CrowdStrike Falcon vs Rapid7 InsightIDR comparison

CrowdStrike and Rapid7 are both solutions in the Security Information and Event Management (SIEM) category. CrowdStrike is ranked #6 with an average rating of 8.8, while Rapid7 is ranked #9 with an average rating of 8.1. Additionally, 97% of CrowdStrike users are willing to recommend the solution, compared to 95% of Rapid7 users who would recommend it.

CrowdStrike Falcon

Read 122 CrowdStrike Falcon reviews

3,714 Views
2,882 Comparison Views

97% willing to recommend

Rapid7 InsightIDR

Read 31 Rapid7 InsightIDR reviews

4,823 Views
2,829 Comparison Views

95% willing to recommend

CrowdStrike Falcon

Rapid7 InsightIDR

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Dec 8, 2024

CrowdStrike Falcon and Rapid7 InsightIDR are leading products in the cybersecurity category. CrowdStrike Falcon seems to have the upper hand due to its advanced features and customer service, but Rapid7 InsightIDR offers an appealing cost-effective option.

Features: CrowdStrike Falcon offers comprehensive endpoint visibility, robust threat detection, and a cloud-native flexibility that ensures always-on protection. It is recognized for its excellent endpoint detection and response capabilities. Rapid7 InsightIDR stands out with a user-friendly interface, seamless integration, and asset-based licensing that delivers competitive affordability.

Room for Improvement: CrowdStrike Falcon can improve in providing more flexible pricing options at lower device counts and enhancing some integration capabilities. It may also benefit from streamlined updates. Rapid7 InsightIDR could enhance its flexibility for larger, more diverse device environments and strengthen real-time threat monitoring and response features.

Ease of Deployment and Customer Service: CrowdStrike Falcon's deployment process is straightforward, with minimal maintenance required due to its cloud-native architecture. It is praised for proactive customer service. Rapid7 InsightIDR offers a simple setup process with quick deployment time and is supported by robust customer service.

Pricing and ROI: CrowdStrike Falcon customers highlight the ROI from reduced incident response times and operational efficiencies, despite higher pricing. Its pricing details are not specified. Rapid7 InsightIDR is noted for its cost-effectiveness and predictable subscription-based costs, though it may be less flexible for lower device counts.

To learn more, read our detailed CrowdStrike Falcon vs. Rapid7 InsightIDR Report (Updated: January 2025).

Buyer's Guide

CrowdStrike Falcon vs. Rapid7 InsightIDR

January 2025

Download the complete report

Helped 831,158 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

CrowdStrike Falcon

Ranking in Security Information and Event Management (SIEM)

6th

Ranking in Endpoint Detection and Response (EDR)

1st

Ranking in Extended Detection and Response (XDR)

1st

Average Rating

8.6

Reviews Sentiment

7.4

Number of Reviews

122

Ranking in other categories

Endpoint Protection Platform (EPP) (3rd), Identity Management (IM) (6th), Threat Intelligence Platforms (2nd), Active Directory Management (2nd), Attack Surface Management (ASM) (1st), Ransomware Protection (1st), Identity Threat Detection and Response (ITDR) (3rd), AI-Powered Cybersecurity Platforms (1st)

Rapid7 InsightIDR

Ranking in Security Information and Event Management (SIEM)

9th

Ranking in Endpoint Detection and Response (EDR)

20th

Ranking in Extended Detection and Response (XDR)

15th

Average Rating

8.4

Reviews Sentiment

7.5

Number of Reviews

Ranking in other categories

User Entity Behavior Analytics (UEBA) (3rd), Threat Deception Platforms (5th)

Featured Reviews

Chintan-Vyas

Associate Director at KPMG

Easy to set up with good behavior-based analysis but needs a single-click recovery option

Most organizations are currently looking for a scheduled scan to meet their compliance needs. Other players like Symantec and Trend Micro, FireEye, et cetera, are still providing the signature-based regular scheduled scans also, which is not available in CrowdStrike. That is one parameter that we feel should be there in CrowdStrike. CrowdStrike is only working on the dynamic or the files under execution. CrowdStrike is not scanning the static files. The product could be more accurate in terms of performance. We'd like to have a single-click recovery option. With some machines getting corrupted by malware, we need an easy way to start with a blank slate if things happen. That one feature should be there in the EDR.

Read full review

Prasanth Prasad

Director of Technology at a tech vendor with 11-50 employees

Offers capabilities in areas like threat intelligence and vulnerability management but needs to improve support

The most valuable feature of the product for managing security events stems from the fact that the product's intelligence part is very good since it offers its own threat intelligence and vulnerability management platform. The tool also has its own cloud security posture management platform. The tool also is a dynamic application security testing platform. The aforementioned tools fall under Rapid7 InsightIDR's kitty. The intelligence and the data that Rapid7 gathers from customers across the globe enrich the quality of its detection capabilities. All other tools in the market depend on third-party solutions for intelligence. Rapid7 InsightIDr has the intelligence part natively available within the product, giving it a good edge over other vendors.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The most valuable feature is the indicator of compromise, which show you what file was either quarantined or removed."

"I like the vulnerability assessment and proactive hunting features of CrowdStrike Falcon."

"Probably the most valuable thing to me is the real-time response piece. The fact that I can connect to an endpoint as long as it is on the Internet, no matter where it is globally. I can remove files from the endpoint, drop files on the endpoint, stop processes, reboot it, run custom scripts, and deploy software. Pretty much no other tool can do all that."

"It's given me a level of confidence that my network is secure."

"The most valuable feature of CrowdStrike Falcon is its accuracy."

"The most valuable features are the complete IPS and IDS."

"The platform is very scalable."

"The most valuable feature of CrowdStrike Falcon is crowdsourcing intelligence."

More CrowdStrike Falcon pros

"Scalability-wise, I rate the solution a ten out of ten. As a cloud tool, the product is highly scalable."

"Features for user behavior analytics and the rules for attack review are good."

"Rapid7 is easy to use and deploy. It is a simple solution and has easy data pulling."

"I am able to run automated actions based on the output of reports, leaving me extra time to focus on more pressing matters."

"Rapid7's reporting is more robust than Tenable's."

"Enables the use of honey pots, honey users, and honey files to monitor for suspicious patterns."

"The incident case management is the most valuable feature. Even though there's always something I find I would like to add to that feature, the ability to quickly sort through all the logs, network and endpoint data, etc., and add it to an incident case as part of the investigation, is nice. Having it automatically timeline that additional data into the original incident timeline, and correlate it to other notable events and activities on the network, results in a huge improvement in our overall confidence that we've quickly traced down the right source of an issue."

"I rate Rapid7 nine out of 10 for affordability"

More Rapid7 InsightIDR pros

Cons

"CrowdStrike Falcon needs to improve their host management system."

"The portal can be clunky to navigate at times and has room for improvement."

"I would rate it an eight out of ten. It does what it needs to do but there's always room for improvement."

"We encounter occasional issues, such as when disabling network access for a host that uses CrowdStrike."

"CrowdStrike Falcon could be enhanced by extending its security capabilities to include NDR and XDR."

"The GUI can use improvement, it's cloud-based so sometimes the interface can be a bit slow. The interface could use a little bit more speed."

"As the company has grown, the technical support has felt less personal."

"We have had to open a case with the technical support to get some issues and bugs resolved."

More CrowdStrike Falcon cons

"It takes time for the product's support team to resolve issues, making it an area of concern where improvements are required."

"It would be useful to import threat intelligence in YARA format along with known incorrect email addresses."

"Customised alert recipients need to be added to allow better first-line action and quicker response. Configurable honeypots would be a welcome addition."

"Tenable Nessus is easier to deal with. It's more efficient and accurate. InsightIDR is heavier than Tenable in terms of performance and scanning. Rapid7 would be much easier to use if it had a network connector like Tenable. Tenable's connector allows continuous monitoring over the B caps."

"I would like to see more development in InsightIDR towards building their SIEM solution and converting it to XDR."

"Rapid7 doesn't integrate well with all our security tools from various vendors, so we plan to switch. Many of our solutions work with Rapid7, but some do not. We are already searching for a replacement already."

"The solution's XDR agents cannot compete with the XDR solutions out there yet."

"The APIs can be further improved in Rapid7."

More Rapid7 InsightIDR cons

Pricing and Cost Advice

"I am not aware of the price, but I believe that it is among the most expensive XDRs out there. Of course, this is dependent on the features you choose. Depending on the features, the price might increase."

"Purchasing the product through the AWS Marketplace is just a click away. Since we were using the on-premise version of the product, we continued on the cloud by purchasing it through the AWS Marketplace."

"We have a yearly subscription and find the price to be good. I'd give it a rating of four out of five for price, we got a good discount."

"The pricing could be reduced. If it was more reasonable that would be great."

"The price of CrowdStrike Falcon is expensive."

"The licensing model is straightforward. We choose the features we want and we then can download the package we want."

"It's an expensive solution but you get a very good product for the price. Compared to other products, SentinelOne is definitely cheaper and the Microsoft E5 package is probably more expensive. Not many companies are willing to purchase CrowdStrike Falcon in Turkey due to the cost, but the market is changing."

"There is an annual license required to use this solution."

More CrowdStrike Falcon pricing and cost advice

"Licensing is by endpoint and amount of retention time (at least ours is). Default retention was one year, but we are able to push the retention further if needed. There's also a provide-your-own-S3 option for longer retention if you don't want to pay for the additional retention years in your Rapid7 agreement."

"Licensing is straightforward. If, for some reason, you don’t meet the minimum licensing requirements, there is a third-party managed service that can help."

"I am sure that there are cheaper products out there, but none that meet so many of our needs whilst maintaining stability and usability."

"Rapid7 InsightIDR is priced very well and is cost-effective."

"The pricing is good, and it is not very expensive."

"Rapid7 InsightIDR's pricing is reasonable but we have challenges with the Minimum Order Quantity. It is not reasonable for customers who have less than one hundred devices. If they can reduce Minimum Order Quantity, it is good. You have to pay around 5000-6000 dollars per year for the product. The pricing includes maintenance and support costs."

"The pricing and licensing are competitive."

"The solution has a mid-range price point in the market"

More Rapid7 InsightIDR pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Security Information and Event Management (SIEM) solutions are best for your needs.

See recommendations

831,158 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

15%

Financial Services Firm

10%

Manufacturing Company

Government

Computer Software Company

16%

Financial Services Firm

Manufacturing Company

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

Comparing CrowdStrike Falcon to Cortex XDR (Palo Alto)

Cortex XDR by Palo Alto vs. CrowdStrike Falcon Both Cortex XDR and Crowd Strike Falcon offer cloud-based solutions that are very scalable, secure, and user-friendly. Cortex XDR by Palo Alto offers ...

See all answers

How does Crowdstrike Falcon compare with Darktrace?

Both of these products perform similarly and have many outstanding attributes. CrowdStrike Falcon offers an amazing user interface that makes setup easy and seamless. CrowdStrike Falcon offers a cl...

See all answers

How does Microsoft Defender for Endpoint compare with Crowdstrike Falcon?

The CrowdStrike solution delivers a lot of information about incidents. It has a very light sensor that will never push your machine hardware to "test", you don't have the usual "scan now" feature ...

See all answers

What SOC product do you recommend?

For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...

See all answers

What do you like most about Rapid7 InsightIDR?

During simulations or demonstrations, the tool generates alerts, providing details such as the specific application, its origin, and potential threats. For instance, it can identify if an applicati...

See all answers

What is your experience regarding pricing and costs for Rapid7 InsightIDR?

The product pricing is very cheap.

See all answers

Comparisons

Microsoft Defender XDR vs CrowdStrike Falcon

Compared 6% of the time

Microsoft Defender for Endpoint vs CrowdStrike Falcon

Compared 6% of the time

Kaspersky Endpoint Detection and Response vs CrowdStrike Falcon

Compared 4% of the time

Darktrace vs CrowdStrike Falcon

Compared 4% of the time

Symantec Endpoint Security vs CrowdStrike Falcon

Compared 3% of the time

More CrowdStrike Falcon Competitors

Darktrace vs Rapid7 InsightIDR

Compared 13% of the time

Microsoft Sentinel vs Rapid7 InsightIDR

Compared 10% of the time

Rapid7 InsightVM vs Rapid7 InsightIDR

Compared 8% of the time

Splunk Enterprise Security vs Rapid7 InsightIDR

Compared 5% of the time

IBM Security QRadar vs Rapid7 InsightIDR

Compared 3% of the time

More Rapid7 InsightIDR Competitors

Product Reports

Buyer's Guide

CrowdStrike Falcon

January 2025

Download CrowdStrike Falcon product report

Buyer's Guide

Rapid7 InsightIDR

January 2025

Download Rapid7 InsightIDR product report

Also Known As

CrowdStrike Falcon, CrowdStrike Falcon XDR, CrowdStrike Falcon Threat Intelligence, CrowdStrike Identity Protection, CrowdStrike Falcon Surface

InsightIDR

Learn More

CrowdStrike

Rapid7

Overview

CrowdStrike Falcon provides endpoint protection and threat intelligence using a cloud-based platform for real-time detection and response. Its minimal impact on system performance and ease of deployment are key benefits along with advanced logging and reporting for compliance and forensic analysis.

CrowdStrike Falcon is known for its efficacy in identifying malware, ransomware, and sophisticated cyber threats. The platform's cloud-native architecture and advanced AI capabilities ensure comprehensive endpoint visibility and rapid response times. Users appreciate the lightweight agent and seamless deployment process, along with detailed reporting features. Integration with security tools and efficient customer support are essential features, although some users highlight high pricing, occasional detection delays, and challenges with integration. Frequent alerts and the mobile app's performance are areas for improvement.

What are the key features of CrowdStrike Falcon?

Real-time Threat Detection: Provides immediate threat identification and response.
Lightweight Agent: Minimal impact on system performance.
Cloud-native Architecture: Ensures flexibility and scalability.
Advanced AI Capabilities: Enhances threat detection and prevention.
Comprehensive Endpoint Visibility: Complete insight into endpoint activities.
Detailed Reporting: Facilitates compliance and forensic analysis.
Security Tool Integration: Seamless integration with other tools.
Efficient Customer Support: Robust support services.

What are the benefits or ROI of CrowdStrike Falcon?

Improved Threat Detection: Identifies sophisticated threats, reducing risk.
Enhanced System Performance: Lightweight agent ensures minimal disruption.
Faster Response Times: Swift reaction to incidents minimizes damage.
Better Compliance: Detailed logs meet regulatory requirements.
Streamlined Deployment: Easy to implement with minimal downtime.

In industries like finance, healthcare, and retail, CrowdStrike Falcon is often used for critical security due to its robust threat detection capabilities. Financial firms value its rapid response and detailed reporting for compliance, while healthcare providers appreciate the minimal system performance impact. Retailers benefit from its comprehensive endpoint visibility and integration with other security tools.

Parsing hundreds of trivial alerts. Managing a mountain of data. Manually forwarding info from your endpoints. Forget that. InsightIDR instantly arms you with the insight you need to make better decisions across the incident detection and response lifecycle, faster.

Sample Customers

Information Not Available

Liberty Wines, Pioneer Telephone, Visier

Buyer's Guide

CrowdStrike Falcon vs. Rapid7 InsightIDR

January 2025

Free Report: CrowdStrike Falcon vs. Rapid7 InsightIDR

Find out what your peers are saying about CrowdStrike Falcon vs. Rapid7 InsightIDR and other solutions. Updated: January 2025.

DOWNLOAD NOW

831,158 professionals have used our research since 2012.

See our CrowdStrike Falcon vs. Rapid7 InsightIDR report.

See our list of best Security Information and Event Management (SIEM) vendors, best Endpoint Detection and Response (EDR) vendors, and best Extended Detection and Response (XDR) vendors.

We monitor all Security Information and Event Management (SIEM) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.