We performed a comparison between Check Point CloudGuard CNAPP and Rapid7 Metasploit based on real PeerSpot user reviews.
Find out in this report how the two Vulnerability Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."It is able to bring visibility into that cloudy space where the security departments do not really see what is happening on the DevOps side. It brings visibility, security control, and standardization."
"The most valuable feature is the ability to work with the APIs to integrate into our own backend systems."
"It helps us to analyze vulnerabilities way before they get installed in production and the web. It gives us more security in the production environment."
"Assets Management as it provide complete visibility of our workload inkling EC2 instance or Serverless"
"The most valuable feature is posture management, which gives you complete visibility of all your assets in the cloud and allows you to do governance and compliance."
"The product allows us to enhance the security of the implementations we have."
"We like the ability to investigate, analyze, and generate reports."
"Cloud security posture management is the feature we've been using the longest."
"The most valuable features of the solution are the scripts, the modules, and the tools that the Rapid7 Metasploit framework has."
"I use Rapid7 Metasploit for payload generation and Post-Exploitation."
"The Search Engineering feature is good."
"It contains almost all the available exploits and payloads."
"It's not possible to do penetration testing without being very proficient in Metasploit."
"Stability-wise, I rate the solution a nine out of ten...Scalability-wise, I rate the solution a nine out of ten."
"The option to generate phishing emails has proven to be very valuable in understanding the behavior of users."
"The reporting on the solution is good."
"In general, for the product to be successful, they need to improve security, and configuration detection."
"The costs are really high if you want the entire capabilities of the platform."
"Check Point tools need to improve the latency in the portal since they take a long time to load."
"CloudGuard could be more customizable. It has built-in standards for things like GDPR compliance. But depending on your business lane, you might want to build your own controls based on your own standards."
"The license cost is expensive and has room for improvement."
"The software configurations theory is complicated, and without proper planning and a well-skilled technical team, it cannot perform its tasks properly."
"We're looking for a solution that can incorporate legacy infrastructure for some of our business needs."
"Automatic remediation requires read/write access. When providing read/write access to third-party applications, this can add risk. It should have some options of triggering API calls to the cloud platform, which in turn, can make the required changes."
"If your company's patch is not up to date, but you have other detection or defense solutions such as endpoint detection and response and antivirus software, the product exploit may not work effectively. This is because its exploit database update process is slow and not real-time. For zero-day vulnerabilities or new security threats, relying on Rapid7 Metasploit alone may not be effective."
"The solution is not very scalable, it does not provide any automation to be able to scale it."
"The open-source version has reporting limitations. You need to develop these capabilities yourself. Built-in reporting is an excellent feature for penetration testing, but it isn't a must-have. The solution could also cover more vulnerabilities. Metasploit has around 10,000 exploits in its library, but more is always better."
"We'd like them to offer better coverage of malware."
"It is necessary to add some training materials and a tutorial for beginners."
"The solution is not user-friendly and has room for improvement."
"At the time I was using it, the graphical user interface needed some improvements."
"There are numerous outdated exploits in their database that should be updated."
Check Point CloudGuard CNAPP is ranked 5th in Vulnerability Management with 60 reviews while Rapid7 Metasploit is ranked 11th in Vulnerability Management with 18 reviews. Check Point CloudGuard CNAPP is rated 8.6, while Rapid7 Metasploit is rated 7.6. The top reviewer of Check Point CloudGuard CNAPP writes "Threat intel integration provides us visibility in case any workload is communicating with suspicious or blacklisted IPs". On the other hand, the top reviewer of Rapid7 Metasploit writes "Helps find vulnerabilities in a system to determine whether the system needs to be upgraded". Check Point CloudGuard CNAPP is most compared with Prisma Cloud by Palo Alto Networks, AWS GuardDuty, Wiz, Microsoft Defender for Cloud and CrowdStrike Falcon Cloud Security, whereas Rapid7 Metasploit is most compared with Tenable Nessus, Pentera, Rapid7 InsightVM, Acunetix and Havoc Shield. See our Check Point CloudGuard CNAPP vs. Rapid7 Metasploit report.
See our list of best Vulnerability Management vendors.
We monitor all Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.