert on anomalies."
"A very useful feature in Darktrace for real-time threat analysis is the packet inspection that analyzes the packet traffic in real time."
"The solution can scale."
"The most valuable feature is the alerts. The alerts are meaningful. The event rolls up into meaningful and actionable alerts rather than just being noise."
"The product offers us a very good user interface and we've found the network visibility to be very good so far."
"The initial setup is simple."
"The web interface is great — very useful and user-friendly."
"Intelligent alerting to avoid the common problem of alert fatigue associated with traditional SIEMs."
"Rapid7 is easy to use and deploy. It is a simple solution and has easy data pulling."
"I have seen that Rapid7 InsightIDR provides security to the networks and endpoints in the company."
"I like that it's a cloud-based solution."
"We were able to identify criminals attempting to login from China and put a stop on their IP locations."
"The solution is very scalable in terms of the licensing model."
"The incident case management is the most valuable feature. Even though there's always something I find I would like to add to that feature, the ability to quickly sort through all the logs, network and endpoint data, etc., and add it to an incident case as part of the investigation, is nice. Having it automatically timeline that additional data into the original incident timeline, and correlate it to other notable events and activities on the network, results in a huge improvement in our overall confidence that we've quickly traced down the right source of an issue."
"Microsoft Defender for Office 365 should be more proactive."
"The product must provide better malware detection."
"Microsoft security solutions work as expected. They are constantly updating the solutions to make them better. At the same time, the changes can impact a customer's environment, and we need to adjust settings. Sometimes we aren't aware of the changes, and nothing is pushed from the backend automatically."
"The custom alerts have to improve a lot."
"The certification training for Defender for 365 needs to be deeper and incorporate Sentinel. I took all the security courses except one, and Sentinel isn't included."
"Microsoft Defender for Office 365 should improve the troubleshooting tools. It's unclear whether the device is blocked at the firewall level or at the device itself. The granularity needed for troubleshooting is currently lacking. From my perspective, Microsoft should address this issue to benefit many users who likely share the same sentiment."
"You should be able to deploy Defender for every subscription without the need to add servers."
"Too many false positives and lacks an accurate capability to detect malicious SharePoint sites."
"In an upcoming release, there could be more customizable playbooks or a library of playbooks to choose from."
"There aren't so many third-party vendor platforms natively integrated with the platform."
"I would like to see some additional enhancements."
"Needs to improve its collaboration with local partners."
"Darktrace requires numerous configurations. It would be beneficial if the configuration could be made simpler."
"It would be helpful if they could recognize incidents and simplify the customer's challenge to identify what is happening."
"A reporting portal could be a great addition to help customize reports."
"Its threat analyzer could be better. It should also have agents. They should improve this product by installing agents for the machine to get more visibility. Currently, they are monitoring only the network. They should also monitor the agents from inside. It should also have a better pricing plan because it is an expensive product."
"The main problem lies in the processes within the client's operating systems."
"I would like the ability to adjust the threshold of certain existing alerts. Currently the only option is to change the notifications or create my own alert."
"Lacks a mobile application."
"The integration capabilities of the solution have certain shortcomings where improvements are required."
"InsightIDR's integration with other solutions could be improved. Also, I'd like more control from the portal over what's happening on the endpoint side. For example, when I see an attack on an endpoint, I want to be able to stop it from the portal."
"The ability to tune the collector for custom logs would greatly help."
"The solution's XDR agents cannot compete with the XDR solutions out there yet."
"The solution needs improvement in threat intelligence. Increasing the depth of intelligence to help users understand more about threats is a possibility. My suggestion is to expand access to other websites or resources."
More Microsoft Defender for Office 365 Pricing and Cost Advice →
Darktrace is ranked 11th in Email Security with 66 reviews while Rapid7 InsightIDR is ranked 10th in Security Information and Event Management (SIEM) with 30 reviews. Darktrace is rated 8.2, while Rapid7 InsightIDR is rated 8.4. The top reviewer of Darktrace writes "Great autonomous support, offers an easy setup, and has responsive support". On the other hand, the top reviewer of Rapid7 InsightIDR writes "Helps in the management of compliance, secret events and information". Darktrace is most compared with CrowdStrike Falcon, Vectra AI, SentinelOne Singularity Complete, Cortex XDR by Palo Alto Networks and Trend Micro Deep Discovery, whereas Rapid7 InsightIDR is most compared with Microsoft Sentinel, Splunk Enterprise Security, Rapid7 InsightVM, IBM Security QRadar and Microsoft Defender for Identity.
We monitor all Email Security reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.