We performed a comparison between Rapid7 InsightVM and Rapid7 Metasploit based on real PeerSpot user reviews.
Find out in this report how the two Risk-Based Vulnerability Management solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Rapid7 InsightVM has given us a practical view of the vulnerabilities present in our organization."
"It's easy to use. It's fast, it's a powerful easy to access tool."
"InsightVM's best features are the vulnerability database and remediation steps."
"Has great reporting features."
"I liked the dashboard on it. I could customize my dashboard with different widgets and different heat maps."
"The most important aspect of the solution is that it rarely gives false positives, especially compared to other products. It provides very clear reports for our IT teams to look at."
"We are very satisfied with the reports, as they provide us with the information that is required for our management."
"The risk score that they provide makes it easier to find out the biggest risks. It helped the security officers to understand where the biggest risks are so that they can act on them. They can instruct their IT teams to give them a higher priority and mitigate them."
"All of the features are great."
"It contains almost all the available exploits and payloads."
"Stability-wise, I rate the solution a nine out of ten...Scalability-wise, I rate the solution a nine out of ten."
"The reporting on the solution is good."
"It is scalable. It's in line with our needs."
"The solution is open source and has many small targetted penetration tests that have been written by many people that are useful. You can choose different subjects for the test, such as Oracle databases or Apache servers."
"The tool's most useful feature for penetration testing is its automation capabilities. With the professional edition, you can upload the results from Nessus in the Rapid7 Metasploit solution portal."
"It's not possible to do penetration testing without being very proficient in Metasploit."
"The reporting could be better."
"The solution should include a tighter integration with third-party threat modeling and threat intelligence tools."
"There are end-user needs and expectations that are being overlooked in the development that could be addressed by appointing a customer advisory board."
"Rapid7 InsightVM could be easier to use for those who are using it for the first time."
"Some of our customers want to be completely cloud based, and Rapid7 doesn't offer this as an option."
"The drawback is that it is still not a fully SaaS solution, so you must deploy a console."
"It is still not a fully cloud-based solution. It will be helpful for customers if it is a complete cloud solution. It is a hybrid solution at the moment."
"There are not enough templates, and the reporting is weak with this solution."
"We'd like them to offer better coverage of malware."
"Better automation capabilities would be an improvement."
"I think areas with shortcomings that need improvement are more integration and automation."
"Rapid7 Metasploit could be made easier for new users to learn."
"At the time I was using it, the graphical user interface needed some improvements."
"Rapid7 Metasploit can add a GUI feature because it is only available online."
"The solution is not very scalable, it does not provide any automation to be able to scale it."
"Advanced Infrastructure should be implemented in the next release for better orchestration."
Rapid7 InsightVM is ranked 4th in Risk-Based Vulnerability Management with 55 reviews while Rapid7 Metasploit is ranked 12th in Vulnerability Management with 18 reviews. Rapid7 InsightVM is rated 8.0, while Rapid7 Metasploit is rated 7.6. The top reviewer of Rapid7 InsightVM writes "You can scan a network, and receive recommendations to address vulnerabilities with the click of a button". On the other hand, the top reviewer of Rapid7 Metasploit writes "Helps find vulnerabilities in a system to determine whether the system needs to be upgraded". Rapid7 InsightVM is most compared with Tenable Nessus, Qualys VMDR, Tenable Security Center, Microsoft Defender Vulnerability Management and Pentera, whereas Rapid7 Metasploit is most compared with Tenable Nessus, Pentera, Acunetix, Nucleus and Qualys VMDR. See our Rapid7 InsightVM vs. Rapid7 Metasploit report.
We monitor all Risk-Based Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.