Microsoft Defender XDR vs Rapid7 InsightIDR comparison

Microsoft and Rapid7 are both solutions in the Endpoint Detection and Response (EDR) category. Microsoft is ranked #5 with an average rating of 8.4, while Rapid7 is ranked #20 with an average rating of 8.1. Additionally, 97% of Microsoft users are willing to recommend the solution, compared to 95% of Rapid7 users who would recommend it.

Microsoft Defender XDR

Read 89 Microsoft Defender XDR reviews

5,960 Views
4,546 Comparison Views

97% willing to recommend

Rapid7 InsightIDR

Read 31 Rapid7 InsightIDR reviews

1,984 Views
1,134 Comparison Views

95% willing to recommend

Microsoft Defender XDR

Rapid7 InsightIDR

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Sep 9, 2024

Rapid7 InsightIDR and Microsoft Defender XDR are leading security solutions. Users prefer Rapid7 InsightIDR for pricing and support, while Microsoft Defender XDR excels in features.

Features: Users praise Rapid7 InsightIDR for its robust incident detection and response capabilities, user-friendly setup, and automated workflows. Microsoft Defender XDR is highly rated for its comprehensive threat intelligence, integration with other Microsoft products, and advanced analytics.

Room for Improvement: Rapid7 InsightIDR needs better scalability, enhanced reporting, and faster query performance. Microsoft Defender XDR could improve interoperability with non-Microsoft environments, more intuitive alert management, and better integration with third-party tools.

Ease of Deployment and Customer Service: Rapid7 InsightIDR is praised for straightforward deployment and responsive customer support, with quick setup times and helpful resources. Microsoft Defender XDR has mixed reviews on customer service, with some users experiencing slower response times but is also straightforward to deploy.

Pricing and ROI: Users find Rapid7 InsightIDR's pricing competitive with a higher perceived ROI due to effective threat detection and ease of use. Microsoft Defender XDR is seen as more costly but justified by its extensive features and integrations.

To learn more, read our detailed Microsoft Defender XDR vs. Rapid7 InsightIDR Report (Updated: October 2024).

Buyer's Guide

Microsoft Defender XDR vs. Rapid7 InsightIDR

October 2024

Download the complete report

Helped 814,649 peers since 2012

Categories and Ranking

Microsoft Defender XDR

Ranking in Endpoint Detection and Response (EDR)

5th

Ranking in Extended Detection and Response (XDR)

5th

Average Rating

8.4

Number of Reviews

Ranking in other categories

Microsoft Security Suite (2nd)

Rapid7 InsightIDR

Ranking in Endpoint Detection and Response (EDR)

20th

Ranking in Extended Detection and Response (XDR)

15th

Average Rating

8.4

Number of Reviews

Ranking in other categories

Security Information and Event Management (SIEM) (9th), User Entity Behavior Analytics (UEBA) (3rd), Threat Deception Platforms (5th)

Featured Reviews

Desray Liu

Project Manager at Freedom Systems Inc.

Nov 28, 2023

A time-saving and easy-to-integrate product that needs to offer a control center to users

As a part of Microsoft's attempt to reduce costs, there has been a direct cut down of the local technical support team. Sometimes, you have to use the technical support offered by Microsoft from other countries, but at times, we speak different languages, just like how people speak in Chinese or Mandarin, but there are still some differences between them. The front-line support from Microsoft has only limited technical abilities or access to their internal system. Sometimes, my company cannot even escalate an issue to Microsoft's senior team members. The support team of Microsoft is nice as they attempt to solve the problems together with you, but I believe that due to some cost-related issues, they don't have enough permissions. Sometimes, users might feel blocked when trying to connect with the support team. I rate the technical support a seven out of ten.

Read full review

JensWolf

Systems Administrator at Gernandt & Danielsson Advokatbyrå KB

Sep 28, 2023

A solution that offers easy setup and deployment phases, along with great scalability and stability

I use Rapid7 InsightIDR to collect logs and information from throughout our company's entire IT environment The most valuable feature of the solution is the single pane of glass that allows me to see all the information in one spot. I can see at one spot to see all the information from all the…

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The visibility into threats is also very impressive because Microsoft helps you predict things and provides analytics to help you really improve your security. And all of this technology works across the domain, so it is pretty helpful in terms of threat analytics."

"The most valuable feature is probably the aggregation and correlation of the different telemetry points with Defender for Identity, Defender for Endpoint, and Defender for Cloud Apps. All of these various things are part of that portal. We've wanted that single pane of glass for years."

"Microsoft 365 Defender is a good solution and easy to use."

"The integration, visibility, vulnerability management, and device identification are valuable."

"My clients like Defender's file integrity monitoring. They're monitoring Windows and Linux system files."

"The ability to integrate and observe a more cohesive narrative across the products is crucial."

"The most valuable feature is the DLP because that's where we can have an added data protection layer and extend it not just to emails but to the documents that users are working on. We can make sure that sensitive data is tagged and flagged if unauthorized parties are using it."

"Defender XDR enables you to scan a system remotely and get a complete inventory of its assets. You can gather more information from the asset inventory and apply threat intelligence using Office 365 or something."

More Microsoft Defender XDR pros

"The alerting to drive investigations and remediation has been its most valuable feature."

"The solution provides satisfying native integration features"

"It improves because several sensors are deployed within the on-premise environment. It can be very efficient if the customer implements and operates it effectively."

"InsightIDR helps us investigate an environment to discover information about incidents."

"Great coverage of all systems within our network from endpoint to firewall."

"It is a very stable solution."

"Scalability-wise, I rate the solution a ten out of ten. As a cloud tool, the product is highly scalable."

"The incident case management is the most valuable feature. Even though there's always something I find I would like to add to that feature, the ability to quickly sort through all the logs, network and endpoint data, etc., and add it to an incident case as part of the investigation, is nice. Having it automatically timeline that additional data into the original incident timeline, and correlate it to other notable events and activities on the network, results in a huge improvement in our overall confidence that we've quickly traced down the right source of an issue."

More Rapid7 InsightIDR pros

Cons

"The management and automation of the cloud apps have room for improvement."

"Just like in any solution, the price can always be cheaper."

"When we do investigations, it would be better if Microsoft could populate the host dashboard more. When we open any host for investigation, we want the entire timeline of what is happening on the host, including all the users logging in, their hardware, Windows version, etc."

"Microsoft Defender XDR is not a full-fledged EDR or XDR."

"Customers say they want absolutely seamless integration between other Microsoft solutions and Defender XDR, including the ability to change device settings within the Defender portal. They need to contact the IT team responsible for the device management tools to change some settings. They would prefer that those changes be initiated directly from the Defender portal or applied from Intune without involving the IT operations team."

"The user interface of Microsoft 365 Defender could improve. They could make it simpler."

"Advanced attacks could use an improvement."

"There is definitely scope for improvement in the automation area. Because the solution is a SaaS platform, we don't have the overall ability to automate stuff.... There is no direct way to go ahead because it's a SaaS platform."

More Microsoft Defender XDR cons

"The integration capabilities of the solution have certain shortcomings where improvements are required."

"The reporting is the weakest aspect. There needs to be multi-level grouping for events (for example, group by user and destination). Right now, we can do a group by user and a separate table or group by destination. But I'd be more interested in where a person was logging into instead of who was logging in or where he was logging in."

"The dashboard is an area that could be simplified."

"The APIs can be further improved in Rapid7."

"InsightIDR is only available in a cloud version. Some of our customers prefer an on-prem solution because they want to manage the security within their environment."

"The main problem lies in the processes within the client's operating systems."

"The searching feature in Rapid7 InsightIDR needs to evolve"

"I would like to see more development in InsightIDR towards building their SIEM solution and converting it to XDR."

More Rapid7 InsightIDR cons

Pricing and Cost Advice

"Microsoft Defender XDR is included in our license."

"They have moved from a licensing model to pay-per-use... The question is: What happens if, for any reason, there's not enough budget to accept this model? That could be a great problem."

"Microsoft Defender XDR is priced high."

"While Microsoft Defender XDR carries a higher cost, its ease of use compared to Defender may justify the investment."

"The most valuable licensing option is expensive, so pricing could be improved. Licensing options for this solution also need to be consolidated, because they frequently change."

"On average, we pay around 55 euros per user for the services and features we receive."

"I believe that the pricing of the licensing is fair."

"Microsoft Defender XDR's licensing is complicated."

More Microsoft Defender XDR pricing and cost advice

"It is a reasonably priced solution."

"Licensing is straightforward. If, for some reason, you don’t meet the minimum licensing requirements, there is a third-party managed service that can help."

"The solution has a mid-range price point in the market"

"Rapid7 InsightIDR is a cheaply priced product. On a scale of one to ten, where one is very expensive, and ten is very cheap, I rate the product's price at seven or eight."

"Rapid7 InsightIDR's pricing is reasonable but we have challenges with the Minimum Order Quantity. It is not reasonable for customers who have less than one hundred devices. If they can reduce Minimum Order Quantity, it is good. You have to pay around 5000-6000 dollars per year for the product. The pricing includes maintenance and support costs."

"Rapid7 InsightIDR's pricing is reasonable."

"The pricing is good, and it is not very expensive."

"It is more reasonably priced than other vendors."

More Rapid7 InsightIDR pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Endpoint Detection and Response (EDR) solutions are best for your needs.

See recommendations

814,649 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

17%

Financial Services Firm

10%

Government

Manufacturing Company

Computer Software Company

16%

Financial Services Firm

Manufacturing Company

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about Microsoft 365 Defender?

Microsoft Defender XDR provides strong identity protection with comprehensive insights into risky user behavior and potential indicators of compromise.

See all answers

What is your experience regarding pricing and costs for Microsoft 365 Defender?

The pricing is reasonable. It's cheaper than other options.

See all answers

What needs improvement with Microsoft 365 Defender?

The solution could enhance the threat Intelligence feature by making it more relevant to specific industries. Much of the threat intelligence information isn't directly applicable to our environmen...

See all answers

What SOC product do you recommend?

For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...

See all answers

What do you like most about Rapid7 InsightIDR?

During simulations or demonstrations, the tool generates alerts, providing details such as the specific application, its origin, and potential threats. For instance, it can identify if an applicati...

See all answers

What is your experience regarding pricing and costs for Rapid7 InsightIDR?

The product pricing is very cheap.

See all answers

Comparisons

CrowdStrike Falcon vs Microsoft Defender XDR

Compared 38% of the time

Wazuh vs Microsoft Defender XDR

Compared 8% of the time

Microsoft Defender for Cloud vs Microsoft Defender XDR

Compared 8% of the time

Trend Vision One vs Microsoft Defender XDR

Compared 5% of the time

Microsoft Purview Compliance Manager vs Microsoft Defender XDR

Compared 4% of the time

More Microsoft Defender XDR Competitors

Darktrace vs Rapid7 InsightIDR

Compared 13% of the time

Microsoft Sentinel vs Rapid7 InsightIDR

Compared 11% of the time

Rapid7 InsightVM vs Rapid7 InsightIDR

Compared 7% of the time

CrowdStrike Falcon vs Rapid7 InsightIDR

Compared 6% of the time

Splunk Enterprise Security vs Rapid7 InsightIDR

Compared 5% of the time

More Rapid7 InsightIDR Competitors

Product Reports

Buyer's Guide

Microsoft Defender XDR

October 2024

Download Microsoft Defender XDR product report

Buyer's Guide

Rapid7 InsightIDR

October 2024

Download Rapid7 InsightIDR product report

Also Known As

Microsoft 365 Defender, Microsoft Threat Protection, MS 365 Defender

InsightIDR

Learn More

Microsoft

Rapid7

Overview

Microsoft Defender XDR is a comprehensive security solution designed to protect against threats in the Microsoft 365 environment.

It offers robust security measures, comprehensive threat detection capabilities, and an efficient incident response system. With seamless integration with other Microsoft products and a user-friendly interface, it simplifies security management tasks.

Users have found it effective in detecting and preventing various types of attacks, such as phishing attempts, malware infections, and data breaches.

Watch the Microsoft demo video here: Microsoft Defender XDR demo video.

Parsing hundreds of trivial alerts. Managing a mountain of data. Manually forwarding info from your endpoints. Forget that. InsightIDR instantly arms you with the insight you need to make better decisions across the incident detection and response lifecycle, faster.

Sample Customers

Accenture, Deloitte, ExxonMobil, General Electric, IBM, Johnson & Johnson and many others.

Liberty Wines, Pioneer Telephone, Visier

Buyer's Guide

Microsoft Defender XDR vs. Rapid7 InsightIDR

October 2024

Free Report: Microsoft Defender XDR vs. Rapid7 InsightIDR

Find out what your peers are saying about Microsoft Defender XDR vs. Rapid7 InsightIDR and other solutions. Updated: October 2024.

DOWNLOAD NOW

814,649 professionals have used our research since 2012.

See our Microsoft Defender XDR vs. Rapid7 InsightIDR report.

See our list of best Endpoint Detection and Response (EDR) vendors and best Extended Detection and Response (XDR) vendors.

We monitor all Endpoint Detection and Response (EDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.