15 years helping Irish businesses
choose better software

What Is InsightVM?

InsightVM uses the power of Rapid7s Insight platform & heritage of their award-winning Nexpose product. InsightVM provides a fully available, scalable, & efficient way to collect vulnerability data, turn it into answers, & minimize risk. This industry leader in vulnerability management, InsightVM leverages the latest analytics & endpoint technology to discover vulnerabilities real-time, pinpoint their location, prioritize using threat risk & business context, and confirm exposure reduction.

Who Uses InsightVM?

Cloud-based vulnerability management solution that assists security teams with virtual infrastructure assessment, live dashboards, remediation reporting, risk prioritization, threat feeds & more.

Not sure about InsightVM? Compare with a popular alternative

InsightVM

InsightVM

4.4 (17)
No pricing found
Free version
Free trial
6
No integrations found
3.8 (17)
3.9 (17)
3.7 (17)
VS.
Starting Price
Pricing Options
Features
Integrations
Ease of Use
Value for Money
Customer Service
No pricing found
Free version
Free trial
34
2
4.0 (27)
3.8 (27)
3.9 (27)
Green rating bars show the winning product based on the average rating and number of reviews.

Other great alternatives to InsightVM

Qualys Cloud Platform
Top rated features
Alerts/Notifications
Reporting/Analytics
Vulnerability Scanning
Tenable.io
Top rated features
Monitoring
Real-Time Notifications
Vulnerability Scanning
Nessus
Top rated features
Network Scanning
Vulnerability Assessment
Vulnerability Scanning
Code Dx
Top rated features
No features have been rated by reviewers for this product.
Phoenix Security
Top rated features
Security Auditing
Vulnerability Assessment
Vulnerability Scanning
Orca Security
Top rated features
Vulnerability Assessment
Vulnerability Scanning
Vulnerability/Threat Prioritization
SanerNow
Top rated features
Automatic Patch Deployment
Vulnerability Assessment
Vulnerability Scanning
vRx
Top rated features
Automatic Patch Deployment
Automatic Scans
Patch Management
Snyk
Top rated features
Patch Management
Vulnerability Assessment
Vulnerability Scanning

Reviews of InsightVM

Average score

Overall
4.4
Ease of Use
3.8
Customer Service
3.7
Features
4.2
Value for Money
3.9

Reviews by company size (employees)

  • <50
  • 51-200
  • 201-1,000
  • >1,001

Find reviews by score

5
65%
4
18%
3
12%
1
6%
Nguyen
Nguyen
System Engineer in US
Verified LinkedIn User
Information Technology & Services, 51–200 Employees
Used the Software for: 1-5 months
Reviewer Source

Alternatives Considered:

Many features, object management is good

5.0 5 years ago

Comments: The hardware requirement is a lot. The cloud is not helping much. If they can do everything on cloud is so good. We don't have to maintain the On-Premise server

Pros:

Manage by Sites and Asset group is good. Because we can assing user to that site or group. Which is other software does not have

Cons:

It seems difficult to use. I have to search everywhere just to scan 1 assets. It spent about 1 hour just to do a test scanning . After scan, the report is not automatically generated. You have to do it yourselft

Suchibrato
Security Analyst in India
Semiconductors, 1,001–5,000 Employees
Used the Software for: 6-12 months
Reviewer Source

InsightVM review - Analyst perspective

5.0 4 years ago

Pros:

The tool is relatively easy to pickup, is feature-rich and is a leader in its category.

Cons:

Scan templates creation and management is a bit difficult for first time users. Interface isnt that user-friendly.

Ron
US
Used the Software for: Not provided
Reviewer Source

Bloated NMAP scanner

1.0 7 years ago

Comments: 1. Tech support is awful. Just god awful. I installed their appliance OVF's. They also have direct Linux and Windows installers if you prefer to load your own OVF's. Every single case I submit, I say I am running the Nexpose Appliance. Every single time they ask me what I am running (Windows or Linux). Are they just that dumb over there? 2. Scans die. I did my initial discovery scans. Worked OK at most sites except a couple which kept dying. I ran them a couple times and they finally finished. I didn't bother calling support. See #1 above for why. I then tried to run initial Full Audit scans. Only one of my 8 sites completed. I can't wait to call tech support to find out!! LOL This is not a cheap product. It works so poorly that it is quite disgusting. It is VERY obvious that the internal processes at Rapid7 are horrible at best. I'm going to ask for my money back and go with another product. Note: Too bad I couldn't demo this product firsthand (try before you buy) but Rapid7 is very inflexible in that manner.

Pros:

Absolutely nothing at this point.

Cons:

Doesn't work. Tech support horrible. Accessing logs horrible. Just overall terrible software.

Simon
Systems Administrator in US
Financial Services, 51–200 Employees
Used the Software for: 6-12 months
Reviewer Source

Excellent product by an excellent company

5.0 5 years ago

Comments: I trialed Nexpose Community when our company started moving to a cloud hosting provider. I was very impressed. We ended up going with another provider, but when that contract expired, I proposed that we give InsightVM a shot instead of a renewal, remembering how much of a pleasure it was to use. Now, we're customers, and I don't regret my suggestion at all. I deployed a security console within an hour, and had it ingesting an inventory of every host in our cloud environment, whether Active Directory knew about it or not. Everyone from Compliance to IT speaks positively about it. They like the intuitive UI, the ability to get actionable data the moment the dashboard loads, and the fact that it's fully aware of both Microsoft and third-party vulnerabilities. I like the "risk score," a practical alternative to the typical CVSS rating. While the CVSS score is important, Rapid7 weights their score on factors such as practicality of exploitation and active targeting in the wild. I've suggested that we prioritize remediation based on the Rapid7 risk score rather than the CVSS score. I installed the Insight agent on a majority of our workstations, which sends data about any published vulnerability to the portal, whether in a Docker image, a third-party application, or the underlying OS. A couple customizations of the dashboard, and now we see comprehensive overview of the week's priorities at logon. It's great to have one dashboard for every environment!

Pros:

Easy to install, intuitive UI, integration with cloud portal, agent (that feeds data to the cloud analytics portal), multi-platform.

Cons:

Nothing -- Rapid7 is KILLING it. Since this field has a minimum length: maybe the only downside is that the security console requires a decent bit of RAM? I had to give it 8 GB to ensure stability. That said, it's running a web-based management interface, and the scan runtime is far faster and more reliable than our previous solution.

Tushar
Tushar
Lead security Engineer in India
Verified LinkedIn User
Information Technology & Services, 51–200 Employees
Used the Software for: 2+ years
Reviewer Source

Alternatives Considered:

One of th best VM tools in the market

4.0 last year

Pros:

InsightVM has good asset discover and management modules along with vulnerability scanning , management, exception modules and integration with different ticketing tools make it one of the best tools for VM.

Cons:

Reporting features needs to be improved along with the removal of false positives. For Cisco devices, we faced a long line of false positives which even when contacted support team was not fixed.