CrowdStrike Falcon vs Rapid7 InsightIDR comparison

CrowdStrike and Rapid7 are both solutions in the Security Information and Event Management (SIEM) category. CrowdStrike is ranked #6 with an average rating of 8.8, while Rapid7 is ranked #9 with an average rating of 8.1. Additionally, 97% of CrowdStrike users are willing to recommend the solution, compared to 95% of Rapid7 users who would recommend it.

CrowdStrike Falcon

Read 122 CrowdStrike Falcon reviews

3,795 Views
2,825 Comparison Views

97% willing to recommend

Rapid7 InsightIDR

Read 31 Rapid7 InsightIDR reviews

5,093 Views
2,897 Comparison Views

95% willing to recommend

CrowdStrike Falcon

Rapid7 InsightIDR

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Dec 8, 2024

CrowdStrike Falcon and Rapid7 InsightIDR are leading products in the cybersecurity category. CrowdStrike Falcon seems to have the upper hand due to its advanced features and customer service, but Rapid7 InsightIDR offers an appealing cost-effective option.

Features: CrowdStrike Falcon offers comprehensive endpoint visibility, robust threat detection, and a cloud-native flexibility that ensures always-on protection. It is recognized for its excellent endpoint detection and response capabilities. Rapid7 InsightIDR stands out with a user-friendly interface, seamless integration, and asset-based licensing that delivers competitive affordability.

Room for Improvement: CrowdStrike Falcon can improve in providing more flexible pricing options at lower device counts and enhancing some integration capabilities. It may also benefit from streamlined updates. Rapid7 InsightIDR could enhance its flexibility for larger, more diverse device environments and strengthen real-time threat monitoring and response features.

Ease of Deployment and Customer Service: CrowdStrike Falcon's deployment process is straightforward, with minimal maintenance required due to its cloud-native architecture. It is praised for proactive customer service. Rapid7 InsightIDR offers a simple setup process with quick deployment time and is supported by robust customer service.

Pricing and ROI: CrowdStrike Falcon customers highlight the ROI from reduced incident response times and operational efficiencies, despite higher pricing. Its pricing details are not specified. Rapid7 InsightIDR is noted for its cost-effectiveness and predictable subscription-based costs, though it may be less flexible for lower device counts.

To learn more, read our detailed CrowdStrike Falcon vs. Rapid7 InsightIDR Report (Updated: November 2024).

Buyer's Guide

CrowdStrike Falcon vs. Rapid7 InsightIDR

November 2024

Download the complete report

Helped 824,053 peers since 2012

Categories and Ranking

CrowdStrike Falcon

Ranking in Security Information and Event Management (SIEM)

6th

Ranking in Endpoint Detection and Response (EDR)

1st

Ranking in Extended Detection and Response (XDR)

1st

Average Rating

8.6

Reviews Sentiment

7.4

Number of Reviews

122

Ranking in other categories

Endpoint Protection Platform (EPP) (3rd), Identity Management (IM) (6th), Threat Intelligence Platforms (2nd), Active Directory Management (2nd), Attack Surface Management (ASM) (1st), Ransomware Protection (1st), Identity Threat Detection and Response (ITDR) (3rd), AI-Powered Cybersecurity Platforms (2nd)

Rapid7 InsightIDR

Ranking in Security Information and Event Management (SIEM)

9th

Ranking in Endpoint Detection and Response (EDR)

20th

Ranking in Extended Detection and Response (XDR)

15th

Average Rating

8.4

Reviews Sentiment

7.5

Number of Reviews

Ranking in other categories

User Entity Behavior Analytics (UEBA) (3rd), Threat Deception Platforms (5th)

Featured Reviews

Chintan-Vyas

Associate Director at KPMG

Easy to set up with good behavior-based analysis but needs a single-click recovery option

Most organizations are currently looking for a scheduled scan to meet their compliance needs. Other players like Symantec and Trend Micro, FireEye, et cetera, are still providing the signature-based regular scheduled scans also, which is not available in CrowdStrike. That is one parameter that we feel should be there in CrowdStrike. CrowdStrike is only working on the dynamic or the files under execution. CrowdStrike is not scanning the static files. The product could be more accurate in terms of performance. We'd like to have a single-click recovery option. With some machines getting corrupted by malware, we need an easy way to start with a blank slate if things happen. That one feature should be there in the EDR.

Read full review

Gerard Konan

Founder & CEO at AGILLY

Helps in the management of compliance, secret events and information

One of our customers had a Huawei firewall and we required help to do the configuration. However, the installation was easy with other standard vendors like Cisco and Check Point. The product's deployment got completed in four to five days and we required three people to handle it. One person was in charge of the portal's initial set up and the other one handled the integration of on-premises devices. The third one took care of Office 365 integration.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"I haven't had any issues with bugs or glitches. I haven't had a problem with stability so far."

"CrowdStrike Falcon is effortless to use, and it's a cloud-specific platform. You only need to deploy the light agents on the licensed endpoints, and you're ready to work. Your dashboards will tell you the number of the endpoints being protected and the incidents. There are also incident dashboards with alerts that will tell you about the details."

"One of the most valuable features of CrowdStrike Falcon is when there are upgrades there are no additional fees."

"The most valuable features of CrowdStrike Falcon include Falcon Fusion workflows and endpoint detection capabilities."

"The stability is good; we haven't experienced any glitches or bugs."

"I like the feature called RTC, the remote time connector."

"Probably the most valuable thing to me is the real-time response piece. The fact that I can connect to an endpoint as long as it is on the Internet, no matter where it is globally. I can remove files from the endpoint, drop files on the endpoint, stop processes, reboot it, run custom scripts, and deploy software. Pretty much no other tool can do all that."

"It's really good because it can detect anything."

More CrowdStrike Falcon pros

"I rate Rapid7 nine out of 10 for affordability"

"The incident case management is the most valuable feature. Even though there's always something I find I would like to add to that feature, the ability to quickly sort through all the logs, network and endpoint data, etc., and add it to an incident case as part of the investigation, is nice. Having it automatically timeline that additional data into the original incident timeline, and correlate it to other notable events and activities on the network, results in a huge improvement in our overall confidence that we've quickly traced down the right source of an issue."

"Very intuitive and easy to set up."

"InsightIDR helps us investigate an environment to discover information about incidents."

"The solution is easy to use, and the interface is intuitive."

"If you were on other solutions, you would notice that they use agents from third-party, from open-source, from a native OS, or from other tools. Here, however, it is an agent from Rapid7 itself. This adds to the solution's overall capabilities."

"I like that it's a cloud-based solution."

"Integration with threat modeling from the Metasploit and InsightIDR repositories."

More Rapid7 InsightIDR pros

Cons

"Dashboard creation is one of the areas for improvement in CrowdStrike Falcon. Sometimes, management asks for a custom dashboard, so my team has to collect data from CrowdStrike Falcon, integrate that in Splunk, then create the dashboard in Splunk. The Splunk dashboard is more elaborate, so the CrowdStrike Falcon dashboard needs improvement. Another area for improvement in the tool is the malware detection report, as it needs to be more detailed and include some graphics so that if you want to present that data in a nutshell, it's easier to do. For example, the report should consist of some graphical representation that shows a month's worth of data. In terms of an additional feature I'd like CrowdStrike Falcon to have, it's the device posture assessment feature that detects the device posture within the network. Whichever device connects to the corporate network, my company should be able to analyze the device posture. Then there should be communication with the network, which means that as soon as a device connects, CrowdStrike Falcon can assess the device posture, detect its corporate asset, and decide whether it should be allowed on the network."

"In terms of features, I would like them to add detailed logging functionality in CrowdStrike. Currently, CrowdStrike detects the threats immediately based on the IOCs and the signature-based policies or many threat behaviors, but in terms of logging those threats, it is not very good. The information that they provide in the logs is very little. They can build more analytics into it."

"CrowdStrike Suites and the way that it bundles things can be a bit challenging. It should be easier to integrate with the other stuff that they sell or be included with what they sell. We have one piece, then they are talking about another piece on vulnerability management all of the sudden, and we don't own that piece. We can see it in the console, but nothing shows up. It simply appears within the tool as an option, but we can't use it without purchasing it."

"I would like a centralized deployment where I could roll out or push it to all endpoints."

"I would like CrowdStrike to provide some correlation in the threat analysis, so we can visualize things better."

"Crowdstrike Falcon XDR can improve the integration. There are some locks on the cloud to on-premise integrations."

"The detection time has room for improvement."

"The technical support could improve because I am in India and the support I receive is from the UK or Australia. It is difficult to manage the time difference. The service could be faster. However, when we do have the support they are knowledgeable."

More CrowdStrike Falcon cons

"Sometimes, it is hard to get the right queries to use. Currently, the tool lacks a pre-made set of queries."

"I would like the ability to adjust the threshold of certain existing alerts. Currently the only option is to change the notifications or create my own alert."

"Cloud risk assessment is one area where I think they need a lot of improvement."

"Rapid7 InsightIDR is not intuitive to search for logs. It should be more user-friendly and improve the dashboards. We should be able to use ready-made templates instead of having to build one."

"The interface for doing investigation needs to be enhanced with minor improvements that would make it more useful."

"The searching feature in Rapid7 InsightIDR needs to evolve"

"The solution needs improvement in threat intelligence. Increasing the depth of intelligence to help users understand more about threats is a possibility. My suggestion is to expand access to other websites or resources."

"The APIs can be further improved in Rapid7."

More Rapid7 InsightIDR cons

Pricing and Cost Advice

"CrowdStrike Falcon's price is good."

"The pricing and licensing are reasonable. I don't think we are getting charged more than what it is worth. It is fair, but I do not like how it is a la carte. I realize they do that so other organizations can buy and get the agent, getting it cheaper than you could otherwise. However, if you want the main core package, which has all the main features with the exception of maybe the multi-cloud protections, that can get pricier for an organization. So, you have to pick and choose what you want. I do not care for a la carte pricing."

"We are at about $60,000 per year."

"There are three to four licensing models available to choose from for CrowdStrike Falcon. The price of CrowdStrike Falcon depends on the distributor and the reseller partner. The price we received was good."

"It's an expensive solution but you get a very good product for the price. Compared to other products, SentinelOne is definitely cheaper and the Microsoft E5 package is probably more expensive. Not many companies are willing to purchase CrowdStrike Falcon in Turkey due to the cost, but the market is changing."

"CrowdStrike is a reasonably priced tool."

"We bought a very small number of licenses, then ran it for a year. We bought a 100 licenses for a year, so we didn't actually do a proof of concept. We just bought them. Then, the next year, we bought 10,000 licenses."

"The price of CrowdStrike Falcon is expensive."

More CrowdStrike Falcon pricing and cost advice

"Licensing is by endpoint and amount of retention time (at least ours is). Default retention was one year, but we are able to push the retention further if needed. There's also a provide-your-own-S3 option for longer retention if you don't want to pay for the additional retention years in your Rapid7 agreement."

"It is more reasonably priced than other vendors."

"Rapid7 InsightIDR's pricing is reasonable but we have challenges with the Minimum Order Quantity. It is not reasonable for customers who have less than one hundred devices. If they can reduce Minimum Order Quantity, it is good. You have to pay around 5000-6000 dollars per year for the product. The pricing includes maintenance and support costs."

"Rapid7 InsightIDR charges us based on the endpoints we connect to."

"The pricing is good, and it is not very expensive."

"It is a reasonably priced solution."

"I rate Rapid7 InsightIDR's price a four on a scale of one to ten, where one is cheap, and ten is expensive."

"The solution has a mid-range price point in the market"

More Rapid7 InsightIDR pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.

See recommendations

824,053 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

15%

Financial Services Firm

10%

Manufacturing Company

Government

Computer Software Company

16%

Financial Services Firm

Manufacturing Company

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

Comparing CrowdStrike Falcon to Cortex XDR (Palo Alto)

Cortex XDR by Palo Alto vs. CrowdStrike Falcon Both Cortex XDR and Crowd Strike Falcon offer cloud-based solutions that are very scalable, secure, and user-friendly. Cortex XDR by Palo Alto offers ...

See all answers

How does Crowdstrike Falcon compare with Darktrace?

Both of these products perform similarly and have many outstanding attributes. CrowdStrike Falcon offers an amazing user interface that makes setup easy and seamless. CrowdStrike Falcon offers a cl...

See all answers

How does Microsoft Defender for Endpoint compare with Crowdstrike Falcon?

The CrowdStrike solution delivers a lot of information about incidents. It has a very light sensor that will never push your machine hardware to "test", you don't have the usual "scan now" feature ...

See all answers

What SOC product do you recommend?

For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...

See all answers

What do you like most about Rapid7 InsightIDR?

During simulations or demonstrations, the tool generates alerts, providing details such as the specific application, its origin, and potential threats. For instance, it can identify if an applicati...

See all answers

What is your experience regarding pricing and costs for Rapid7 InsightIDR?

The product pricing is very cheap.

See all answers

Comparisons

Microsoft Defender XDR vs CrowdStrike Falcon

Compared 6% of the time

Microsoft Defender for Endpoint vs CrowdStrike Falcon

Compared 5% of the time

Darktrace vs CrowdStrike Falcon

Compared 4% of the time

Kaspersky Endpoint Detection and Response vs CrowdStrike Falcon

Compared 4% of the time

Symantec Endpoint Security vs CrowdStrike Falcon

Compared 3% of the time

More CrowdStrike Falcon Competitors

Darktrace vs Rapid7 InsightIDR

Compared 12% of the time

Microsoft Sentinel vs Rapid7 InsightIDR

Compared 11% of the time

Rapid7 InsightVM vs Rapid7 InsightIDR

Compared 8% of the time

Splunk Enterprise Security vs Rapid7 InsightIDR

Compared 5% of the time

Google Chronicle Suite vs Rapid7 InsightIDR

Compared 3% of the time

More Rapid7 InsightIDR Competitors

Product Reports

Buyer's Guide

CrowdStrike Falcon

December 2024

Download CrowdStrike Falcon product report

Buyer's Guide

Rapid7 InsightIDR

November 2024

Download Rapid7 InsightIDR product report

Also Known As

CrowdStrike Falcon, CrowdStrike Falcon XDR, CrowdStrike Falcon Threat Intelligence, CrowdStrike Identity Protection, CrowdStrike Falcon Surface

InsightIDR

Learn More

CrowdStrike

Rapid7

Overview

CrowdStrike Falcon provides endpoint protection and threat intelligence using a cloud-based platform for real-time detection and response. Its minimal impact on system performance and ease of deployment are key benefits along with advanced logging and reporting for compliance and forensic analysis.

CrowdStrike Falcon is known for its efficacy in identifying malware, ransomware, and sophisticated cyber threats. The platform's cloud-native architecture and advanced AI capabilities ensure comprehensive endpoint visibility and rapid response times. Users appreciate the lightweight agent and seamless deployment process, along with detailed reporting features. Integration with security tools and efficient customer support are essential features, although some users highlight high pricing, occasional detection delays, and challenges with integration. Frequent alerts and the mobile app's performance are areas for improvement.

What are the key features of CrowdStrike Falcon?

Real-time Threat Detection: Provides immediate threat identification and response.
Lightweight Agent: Minimal impact on system performance.
Cloud-native Architecture: Ensures flexibility and scalability.
Advanced AI Capabilities: Enhances threat detection and prevention.
Comprehensive Endpoint Visibility: Complete insight into endpoint activities.
Detailed Reporting: Facilitates compliance and forensic analysis.
Security Tool Integration: Seamless integration with other tools.
Efficient Customer Support: Robust support services.

What are the benefits or ROI of CrowdStrike Falcon?

Improved Threat Detection: Identifies sophisticated threats, reducing risk.
Enhanced System Performance: Lightweight agent ensures minimal disruption.
Faster Response Times: Swift reaction to incidents minimizes damage.
Better Compliance: Detailed logs meet regulatory requirements.
Streamlined Deployment: Easy to implement with minimal downtime.

In industries like finance, healthcare, and retail, CrowdStrike Falcon is often used for critical security due to its robust threat detection capabilities. Financial firms value its rapid response and detailed reporting for compliance, while healthcare providers appreciate the minimal system performance impact. Retailers benefit from its comprehensive endpoint visibility and integration with other security tools.

Parsing hundreds of trivial alerts. Managing a mountain of data. Manually forwarding info from your endpoints. Forget that. InsightIDR instantly arms you with the insight you need to make better decisions across the incident detection and response lifecycle, faster.

Sample Customers

Information Not Available

Liberty Wines, Pioneer Telephone, Visier

Buyer's Guide

CrowdStrike Falcon vs. Rapid7 InsightIDR

November 2024

Free Report: CrowdStrike Falcon vs. Rapid7 InsightIDR

Find out what your peers are saying about CrowdStrike Falcon vs. Rapid7 InsightIDR and other solutions. Updated: November 2024.

DOWNLOAD NOW

824,053 professionals have used our research since 2012.

See our CrowdStrike Falcon vs. Rapid7 InsightIDR report.

See our list of best Security Information and Event Management (SIEM) vendors, best Endpoint Detection and Response (EDR) vendors, and best Extended Detection and Response (XDR) vendors.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.