2018-04-22T07:58:00Z

What needs improvement with Rapid7 InsightIDR?


Please share with the community what you think needs improvement with Rapid7 InsightIDR.

What are its weaknesses? What would you like to see changed in a future version?

Guest
33 Answers

author avatar
Top 10Real User

The only thing I can think of to improve the product is that the interface for doing investigation needs to be enhanced. For example, we can add notes through the interface, but we can not attach files to the investigation. It would be a useful addition. It would give us more flexibility to resolve more complicated situations.

2020-01-07T06:27:00Z
author avatar
Real User

The reporting is the weakest aspect. There needs to be multi-level grouping for events (for example, group by user and destination). Right now, we can do a group by user and a separate table or group by destination. But I'd be more interested in where a person was logging into instead of who was logging in or where he was logging in.

2018-10-02T19:05:00Z
author avatar
Real User

Customised alert recipients need to be added to allow better first-line action and quicker response. Configurable honeypots would be a welcome addition.

2018-04-22T07:58:00Z
Find out what your peers are saying about Rapid7, Splunk, IBM and others in Security Information and Event Management (SIEM). Updated: October 2020.
442,764 professionals have used our research since 2012.