Try our new research platform with insights from 80,000+ expert users

Ivanti Neurons for RBVM vs Qualys VMDR vs Rapid7 Metasploit comparison

 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Customer Service

No sentiment score available
Sentiment score
6.3
Qualys VMDR's customer service is praised for responsiveness and expertise, but some users desire faster resolution and more comprehensive support.
No sentiment score available
Rapid7 Metasploit's support is inconsistent, with mixed reviews on effectiveness and lacking official support for the community edition.
The technical support provided by Qualys is pretty good.
The response time takes a while.
 

Room For Improvement

No sentiment score available
Sentiment score
5.0
Qualys VMDR needs improvements in reporting, user interface, false positives, asset management, integration, support, analytics, and pricing.
No sentiment score available
Enhance Rapid7 Metasploit by updating exploits, reducing resource usage, improving GUI, and adding user-friendly features and training.
It does not automate patching unless the patch management module is purchased separately.
The response time of technical support takes a while.
 

Scalability Issues

No sentiment score available
Sentiment score
8.0
Qualys VMDR is praised for its scalable cloud architecture, efficiently managing assets and deployments across various organizational sizes.
No sentiment score available
Rapid7 Metasploit's scalability receives mixed feedback, with concerns about automation and scalability, though some find it sufficient.
Scalability depends on the license and the number of assets being monitored.
 

Setup Cost

No sentiment score available
Sentiment score
4.5
Qualys VMDR is customizable and comprehensive but seen as costly, especially for smaller companies and mid-sized programs.
No sentiment score available
Enterprise users have mixed views on Rapid7 Metasploit pricing, with concerns over affordability versus value in licensing costs.
I would rate the pricing between seven to eight out of ten.
 

Stability Issues

No sentiment score available
Sentiment score
8.0
Qualys VMDR is highly stable with minimal issues, praised for reliability, although occasional slowness occurs with large data scans.
No sentiment score available
Rapid7 Metasploit's stability is improved, rated highly by users, but some report varying experiences with recent updates.
 

Valuable Features

No sentiment score available
Sentiment score
8.1
Qualys VMDR offers robust vulnerability management, customization, integration, and real-time updates, praised for ease of use and scalability.
Sentiment score
7.6
Rapid7 Metasploit provides extensive penetration testing tools, automation, and scalability with unique direct exploitation across multiple operating systems.
Qualys VMDR offers a one-stop solution for monitoring and reporting.
I like the automated report generation and vulnerability report generation.
 

Mindshare comparison

As of November 2024, in the Vulnerability Management category, the mindshare of Ivanti Neurons for RBVM is 0.4%, down from 0.5% compared to the previous year. The mindshare of Qualys VMDR is 12.2%, down from 13.6% compared to the previous year. The mindshare of Rapid7 Metasploit is 1.9%, down from 1.9% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Vulnerability Management
 

Featured Reviews

Anon127 - PeerSpot reviewer
Useful for vulnerability management with many integrations
We use RiskSense for vulnerability management, and we have many integrations.  The solution is deployed on cloud. We use this solution daily. There are more than 200 people using this solution in my organization Most of the features are similar to what other tools have, but the UIs are quite user…
Harold Jensen - PeerSpot reviewer
Good visibility but expensive and needs better support
Support: It's often overseas and often following a script, basically asking us to redo what we opened the case with. Multiple APIs: There seems to be a lack of easy onboarding into Qualys. We had to use manual inputs and some API calls to get items in place. Dashboard: It is very rudimentary with very little customization. The Qualys Scripting Language (QSL) works differently in different Qualys modules, so when you get it working in one area you have to modify the syntax in others. User account management: We often have to give users more rights than needed just to give them what they need. Integration with the various Qualys Modules: You can tell the UI is different based on of the different teams that created them. QSL syntax same in all modules Responsiveness of some of the components: They time out, you get a blank screen, etc. Backend updates between the various modules: You update connectors and information takes a few minutes to show in VMDR or Global Asset View Connectors: Connectors have a throttling issue with AWS which causes them to frequently fail unless you manually run them again.
Aqeel Junaid - PeerSpot reviewer
Helps find vulnerabilities in a system to determine whether the system needs to be upgraded
The solution's exploit development functionality was easy to use and had all the scenarios I could use to run my security assessment. Since the solution has been updated regarding new malware, it gives data protection for security professionals. Rapid7 Metasploit is a good exploit tool, and users need to know what they're doing while using the solution. The solution provides perfect effectiveness in simulating real-world attacks for training purposes. Overall, I rate the solution a nine out of ten.
report
Use our free recommendation engine to learn which Vulnerability Management solutions are best for your needs.
816,660 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
17%
Manufacturing Company
10%
Financial Services Firm
9%
Healthcare Company
8%
Educational Organization
35%
Computer Software Company
11%
Financial Services Firm
10%
Manufacturing Company
6%
Computer Software Company
19%
Financial Services Firm
10%
Manufacturing Company
10%
University
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
 

Questions from the Community

Ask a question
Earn 20 points
What is your primary use case for Qualys VM?
Qualys VM is used for vulnerability scans for the internet and applications using application exchange. There are man...
What do you like most about Qualys VMDR?
I like that we have many scanners and channels that don't overload. It helps us scan and track easily. Also, the tagg...
What is your experience regarding pricing and costs for Qualys VMDR?
I am not aware of the actual cost or pricing as it is managed by the client.
What do you like most about Rapid7 Metasploit?
I use Rapid7 Metasploit for payload generation and Post-Exploitation.
What needs improvement with Rapid7 Metasploit?
Rapid7 Metasploit could be made easier for new users to learn.
 

Also Known As

RiskSense
Qualys VM, QualysGuard VM, Qualys Asset Inventory, Qualys Container Security, Qualys Virtual Scanner Appliance
Metasploit
 

Overview

 

Sample Customers

Care First, City of Alburquerque, Electric Company El Paso, State of Arizona, Washington Gas
Agrokor Group, American Specialty Health, American State Bank, Arval, Life:), Axway, Bank of the West, Blueport Commerce, BSkyB, Brinks, CaixaBank, Cartagena, Catholic Health System, CEC Bank, Cegedim, CIGNA, Clickability, Colby-Sawyer College, Commercial Bank of Dubai, University of Utah, eBay Inc., ING Singapore, National Theatre, OTP Bank, Sodexo, WebEx
City of Corpus Christi, Diebold, Lumenate, Nebraska Public Power District, Prairie North Regional Health, Apptio, Automation Direct, Bob's Stores, Cardinal Innovations Healthcare Solutions, Carnegie Mellon University
Find out what your peers are saying about Tenable, Qualys, Wiz and others in Vulnerability Management. Updated: November 2024.
816,660 professionals have used our research since 2012.