Rapid7 InsightAppSec Overview

Rapid7 InsightAppSec is the #18 ranked solution in our list of AST tools. It is most often compared to Rapid7 AppSpider: Rapid7 InsightAppSec vs Rapid7 AppSpider

What is Rapid7 InsightAppSec?

Your web applications may be complex, but your application security testing tool doesn’t need to be. InsightAppSec brings Rapid7’s proven Dynamic Application Security Testing (DAST) technology to the Insight platform, combining powerful application crawling and attack capabilities, flexibility in scan scope and scheduling, and accuracy in results with a modern UI, intuitive workflows, and sensible data organization. This enables you to identify XSS, SQL injection, CSRF, and other vulnerabilities with unparalleled ease. The best part? All of these capabilities are delivered via the cloud so that you’re up and running in minutes to identify the critical security risks that exist in your applications.

Rapid7 InsightAppSec is also known as InsightAppSec.

Buyer's Guide

Download the Application Security Testing (AST) Buyer's Guide including reviews and more. Updated: June 2021

Rapid7 InsightAppSec Customers

CenterPoint Energy, CPA Australia, Hypertherm, First American Financial Corporation, Rackspace

Rapid7 InsightAppSec Video

Pricing Advice

What users are saying about Rapid7 InsightAppSec pricing:
  • "The price of this product is very cheap."

Filter Reviews

Filter by:
Filter Reviews
Industry
Loading...
Filter Unavailable
Company Size
Loading...
Filter Unavailable
Job Level
Loading...
Filter Unavailable
Rating
Loading...
Filter Unavailable
Considered
Loading...
Filter Unavailable
Order by:
Loading...
  • Date
  • Highest Rating
  • Lowest Rating
  • Review Length
Search:
Showingreviews based on the current filters. Reset all filters
Natthapong Fongsin
Assistant Technical Manager at a tech services company with 1,001-5,000 employees
Real User
Top 5
Excellent web scanning, good technical support, but lacks decent reporting

What is our primary use case?

We primarily used the solution to help us with analysis on our customer website. We also used it for our internal website in order to check security.

Pros and Cons

  • "The initial setup for us was easy enough. We didn't face too many issues. Deployment took maybe 30 minutes. It's quite quick and doesn't cause too much trouble at the outset."
  • "The reporting is definitely an aspect of the solution that's in need of some work. We found that we'd try to use widgets, but often getting them to work for us wasn't very clear. They need to be more user friendly or offer better instructions."

What other advice do I have?

I'm not sure of what version of the solution we had been using at our organization previously. As of right now, the license has expired on Rapid7. We haven't been using it for about one month. It hasn't been too long since we stopped with regular usage. We used Rapid7's cloud when we were running the program. We had a team of about five or six people that had access to the product when we were using it. If a company needs an effective product for web scanning, I can recommend this product. It's a great product. We found it to be quite effective in that regard. However, it did not help us to…
MohamedTaha
Cyber Security Division Manager at 3SC Security Solutions Services and Consultant
Real User
Top 5
Easy to use, amazing technical support, and it provides alerts when problems in code are identified

What is our primary use case?

We use Rapid7 for application security. We use it ourselves and we also provide services for our customers. The primary use is for checking security assessments of web applications. If you need code scanning or API integration, then AppSec provides these options.

Pros and Cons

  • "It uses a signature-based method to check for problems with your code and will provide an alert if anything is found."
  • "In the future, if they can have integration with a lot of ticketing systems then it would be amazing."

What other advice do I have?

This is a product that I recommend and my advice for anybody who is interested in trying it, there is a free 60-day trial period where they will fix your problems without any payment. That will give you the opportunity to experiment with and gain experience scanning web applications. I would rate this solution a ten out of ten.
Find out what your peers are saying about Rapid7, OWASP, Veracode and others in Application Security Testing (AST). Updated: June 2021.
511,307 professionals have used our research since 2012.
Ascast
Security Analyst at Millennium Technology Group
Real User
Top 5
Great stable and scalable solution with a very easy templates feature

What is our primary use case?

To scan our Web applications.

How has it helped my organization?

Opportunity to find vulnerabilities and procedures of remediation for our web applications,

What is most valuable?

The most common attack templates are easy to access and apply. For example, the OWASP 2017 template contains up to 64 opponent techniques that we can evaluate in our applications.

What needs improvement?

I find the AppSec interface for defining scans and targets a bit confusing at first, but with practice the logic of the operation flow is understood.

For how long have I used the solution?

I have been using this solution for about four to six months.

What do I think about the stability of the solution?

We haven't had any issues about this.

What do I think