Elastic Security equips analysts to prevent, detect, and respond to threats. The free and open solution delivers SIEM, endpoint security, threat hunting, and cloud monitoring. The solution encompasses Elastic SIEM, which brings Elasticsearch to SIEM and threat hunting. The Elastic Agent (or Elastic Endpoint Security based on the former Endgame security product acquired by Elastic in late 2019) brings signatureless malware prevention to endpoints, as well as security data collection for…
N/A
InsightIDR
Score 9.5 out of 10
N/A
In addition to their incident response service, Rapid7 offers InsightIDR, a combined XDR and SIEM that provides user behavior and threat analytics.
$5.89
per month per asset
Pricing
Elastic Security
Rapid7 InsightIDR
Editions & Modules
No answers on this topic
InsightIDR Advanced
$5.89
per month per asset
Offerings
Pricing Offerings
Elastic Security
InsightIDR
Free Trial
No
Yes
Free/Freemium Version
No
No
Premium Consulting/Integration Services
No
No
Entry-level Setup Fee
No setup fee
No setup fee
Additional Details
—
*500 asset minimum. Billed annually. All amounts are shown in U.S. dollars. International prices vary.
I believe Endgame is well suited to organizations that have their own Cybersecurity department. Its not well suited for organizations that don't have a Cybersecurity department.
It has been brilliant for us in terms of understanding the behaviour affecting our endpoints and assets. We have full visibility of our alerts, which menas we can act on them immediately. We use a single pain of glass with dashboards that can be easily drilled down into to get further information. It has laso helped us eo create bespoke reports for senios Managmeent, while at the same time supports other teams like Network Mnagement and Operations.
Rapid7 InsightIDR does a very good job at keeping virus definitions up to date so that our threat intelligence is very up to date when knowing what to protect against.
It helps us by scanning all of our infrastructure components and highlights where improvements need to be made in security so we can be proactive with our security initiatives.
It has automated response mechanisms to triage and resolve any potentials risks allowing us to save time in the long run.
Even though their support is good, I think there are some areas where they need to provide more thorough solutions to issues, some of their solutions are pretty basic and have already been tried.
Endgame is based on the MITRE framework which has proven to be a successful framework to identify various attack patterns that attackers use. Also, compared to the others it's easier to administer and manage.
Between Rapid7 InsightIDR and Crowdstrike, we liked Rapid7 InsightIDR due to the functionality of the system and the features Rapid7 InsightIDR has. Rapid7 InsightIDR was very easy to deploy in our environment to our endpoint devices. We like the scanning capabilities and the console we felt was very easy to use and can be easily caught up to our IT staff. Also during vulnerability scans, we felt that Rapid7 InsightIDR was able to detect more and any competitor out there.
Rapid7 InsightIDR has allowed us to be proactive in securing our systems as the vulnerability scans give us a lens at what we need to fortify when it comes to security.
In recent incidents its allowed us to save time and money as it mostly detects issues accurately and we are able to bring systems back quickly without too much downtime for the business.
With recent updates, we are confident that Rapid7 InsightIDR is a good solution for the long run as they are always making adjustments to their platform and improving it with every release.
