We performed a comparison between Cynet and Rapid7 InsightIDR based on real PeerSpot user reviews.
Find out in this report how the two User Entity Behavior Analytics (UEBA) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The advantage of Microsoft Defender XDR has over other XDRs in the market is that it's easy to use. You can quickly differentiate between alerts, incidents, devices, software, etc. It's easier to investigate an incident, and you have so many options. You can automate investigations and use playbooks. There's also the live response session, which is something you can't find in any other XDR."
"We can use Defender to block and monitor for security purposes without needing multiple other products to do different tasks."
"Microsoft 365 Defender's most valuable feature is the ability to control the shadow IP."
"The visibility into threats is also very impressive because Microsoft helps you predict things and provides analytics to help you really improve your security. And all of this technology works across the domain, so it is pretty helpful in terms of threat analytics."
"The ability to integrate and observe a more cohesive narrative across the products is crucial."
"Scanning, vulnerability reporting, and the dashboard are the most valuable features."
"The most valuable aspect is undoubtedly the exploration capability"
"The integration, visibility, vulnerability management, and device identification are valuable."
"A good feature is how the solution packages varied information into a single dashboard that's readable and meets our needs."
"This solution requires less management and is very easy to use."
"I like that you can implement it in the managed service portfolio."
"It provides good protection from ransomware and malware attacks. It is very good as compared to other products. If any threat is there, their support is very good. They immediately respond to the users and do a follow-up. They call us and also provide email support."
"I like that it is possible to use the solution to check more information about the users' devices."
"The product has valuable front-end features."
"It can be deployed in autonomous mode, and then it automatically blocks malware threats."
"The feature I find most valuable, is the reality graphical user interface."
"I am able to run automated actions based on the output of reports, leaving me extra time to focus on more pressing matters."
"I rate Rapid7 nine out of 10 for affordability"
"Enables the use of honey pots, honey users, and honey files to monitor for suspicious patterns."
"Log search allows us to dive deep into aggregated logs and query all event types at once."
"The solution is very stable and works very well for what I need it to do."
"Rapid7 InsightIDR integrates well with other solutions. It's also easy to configure because Rapid7 InsightIDR has a lot of instructions posted on their website that customers can follow if they need to get the source log."
"I like that it's a cloud-based solution."
"The alerting to drive investigations and remediation has been its most valuable feature."
"The only problem I find is that the use cases are built-in. There is no template available that you can modify according to your organization's standards. What they give is very generic, the market standard, but that might not be applicable to every organization."
"While the XDR platform offers valuable functionalities, it falls short of other solutions in its ability to deliver a cohesive identity experience."
"The only issue I've had is, when it comes to deployment, the steps I must take around policy setup. That is challenging."
"At times, when we have an incident email and we click on the link for that incident, it opens a pop-up, but there is nothing. It has happened a couple of times."
"Defender XDR could provide recommendations for threat-hunting queries. Some people do not know how to write an advanced threat query, so we need to spend time training them."
"There are other SIEM solutions that are easier to use, mainly based on the creation of rules, use cases, and groups."
"The message trace feature for investigating mail flow issues should add more detailed information to the summary report... if they could extend the summary report a little bit, make it more descriptive, ordinary administrators could understand what happened and that the emails failed at this or that point. That way they would know the location to go to try to correct it and to prevent it from occurring again."
"Advanced attacks could use an improvement."
"Increased application for SOAR abilities across interconnected devices would be a welcome improvement."
"I'd like to see more data loss prevention within the product."
"I would like to see more emphasis on building the data lake and storing all endpoint data in the enterprise data lake so that data mining can be performed"
"Most of their times are in Greenwich Mean Time. I would like to see more local time zones."
"In terms of what could be improved, I would say the usability of this product for new threats. Meaning, not everything which is new is properly seen by the product and not all the required actions are taken."
"They have some things in the pipeline, we understand, and they're going to be able to support Android and all these other devices soon. The key is the devices - which is an aspect that is lacking right now. Every company has that problem, not just Cynet."
"Cynet fails to deploy the same technology in mobile devices."
"The solution lacks URL filtering."
"The product allows us to make only 30 custom rules."
"The main problem lies in the processes within the client's operating systems."
"The solution's XDR agents cannot compete with the XDR solutions out there yet."
"Needs a better ability to customize the check within the console."
"I feel it would greatly benefit from more supported log sources."
"The integration capabilities of the solution have certain shortcomings where improvements are required."
"The reporting is the weakest aspect. There needs to be multi-level grouping for events (for example, group by user and destination). Right now, we can do a group by user and a separate table or group by destination. But I'd be more interested in where a person was logging into instead of who was logging in or where he was logging in."
"Rapid7 InsightIDR is not intuitive to search for logs. It should be more user-friendly and improve the dashboards. We should be able to use ready-made templates instead of having to build one."
Cynet is ranked 4th in User Entity Behavior Analytics (UEBA) with 35 reviews while Rapid7 InsightIDR is ranked 3rd in User Entity Behavior Analytics (UEBA) with 30 reviews. Cynet is rated 8.8, while Rapid7 InsightIDR is rated 8.4. The top reviewer of Cynet writes "Provides memory protection, device control, and vulnerability management". On the other hand, the top reviewer of Rapid7 InsightIDR writes "Helps in the management of compliance, secret events and information". Cynet is most compared with CrowdStrike Falcon, SentinelOne Singularity Complete, ESET Endpoint Protection Platform, Microsoft Defender for Endpoint and Cortex XDR by Palo Alto Networks, whereas Rapid7 InsightIDR is most compared with Darktrace, Microsoft Sentinel, Splunk Enterprise Security, Rapid7 InsightVM and IBM Security QRadar. See our Cynet vs. Rapid7 InsightIDR report.
See our list of best User Entity Behavior Analytics (UEBA) vendors, best Endpoint Detection and Response (EDR) vendors, and best Threat Deception Platforms vendors.
We monitor all User Entity Behavior Analytics (UEBA) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.