We performed a comparison between Darktrace and Rapid7 InsightIDR based on real PeerSpot user reviews.
Find out what your peers are saying about Microsoft, Cisco, TitanHQ and others in Email Security."It also gives me good visibility because, with Defender, I'm using a Microsoft product to defend Microsoft products. The integration was really seamless and I have wide visibility because it picks up almost everything. Literally, I can see almost every activity that happens, from the e-mail to the workstation itself."
"Microsoft Defender for Office 365 has improved my organization's security. It makes it easier to manage the infrastructure without the help of third-party applications."
"It gives us visibility into threats and, for endpoints, it helps us to prioritize threats. We used to have a lack of visibility, but now our time to detect and respond has decreased."
"The most valuable feature is the integration. It's a single console, so we don't have to switch around between multiple products. Another valuable feature is the ease of operations and maintenance."
"Does a thorough job of examining email and URLs for malicious content."
"Since we have started using the solution, there have been fewer compromises."
"The initial setup was easy."
"Safe attachments, safe links, policies, and the ability to protect from zero-day threats are the most valuable features."
"The ability to detect activity on the network is very useful to us. Even if it's not necessarily an illegal activity, if it is abnormal activity, it is able to detect it and notify us."
"The most valuable feature is the solution's ability to trim out the false positives and point your attention to the real important stuff."
"The most valuable feature is that it works autonomously."
"Darktrace's most valuable features are that it understands the network environment and is able to trace the traffic and alert on anomalies."
"It is a stable solution without downtime."
"The NDR is good in their solution and they have NTG for email."
"I like the Antigena feature in Darktrace, as it offers immediate response and is helpful."
"The most valuable feature of this solution is that it does not require human intervention to eliminate a threat."
"The UI is very good."
"Simple configuration and automatically syncs to the cloud platform."
"Enables the use of honey pots, honey users, and honey files to monitor for suspicious patterns."
"It improved my organization by building a security alerting program."
"The solution is very scalable in terms of the licensing model."
"Very intuitive and easy to set up."
"Scalability-wise, I rate the solution a ten out of ten. As a cloud tool, the product is highly scalable."
"Log search allows us to dive deep into aggregated logs and query all event types at once."
"There's room for improvement regarding the time frame for retrieving emails."
"The visibility for the weaknesses in the system and unauthorized access can be improved."
"The UI needs to be more user-friendly."
"Microsoft should provide more documentation for users so they can self-educate. I would like to see more documentation for advanced security features."
"Microsoft sometimes has downtime, and we'll get several incidents coming in back to back. We have a huge backlog of notifications, many of which may be false positives. However, there might be serious alerts, so we can't risk dismissing all of them at once."
"In some situations, it has not been able to pick impersonated emails having no attachments. Technical support definitely has a scope for improvement."
"Too many false positives and lacks an accurate capability to detect malicious SharePoint sites."
"Several simulation options are available within 365, and the phishing simulation could be better."
"It takes time to go through the interface and pick up things. If it were a more straightforward interface, then it would free up time."
"They just need to work on their price. In terms of features, we are trying to understand all the features that we have. We're still exploring everything that we have so that we can fully utilize it. At this point in time, it is not about the features. It is more about utilization. We're just trying to utilize everything to full capacity."
"Getting logs from different sources can be a challenge."
"It could build in integrations for some complementary products, but it has an assistant plugin so this is not really a big deal."
"Needs to improve its collaboration with local partners."
"Its threat analyzer could be better. It should also have agents. They should improve this product by installing agents for the machine to get more visibility. Currently, they are monitoring only the network. They should also monitor the agents from inside. It should also have a better pricing plan because it is an expensive product."
"Its documentation is not up to the mark. At times, I have a lot of trouble finding a solution. Even when I posted questions on the community chats, it took a lot of time for me to get answers. That's something that can be improved. Darktrace can focus on creating a more interactive community. If there are more people from Darktrace to focus on community chats, it would be better."
"In an upcoming release, there could be more customizable playbooks or a library of playbooks to choose from."
"Tenable Nessus is easier to deal with. It's more efficient and accurate. InsightIDR is heavier than Tenable in terms of performance and scanning. Rapid7 would be much easier to use if it had a network connector like Tenable. Tenable's connector allows continuous monitoring over the B caps."
"It would be useful to import threat intelligence in YARA format along with known incorrect email addresses."
"Customised alert recipients need to be added to allow better first-line action and quicker response. Configurable honeypots would be a welcome addition."
"Lacks a mobile application."
"InsightIDR is only available in a cloud version. Some of our customers prefer an on-prem solution because they want to manage the security within their environment."
"Rapid7 doesn't integrate well with all our security tools from various vendors, so we plan to switch. Many of our solutions work with Rapid7, but some do not. We are already searching for a replacement already."
"The integration capabilities of the solution have certain shortcomings where improvements are required."
"The product allows us to make only 30 custom rules."
More Microsoft Defender for Office 365 Pricing and Cost Advice →
Darktrace is ranked 13th in Email Security with 65 reviews while Rapid7 InsightIDR is ranked 10th in Security Information and Event Management (SIEM) with 29 reviews. Darktrace is rated 8.2, while Rapid7 InsightIDR is rated 8.4. The top reviewer of Darktrace writes "Great autonomous support, offers an easy setup, and has responsive support". On the other hand, the top reviewer of Rapid7 InsightIDR writes "An affordable product that is easy to use and has many advanced features and default templates". Darktrace is most compared with CrowdStrike Falcon, Vectra AI, SentinelOne Singularity Complete, Cortex XDR by Palo Alto Networks and Trend Micro Deep Discovery, whereas Rapid7 InsightIDR is most compared with Microsoft Sentinel, Splunk Enterprise Security, Rapid7 InsightVM, IBM Security QRadar and Microsoft Defender for Identity.
We monitor all Email Security reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.