Try our new research platform with insights from 80,000+ expert users

Check Point CloudGuard CNAPP vs Rapid7 Metasploit comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Oct 9, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Zafran Security
Sponsored
Ranking in Vulnerability Management
27th
Average Rating
9.6
Reviews Sentiment
8.1
Number of Reviews
3
Ranking in other categories
Continuous Threat Exposure Management (CTEM) (6th)
Check Point CloudGuard CNAPP
Ranking in Vulnerability Management
9th
Average Rating
8.6
Reviews Sentiment
7.4
Number of Reviews
71
Ranking in other categories
Cloud and Data Center Security (9th), Container Security (7th), Cloud Workload Protection Platforms (CWPP) (6th), Cloud Security Posture Management (CSPM) (5th), Cloud-Native Application Protection Platforms (CNAPP) (5th), Data Security Posture Management (DSPM) (4th), Compliance Management (6th)
Rapid7 Metasploit
Ranking in Vulnerability Management
20th
Average Rating
7.8
Reviews Sentiment
7.1
Number of Reviews
21
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of April 2025, in the Vulnerability Management category, the mindshare of Zafran Security is 0.4%. The mindshare of Check Point CloudGuard CNAPP is 1.6%, up from 1.3% compared to the previous year. The mindshare of Rapid7 Metasploit is 1.6%, down from 1.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Vulnerability Management
 

Featured Reviews

Israel Cavazos Landini - PeerSpot reviewer
Weekly insights and risk analysis facilitate informed security decisions
I appreciate the weekly insights Zafran provides, which include critical topics for networks and IT security, allowing us to evaluate which insights apply to our environment. The organization score feature is valuable to keep the leadership team updated on how our infrastructure fares security-wise. The applicable risk level versus base risk level feature is beneficial because prior to Zafran, we only used the base risk level, but now understand that risk depends on the asset itself. Zafran is an excellent tool.
Bart Coddens - PeerSpot reviewer
Evolved cloud security with active monitoring but needs interface consistency
The user interface needs work. Sometimes, it is a transition from the old tool to the new CNAPP Two that I currently have, and remnants of the old environment can still be detected. I require consistency in the user interface to ensure everything is streamlined into the same look and feel. More work is needed in fine-tuning the threat data towards your CSPM and activity logs, aligning them with business intelligence, which requires a cohesive console interface. My assessment of CloudGuard CDRs in intrusion detection and threat hunting capabilities is that it still needs some work. All the threat data that comes in, you need to fine tune it a bit.
Mani Bommisetty - PeerSpot reviewer
Comprehensive insights with robust vulnerability detection and streamlined alert management
Rapid7 has a significant advantage in providing a clear picture of my environment. It provides insight and incident detection response capabilities. When deployed with the same agent in servers or endpoints, it identifies vulnerabilities and monitors data transmission to external sources. Rapid7 offers comprehensive features within one platform, eliminating the need to integrate multiple tools to see all alerts in one place.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Zafran is an excellent tool."
"Zafran has become an indispensable tool in our cybersecurity arsenal."
"We are able to see the real risk of a vulnerability on our environment with our security tools."
"Customer service is very good."
"The solution has intelligence that integrates with a range of threat intelligence feeds, including Check Point's ThreatCloud, to provide real-time intelligence on emerging threats."
"It offers advanced detection of threats that can harm data from the cloud database."
"Overall, it provides good security."
"The most valuable features are the ability to create pipeline rules, the enhanced NetOps security, and the deep visibility across our entire infrastructure."
"The solution offers an excellent price, benefit, and installation relationship."
"The feature that I find most valuable is the blocking feature."
"Dome9 has improved our organization; we have a centralized view of all of our assets, our visible assets our ECs, our inventories. And then all the policies are centralized, and it is easier to manage because everything is one component console."
"The most valuable feature for us is the support for testing Linux-based web server components."
"Rapid7 offers comprehensive features within one platform, eliminating the need to integrate multiple tools to see all alerts in one place."
"It is scalable. It's in line with our needs."
"Stability-wise, I rate the solution a nine out of ten...Scalability-wise, I rate the solution a nine out of ten."
"Rapid7 Metasploit is a useful product."
"I would definitely recommend Metasploit to others."
"Rapid7 has a significant advantage in providing a clear picture of my environment."
"The most valuable features of Metasploit include its powerful capabilities for exploitation and scanning."
 

Cons

"Initially, we were somewhat concerned about the scalability of Zafran due to our large asset count and the substantial amount of information we needed to process."
"The false positives can be annoying at times."
"The impact analysis that they perform can be improved. It is currently lacking. It should be more detailed."
"Scalability, particularly in workload protection, is an area that needs improvement."
"I strongly advise that the multi-layered security system of Check Point often undergoes updates and new versions keep coming."
"We were demotivated by the lack of native automation modules for the Terraform and Ansible tools."
"The integration process could be enhanced by enabling integration at the organizational level rather than requiring the manual setup of individual accounts."
"The support it provides is not very good. They should improve it since we have had several setbacks due to support issues."
"No improvements are needed."
"The solution is not very scalable, it does not provide any automation to be able to scale it."
"While Metasploit excels in vulnerability assessment, it could improve in vulnerability management."
"Rapid7 Metasploit can add a GUI feature because it is only available online."
"There are numerous outdated exploits in their database that should be updated."
"At the time I was using it, the graphical user interface needed some improvements."
"The solution should improve the responsiveness of its live technical support."
"I would like to see more capabilities, more functions, and more features. More types of attack vectors."
"Support is another area where improvement is needed, particularly for assisting non-security users."
 

Pricing and Cost Advice

Information not available
"I suggest that you pay attention to the product pricing because while there are no tricks, and the licensing model is transparent, the final numbers may surprise you."
"The solution’s pricing is a little bit high."
"From a pricing perspective, they are pretty expensive."
"We have the enterprise-level license and we renew it annually because it is worth the cost."
"The tool's pricing is moderate. Its licensing costs are yearly."
"The pricing is tremendous and super cheap. It is shockingly cheap for what you get out of it. I am happy with that. I hope that doesn't get reported back and they increase the prices. I love the pricing and the licensing makes sense. It is just assets: The more stuff that you have, the more you pay."
"Licensing and costs are straightforward, as they have a baseline of 100 workloads within one license and no additional charges."
"The price is on the higher end."
"We pay monthly. The pricing is reasonable."
"The pricing structure involves a one-time purchase cost of approximately twenty thousand dollars or euros for all customers."
"It is a reasonably priced solution. I would rate it from five out of ten."
"Rapid7 Metasploit is an open-source solution."
"There are two versions available, one of which is the Pro version, and the other is the free version."
"Rapid7 Metasploit is cheaper than Tenable.io Vulnerability Management."
"On a scale of one to ten, where one is cheap and ten is expensive, I rate the product's pricing a six. So it's fairly priced."
"The cost is approximately $15 per device."
report
Use our free recommendation engine to learn which Vulnerability Management solutions are best for your needs.
849,190 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
14%
Financial Services Firm
11%
Manufacturing Company
7%
Retailer
6%
Computer Software Company
15%
Financial Services Firm
14%
Manufacturing Company
9%
University
6%
Computer Software Company
18%
Financial Services Firm
11%
Manufacturing Company
10%
Educational Organization
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

What is your experience regarding pricing and costs for Zafran Security?
I find that the pricing for Zafran aligns well with the comprehensive features it offers. The asset and user-based li...
What needs improvement with Zafran Security?
While Zafran Security is already a powerful tool, there are areas where it could be further improved to provide even ...
What is your primary use case for Zafran Security?
Our primary use case for Zafran involves leveraging it to enhance our vulnerability risk scoring methodology. In toda...
What do you like most about Rapid7 Metasploit?
I use Rapid7 Metasploit for payload generation and Post-Exploitation.
What is your experience regarding pricing and costs for Rapid7 Metasploit?
Metasploit is cheaper than Nessus and offers a more robust community edition that provides a good experience for stud...
What needs improvement with Rapid7 Metasploit?
While Metasploit excels in vulnerability assessment, it could improve in vulnerability management. Nessus currently h...
 

Also Known As

No data available
Check Point CloudGuard Posture Management, Dome9, Check Point CloudGuard Workload Protection, Check Point CloudGuard Intelligence
Metasploit
 

Overview

 

Sample Customers

Information Not Available
Symantec, Citrix, Car and Driver, Virgin, Cloud Technology Partners
City of Corpus Christi, Diebold, Lumenate, Nebraska Public Power District, Prairie North Regional Health, Apptio, Automation Direct, Bob's Stores, Cardinal Innovations Healthcare Solutions, Carnegie Mellon University
Find out what your peers are saying about Check Point CloudGuard CNAPP vs. Rapid7 Metasploit and other solutions. Updated: April 2025.
849,190 professionals have used our research since 2012.