InsightVM

Manage your Vulnerabilities better using InsightVM

Comments: Awesome . Superb product. Lots of capabilities

Pros:

Console, ease of setup , ease of policy creation , scanner configurations.

Cons:

Reporting , Sometimes latency in scanning but thats due to your network congestion.

InsightVM review - Analyst perspective

Pros:

The tool is relatively easy to pickup, is feature-rich and is a leader in its category.

Cons:

Scan templates creation and management is a bit difficult for first time users. Interface isnt that user-friendly.

Bloated NMAP scanner

Comments: 1. Tech support is awful. Just god awful. I installed their appliance OVF's. They also have direct Linux and Windows installers if you prefer to load your own OVF's. Every single case I submit, I say I am running the Nexpose Appliance. Every single time they ask me what I am running (Windows or Linux). Are they just that dumb over there? 2. Scans die. I did my initial discovery scans. Worked OK at most sites except a couple which kept dying. I ran them a couple times and they finally finished. I didn't bother calling support. See #1 above for why. I then tried to run initial Full Audit scans. Only one of my 8 sites completed. I can't wait to call tech support to find out!! LOL This is not a cheap product. It works so poorly that it is quite disgusting. It is VERY obvious that the internal processes at Rapid7 are horrible at best. I'm going to ask for my money back and go with another product. Note: Too bad I couldn't demo this product firsthand (try before you buy) but Rapid7 is very inflexible in that manner.

Pros:

Absolutely nothing at this point.

Cons:

Doesn't work. Tech support horrible. Accessing logs horrible. Just overall terrible software.

One of th best VM tools in the market

Pros:

InsightVM has good asset discover and management modules along with vulnerability scanning , management, exception modules and integration with different ticketing tools make it one of the best tools for VM.

Cons:

Reporting features needs to be improved along with the removal of false positives. For Cisco devices, we faced a long line of false positives which even when contacted support team was not fixed.

Excellent product by an excellent company

Comments: I trialed Nexpose Community when our company started moving to a cloud hosting provider. I was very impressed. We ended up going with another provider, but when that contract expired, I proposed that we give InsightVM a shot instead of a renewal, remembering how much of a pleasure it was to use. Now, we're customers, and I don't regret my suggestion at all. I deployed a security console within an hour, and had it ingesting an inventory of every host in our cloud environment, whether Active Directory knew about it or not. Everyone from Compliance to IT speaks positively about it. They like the intuitive UI, the ability to get actionable data the moment the dashboard loads, and the fact that it's fully aware of both Microsoft and third-party vulnerabilities. I like the "risk score," a practical alternative to the typical CVSS rating. While the CVSS score is important, Rapid7 weights their score on factors such as practicality of exploitation and active targeting in the wild. I've suggested that we prioritize remediation based on the Rapid7 risk score rather than the CVSS score. I installed the Insight agent on a majority of our workstations, which sends data about any published vulnerability to the portal, whether in a Docker image, a third-party application, or the underlying OS. A couple customizations of the dashboard, and now we see comprehensive overview of the week's priorities at logon. It's great to have one dashboard for every environment!

Pros:

Easy to install, intuitive UI, integration with cloud portal, agent (that feeds data to the cloud analytics portal), multi-platform.

Cons:

Nothing -- Rapid7 is KILLING it. Since this field has a minimum length: maybe the only downside is that the security console requires a decent bit of RAM? I had to give it 8 GB to ensure stability. That said, it's running a web-based management interface, and the scan runtime is far faster and more reliable than our previous solution.