Fortinet FortiSandbox vs Rapid7 InsightIDR comparison

Fortinet and Rapid7 are both solutions in the Threat Deception Platforms category. Fortinet is ranked #7 with an average rating of 8.1, while Rapid7 is ranked #5 with an average rating of 8.2. Fortinet holds a 3.8% mindshare in TDP, compared to Rapid7’s 10.7% mindshare. Additionally, 94% of Fortinet users are willing to recommend the solution, compared to 95% of Rapid7 users who would recommend it.

Fortinet FortiSandbox

Read 38 Fortinet FortiSandbox reviews

53 Views
37 Comparison Views

94% willing to recommend

Rapid7 InsightIDR

Read 32 Rapid7 InsightIDR reviews

171 Views
119 Comparison Views

95% willing to recommend

Fortinet FortiSandbox

Rapid7 InsightIDR

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Feb 4, 2025

Fortinet FortiSandbox and Rapid7 InsightIDR are significant players in the security solutions market. While Fortinet FortiSandbox attracts users with its robust pricing and customer support, Rapid7 InsightIDR is often favored due to its extensive features, making it a better choice for those seeking comprehensive capabilities.

Features: Fortinet FortiSandbox offers strong integration with other Fortinet products, enabling cohesive security management. It supports various protection types from email to web applications, with features like manual scanning and handling zero-day threats. Rapid7 InsightIDR stands out with user behavior analytics, threat intelligence, and comprehensive SIEM automation. It integrates smoothly with existing infrastructures, uses honeypots, and has effective incident management capabilities.

Room for Improvement: Fortinet FortiSandbox could improve its virtual environment capacity, expand third-party integrations, and enhance machine learning capabilities. Licensing complexity and slow technical support response are also noted concerns. Rapid7 InsightIDR would benefit from increased third-party integrations, better digital forensics, and improved threat intelligence features. Users suggest enhancements in search functionalities and custom alert configurations.

Ease of Deployment and Customer Service: Fortinet FortiSandbox is available in various deployment models, offering flexibility from on-premises to hybrid cloud, yet faces deployment complexity. The support is reliable but can be slow. Rapid7 InsightIDR, being primarily cloud-based, provides smooth deployments and simplicity, receiving praise for its responsive customer service though there is room for improving support turnaround time.

Pricing and ROI: Fortinet FortiSandbox offers affordable pricing, though licensing complexity hampers predictability. It achieves good ROI by mitigating potential data breach costs. Rapid7 InsightIDR has competitive pricing based on endpoints, offering clear ROI benefits. The cloud model is suitable for businesses looking to reduce hardware costs and simplify scalability.

To learn more, read our detailed Fortinet FortiSandbox vs. Rapid7 InsightIDR Report (Updated: March 2025).

Buyer's Guide

Fortinet FortiSandbox vs. Rapid7 InsightIDR

March 2025

Download the complete report

Helped 845,406 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Fortinet FortiSandbox

Ranking in Threat Deception Platforms

7th

Average Rating

8.2

Reviews Sentiment

7.1

Number of Reviews

Ranking in other categories

Advanced Threat Protection (ATP) (4th)

Rapid7 InsightIDR

Ranking in Threat Deception Platforms

5th

Average Rating

8.4

Reviews Sentiment

7.4

Number of Reviews

Ranking in other categories

Security Information and Event Management (SIEM) (9th), User Entity Behavior Analytics (UEBA) (2nd), Endpoint Detection and Response (EDR) (18th), Extended Detection and Response (XDR) (14th)

Mindshare comparison

As of April 2025, in the Threat Deception Platforms category, the mindshare of Fortinet FortiSandbox is 3.8%, up from 1.4% compared to the previous year. The mindshare of Rapid7 InsightIDR is 10.7%, up from 6.9% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Threat Deception Platforms

Featured Reviews

Kiarash Heydari

Information security manager at asa com

Light and powerful solution design; useful to have

My impression is that the initial setup process is quite straightforward. If you know what you're using it for, the initial setup can be quite easy and the solution is not that hard to use. When it comes to the steps taken for the implementation, you would select the OS you're using and when the files are sent to the appliance you check, and in the appliance configuration, it must be like the visual governance environment. You must set up the OS you have so that appliance can scan or analyze your file. To maintain this solution, you must always have at least one all-around person tuning this solution.

Read full review

Asim Naeem

Principal IT Security & Compliance at IBEX Holdings Ltd

Providing comprehensive insight into alerts while working towards AI enhancement

I definitely recommend Rapid7 InsightIDR. It is becoming better, with improvements being continuously made to the product. Right now, I do not have any advice about Rapid7 for other users because every organization or user has different criteria or multiple use cases, so I refrain from commenting on that. I rate the overall solution seven out of ten.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"Fortinet FortiSandbox is faster than other sandbox solutions."

"The scanner office document as well as PDF are useful. The most valuable thing is that you can emulate different operating systems without having the danger of getting something infected. It emulates several operating systems, and as a result, you either get the file or you don't get the file."

"The most valuable feature was the EDR, endpoint detection and response."

"It is an easily scalable solution."

"The product is great. It can be deployed on the cloud or on-premises."

"The initial setup is straightforward."

"The solution has the highest stability...The solution's setup is not complex as they are already included in Fortinet."

"The most valuable feature of the solution is that the performance it offers to users is good, making it useful for us in our company."

More Fortinet FortiSandbox pros

"I like that it's a cloud-based solution."

"InsightIDR helps us investigate an environment to discover information about incidents."

"User behavioral analytics allows us to pinpoint abnormal or suspicious behavior among millions of events every day."

"It improved my organization by building a security alerting program."

"We were able to identify criminals attempting to login from China and put a stop on their IP locations."

"The ability to ingest Office 365 log files, then process them into events and display them on a map."

"The technical support is a solid 10 out of 10 as they take the time to answer any questions or problems which may arise in a reasonable time frame."

"If you were on other solutions, you would notice that they use agents from third-party, from open-source, from a native OS, or from other tools. Here, however, it is an agent from Rapid7 itself. This adds to the solution's overall capabilities."

More Rapid7 InsightIDR pros

Cons

"When you reach the maximum capacity, you cannot upgrade the solution because its hardware is very expensive."

"The licensing can be very confusing. It needs to be simplified."

"In general, maybe they are not updated to cover risks."

"At least once a week we have a false alarm. This needs to be adjusted so that we get fewer of these occurrences."

"The use cases in Fortinet FortiSandbox are not good. It is difficult to upload a custom VM for Fortinet FortiSandbox. The integration of Fortinet FortiSandbox with other Fortinet or FortiGate firewalls is not good. VMs are already installed in the hardware and are working fine, but we tried to approve the custom VM many times but did not succeed."

"The integration is limited. The solution needs to offer better integration with multiple vendors."

"Sometimes, there are issues upgrading the version of the firewall or the SD-LAN box. After we upgrade to the latest version of the software, we still have the same box. I think it's the same for every vendor."

"Fortinet FortiSandbox should improve its performance and security accuracy to keep competitive with other solutions, such as IBM."

More Fortinet FortiSandbox cons

"I would like to see more development in InsightIDR towards building their SIEM solution and converting it to XDR."

"Inability to get access to compliance reports within the solution."

"InsightIDR is only available in a cloud version. Some of our customers prefer an on-prem solution because they want to manage the security within their environment."

"Lacks a mobile application."

"There is a future in AI with Rapid7, however, it is not fully operated. There are certain limitations with Rapid7 that I am working on."

"The dashboard is an area that could be simplified."

"The searching feature in Rapid7 InsightIDR needs to evolve"

"Cloud risk assessment is one area where I think they need a lot of improvement."

More Rapid7 InsightIDR cons

Pricing and Cost Advice

"The solution is affordable."

"There are no costs in addition to the standard licensing fees."

"The price of Fortinet FortiSandbox is expensive."

"The solution is unavailable at a lower cost and can be difficult to deploy."

"FortiSandbox is a subscription that can be purchased from Fortinet directly. Only using FortiSandbox as features purchased as a subscription in the cloud."

"Fortinet FortiSandbox is a nominally priced product, so I would not say that it is a very cheap tool."

"I rate the product's pricing a five or six on a scale of one to ten, where one is low, and ten is high."

"We are on an annual license to use the solution. We have an additional feature that is integrated with S5, which is working well."

More Fortinet FortiSandbox pricing and cost advice

"Licensing is by endpoint and amount of retention time (at least ours is). Default retention was one year, but we are able to push the retention further if needed. There's also a provide-your-own-S3 option for longer retention if you don't want to pay for the additional retention years in your Rapid7 agreement."

"Accurately predict your licensing counts as this is a subscription based product."

"Rapid7 InsightIDR is a cheaply priced product. On a scale of one to ten, where one is very expensive, and ten is very cheap, I rate the product's price at seven or eight."

"Licensing is straightforward. If, for some reason, you don’t meet the minimum licensing requirements, there is a third-party managed service that can help."

"It is on a yearly basis. For our own company, for about 250 users, it was 16,000 euros a year."

"The pricing and licensing are competitive."

"I am sure that there are cheaper products out there, but none that meet so many of our needs whilst maintaining stability and usability."

"The pricing is good, and it is not very expensive."

More Rapid7 InsightIDR pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Threat Deception Platforms solutions are best for your needs.

See recommendations

845,406 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Government

13%

Computer Software Company

12%

Financial Services Firm

10%

Manufacturing Company

Computer Software Company

16%

Financial Services Firm

Manufacturing Company

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about Fortinet FortiSandbox?

The real-time analysis capability of FortiSandbox is beneficial for email analysis.

See all answers

What is your experience regarding pricing and costs for Fortinet FortiSandbox?

I think it's affordable. For the six to seven months of usage, the cost has been reasonable.

See all answers

What needs improvement with Fortinet FortiSandbox?

We sometimes face a delay in email scanning due to not having multiple virtual machines. Improvements could be made in dynamic scanning, scanning all email components such as URLs and attachments, ...

See all answers

What SOC product do you recommend?

For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...

See all answers

What do you like most about Rapid7 InsightIDR?

During simulations or demonstrations, the tool generates alerts, providing details such as the specific application, its origin, and potential threats. For instance, it can identify if an applicati...

See all answers

What is your experience regarding pricing and costs for Rapid7 InsightIDR?

The product pricing is very cheap.

See all answers

Comparisons

Palo Alto Networks WildFire vs Fortinet FortiSandbox

Compared 42% of the time

Check Point SandBlast Network vs Fortinet FortiSandbox

Compared 15% of the time

Trellix Network Detection and Response vs Fortinet FortiSandbox

Compared 11% of the time

Microsoft Defender for Office 365 vs Fortinet FortiSandbox

Compared 7% of the time

Trend Micro Deep Discovery vs Fortinet FortiSandbox

Compared 5% of the time

More Fortinet FortiSandbox Competitors

Darktrace vs Rapid7 InsightIDR

Compared 10% of the time

Microsoft Sentinel vs Rapid7 InsightIDR

Compared 9% of the time

Rapid7 InsightVM vs Rapid7 InsightIDR

Compared 8% of the time

CrowdStrike Falcon vs Rapid7 InsightIDR

Compared 5% of the time

Splunk Enterprise Security vs Rapid7 InsightIDR

Compared 5% of the time

More Rapid7 InsightIDR Competitors

Product Reports

Buyer's Guide

Fortinet FortiSandbox

March 2025

Download Fortinet FortiSandbox product report

Buyer's Guide

Rapid7 InsightIDR

March 2025

Download Rapid7 InsightIDR product report

Also Known As

FortiSandbox

InsightIDR

Overview

Fortinet FortiSandbox is a behavior-based threat detection solution that prevents and detects malicious code in files transferred within the organization. It is integrated with FortiGate firewalls and FortiMail for threat protection and can be used for monitoring and reporting. The solution inspects files in a virtual environment with different types of virtual machines and can block or quarantine files based on their score.

The most valuable features include dynamic behavior analysis, manual scan features, easy management and configuration, fast scanning, scalability, customization, and ICAP protocol. The solution is cost-effective and faster than other sandbox solutions, with a good user interface.

Fortinet

Parsing hundreds of trivial alerts. Managing a mountain of data. Manually forwarding info from your endpoints. Forget that. InsightIDR instantly arms you with the insight you need to make better decisions across the incident detection and response lifecycle, faster.

Rapid7

Sample Customers

Lush, Barnabas Health, Options, Riverside Healthcare, Hillsbourough County Schools, Columbia Public Schools, Schiller AG

Liberty Wines, Pioneer Telephone, Visier

Buyer's Guide

Fortinet FortiSandbox vs. Rapid7 InsightIDR

March 2025

Free Report: Fortinet FortiSandbox vs. Rapid7 InsightIDR

Find out what your peers are saying about Fortinet FortiSandbox vs. Rapid7 InsightIDR and other solutions. Updated: March 2025.

DOWNLOAD NOW

845,406 professionals have used our research since 2012.

See our Fortinet FortiSandbox vs. Rapid7 InsightIDR report.

See our list of best Threat Deception Platforms vendors.

We monitor all Threat Deception Platforms reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.