Try our new research platform with insights from 80,000+ expert users

ManageEngine Vulnerability Manager Plus vs Rapid7 InsightVM comparison

Sponsored
 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Zafran Security
Sponsored
Average Rating
9.6
Reviews Sentiment
8.1
Number of Reviews
2
Ranking in other categories
Vulnerability Management (32nd), Continuous Threat Exposure Management (CTEM) (4th)
ManageEngine Vulnerability ...
Average Rating
9.4
Reviews Sentiment
7.4
Number of Reviews
3
Ranking in other categories
Vulnerability Management (27th)
Rapid7 InsightVM
Average Rating
8.0
Reviews Sentiment
7.0
Number of Reviews
61
Ranking in other categories
Risk-Based Vulnerability Management (4th)
 

Mindshare comparison

Vulnerability Management
Risk-Based Vulnerability Management
 

Featured Reviews

Israel Cavazos Landini - PeerSpot reviewer
Weekly insights and risk analysis facilitate informed security decisions
I appreciate the weekly insights Zafran provides, which include critical topics for networks and IT security, allowing us to evaluate which insights apply to our environment. The organization score feature is valuable to keep the leadership team updated on how our infrastructure fares security-wise. The applicable risk level versus base risk level feature is beneficial because prior to Zafran, we only used the base risk level, but now understand that risk depends on the asset itself. Zafran is an excellent tool.
MB
Enhanced endpoint security with effective patch management and frequent scans
The most valuable feature was the patch management, which was very effective for endpoint-centric solutions requiring remediation of vulnerabilities. ManageEngine Vulnerability Manager Plus was the perfect fit for managing these requirements. We improved the number of scans and patches performed from four times per year per computer to four times per month.
Mahmoud Elhamaymy - PeerSpot reviewer
Reliable scanning and integration strengthen security infrastructure
InsightVM has a very organized GUI with ease of use. The vulnerability scans are reliable, and the credential scan is a beneficial feature. The solution is efficient and trustworthy. It's based on the CVSS risk scoring system, which is well-recognized and effective. The integration capabilities through APIs allow easy integration with existing security infrastructure.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Zafran is an excellent tool."
"Zafran has become an indispensable tool in our cybersecurity arsenal."
"ManageEngine is a comprehensive tool that is broad and can be customized to fit specific needs."
"The most valuable feature was the patch management, which was very effective for endpoint-centric solutions requiring remediation of vulnerabilities."
"The solution helps us figure out vulnerabilities and fix them."
"I have been using it for over two years, and it is fantastic."
"The most valuable feature was the patch management, which was very effective for endpoint-centric solutions requiring remediation of vulnerabilities."
"The reports in Rapid7 InsightVM are useful when compared to competitors."
"InsightVM's most valuable feature is risk scoring, a formula based on different vectors like the ease of exploitation and the availability of the machine."
"The most valuable features are its reporting capabilities and the host discovery functionality."
"The solution is automatically scheduled so it runs by itself."
"The solution works well."
"InsightVM has a very organized GUI with ease of use."
"The most valuable feature is the site scanning, where we can provide a complete subnet and what it is we need to scan on those devices."
"We are very satisfied with the reports, as they provide us with the information that is required for our management."
 

Cons

"Initially, we were somewhat concerned about the scalability of Zafran due to our large asset count and the substantial amount of information we needed to process."
"One area that needs improvement is the contract management. My legal team required some partner requirements for that, and ManageEngine could not support it."
"The integration with third-party solutions such as ticketing solutions or CMDB solutions can be improved."
"One area that needs improvement is the contract management. My legal team required some partner requirements for that, and ManageEngine could not support it."
"The integration with third-party solutions such as ticketing solutions or CMDB solutions can be improved."
"The user interface is the only drawback of the product."
"InsightVM could be improved by providing passive scanning as an option."
"The solution should include a tighter integration with third-party threat modeling and threat intelligence tools."
"In order to be able to properly test the solution and make a decision, I would like to receive the test license code instantly and eliminate the wait time."
"The on-premise updates could improve from Rapid7 InsightVM."
"I think the improvement in the tool should be to provide a better update to users because sometimes the information within the cloud and the scanner are not synchronized very fast."
"Within InsightVM, there is no feature to assign a ticket. If we can have more API calls, we can do that from InsightVM."
"There needs to be much clearer instructions surrounding scanning."
"It is still not a fully cloud-based solution. It will be helpful for customers if it is a complete cloud solution. It is a hybrid solution at the moment."
 

Pricing and Cost Advice

Information not available
"The price is very reasonable."
"Pricing is reasonable because we pay according to asset usage. We can define our assets and sites according to our preference."
"The license is annual and this is the optimal approach when it comes to most software."
"Its price is too high. My only concern or issue with Rapid7 is its pricing."
"The tool's price is neither too high nor too low. My company needs to pay 65,000 per year. There are no additional costs apart from the licensing fees attached to the solution."
"Its licensing is yearly. Everything is included in the price for one year."
"A full license for the solution is expensive because it is at the organizational level and not by individual users."
"The licensing is asset-based and very straightforward."
"We purchase annual licenses."
report
Use our free recommendation engine to learn which Vulnerability Management solutions are best for your needs.
842,651 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
14%
Financial Services Firm
12%
University
6%
Retailer
6%
Financial Services Firm
12%
Government
12%
Computer Software Company
11%
Comms Service Provider
7%
Educational Organization
43%
Computer Software Company
9%
Financial Services Firm
8%
Manufacturing Company
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
No data available
 

Questions from the Community

What is your experience regarding pricing and costs for Zafran Security?
Pricing for Zafran Security is not expensive. We have a contract for five years, and the cost is lower than other too...
What needs improvement with Zafran Security?
I would like to see an integration with Check Point firewalls. It's essential for us and they are currently working o...
What is your primary use case for Zafran Security?
We use Zafran Security for threat prioritization. We establish priority to understand which risks should be patched o...
What do you like most about ManageEngine Vulnerability Manager Plus?
The solution helps us figure out vulnerabilities and fix them.
What is your experience regarding pricing and costs for ManageEngine Vulnerability Manager Plus?
ManageEngine is considered an affordable solution, offering competitive pricing compared to similar solutions like Ut...
What needs improvement with ManageEngine Vulnerability Manager Plus?
The integration with third-party solutions such as ticketing solutions or CMDB solutions can be improved. The asset d...
How would you choose between Rapid7 InsightVM and Tenable Nessus?
You have full visibility across cloud, network, virtual, and containerized infrastructures with Rapid7 Insight VM. Yo...
What do you like most about Rapid7 InsightVM?
The product's initial setup phase was very easy.
What is your experience regarding pricing and costs for Rapid7 InsightVM?
Rapid7 InsightVM is expensive, possibly one of the highest in pricing among similar products.
 

Also Known As

No data available
No data available
InsightVM, NeXpose
 

Overview

 

Sample Customers

Information Not Available
Information Not Available
ACS, Acosta, AllianceData, amazon.com, biogen idec, CBRE, CATERPILLAR, Deloitte, COACH, GameStop, IBM
Find out what your peers are saying about Wiz, Palo Alto Networks, Qualys and others in Vulnerability Management. Updated: March 2025.
842,651 professionals have used our research since 2012.