We performed a comparison between Logpoint and Rapid7 InsightIDR based on real PeerSpot user reviews.
Find out in this report how the two Security Information and Event Management (SIEM) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."We have FortiEDR installed on all our systems. This protects them from any threats."
"he solution is an anti-malware product that integrates well with other vendor products such as firewalls, SIEM, etc. It captures threat intelligence and gives you better visibility. The product also has sandboxing features."
"I get alerts when scripts are detected in the environment."
"The ease of deployment and configuration is valuable. It's very easy compared to other vendors like Sophos. Sophos' configuration is complex. Fortinet is a lot easier to understand. You don't need a lot of admin knowledge to do the configuration."
"The solution was relatively easy to deploy."
"The price is low and quite competitive with others."
"Fortinet is very user-friendly for customers."
"Exceptions are easy to create and the interface is easy to follow with a nice appearance."
"It is a very comprehensive solution for gathering data. It has got a lot of capabilities for collecting logs from different systems. Logs are notoriously difficult to collect because they come in all formats. LogPoint has a very sophisticated mechanism for you to be able to connect to or listen to a system, get the data, and parse it. Logs come in text formats that are not easily parseable because all logs are not the same, but with LogPoint, you can define a policy for collecting the data. You can create a parser very quickly to get the logs into a structured mechanism so that you can analyze them."
"The flexibility of the search feature and the solution's analytics features are the most valuable parts of the solution."
"The integration is very user-friendly. There are not many CLI commands. Everything is directly accessible from the web interface."
"The most valuable feature of LogPoint is that they have the SIEM and SOAR combined in one solution. They are not on a separate platform."
"We like the user and entity behaviour analytics (UEBA) and find it valuable."
"Log collection, dashboards and reporting are good."
"The main advantage of Logpoint is the support service. They reply within ten minutes to an hour to our queries."
"It is an AI technology because it is using machine learning technology. So far, there is nothing better out there for UEBA in terms of monitoring endpoints and user activity. It is using machine learning language, so it is right at the top. It provides that capability and monitors all the activities. It devises a baseline and monitors if there is any deviation from the baseline."
"User behavioral analytics allows us to pinpoint abnormal or suspicious behavior among millions of events every day."
"Great coverage of all systems within our network from endpoint to firewall."
"The product works well. Stability-wise, I rate the solution a ten out of ten."
"The solution provides satisfying native integration features"
"Rapid7 InsightIDR integrates well with other solutions. It's also easy to configure because Rapid7 InsightIDR has a lot of instructions posted on their website that customers can follow if they need to get the source log."
"We were able to identify criminals attempting to login from China and put a stop on their IP locations."
"The solution is easy to use, and the interface is intuitive."
"I rate Rapid7 nine out of 10 for affordability"
"I would like the solution to extend beyond endpoint protection and include other attack surfaces such as other network components."
"The solution is not user-friendly."
"The SIEM could be improved."
"Intelligence aspects need improvement"
"I think cloud security and SASE are areas of concern in the product where improvements are required. The tool's cloud version has to be improved in terms of the security it offers."
"The security should be strong for the cloud. Some applications are on-prem and some are on the cloud. Fortinet should also have strong security for the cloud. There should be more security for the cloud."
"ZTNA can improve latency."
"The solution is not stable."
"LogPoint must find a way to integrate the servers without agents."
"One of the downsides is it is not a SaaS solution. It must be on-premises."
"We were missing visuals and graphics. Recently, a new version seems to have come out, and it has a new graphical user interface. When I was integrating it, it was usable, but the GUI needed improvement."
"Logpoint is not flexible. Its documentation is not user-friendly."
"It is complicated to collect daily logs from other systems."
"Nowadays the trend is going towards the ransomware and the endpoint detection and response. So if they added something for that, that will be very, very good."
"In terms of functionality, it is very good. The only issue is the documentation. Its documentation should be improved."
"The interface needs things like wizards that will assist with creating complex correlation rules."
"The solution needs improvement in threat intelligence. Increasing the depth of intelligence to help users understand more about threats is a possibility. My suggestion is to expand access to other websites or resources."
"It would be useful to import threat intelligence in YARA format along with known incorrect email addresses."
"Needs a better ability to customize the check within the console."
"One thing that springs to mind is easier API integration with ITSMs. We are evaluating a new ITSM and I would like to have InsightIDR create a ticket when an attack is identified, and the ticket would be closed in InsightIDR when the ITSM resolution is completed. This would take out the "single point of failure" we currently have, if the email recipient is somehow absent, in recording the risk appetite for the incident and the actions taken to mitigate or not."
"I feel it would greatly benefit from more supported log sources."
"Inability to get access to compliance reports within the solution."
"Sometimes, it is hard to get the right queries to use. Currently, the tool lacks a pre-made set of queries."
"Cloud risk assessment is one area where I think they need a lot of improvement."
Logpoint is ranked 26th in Security Information and Event Management (SIEM) with 20 reviews while Rapid7 InsightIDR is ranked 10th in Security Information and Event Management (SIEM) with 30 reviews. Logpoint is rated 7.4, while Rapid7 InsightIDR is rated 8.4. The top reviewer of Logpoint writes "Good technical support but it is complex to use and resource-heavy". On the other hand, the top reviewer of Rapid7 InsightIDR writes "Helps in the management of compliance, secret events and information". Logpoint is most compared with IBM Security QRadar, Elastic Security, Microsoft Sentinel, Wazuh and Fortinet FortiSIEM, whereas Rapid7 InsightIDR is most compared with Darktrace, Microsoft Sentinel, Splunk Enterprise Security, Rapid7 InsightVM and IBM Security QRadar. See our Logpoint vs. Rapid7 InsightIDR report.
See our list of best Security Information and Event Management (SIEM) vendors, best User Entity Behavior Analytics (UEBA) vendors, and best Endpoint Detection and Response (EDR) vendors.
We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.