Rapid7 InsightIDR vs VMware Carbon Black Endpoint comparison

Rapid7 and VMware are both solutions in the Endpoint Detection and Response (EDR) category. Rapid7 is ranked #18 with an average rating of 8.2, while VMware is ranked #15 with an average rating of 7.7. Rapid7 holds a 1.1% mindshare in EDR, compared to VMware’s 1.7% mindshare. Additionally, 95% of Rapid7 users are willing to recommend the solution, compared to 88% of VMware users who would recommend it.

Rapid7 InsightIDR

Read 32 Rapid7 InsightIDR reviews

1,964 Views
1,207 Comparison Views

95% willing to recommend

VMware Carbon Black Endpoint

Read 63 VMware Carbon Black Endpoint reviews

5,074 Views
3,614 Comparison Views

88% willing to recommend

Rapid7 InsightIDR

VMware Carbon Black Endpoint

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Sep 9, 2024

VMware Carbon Black Endpoint and Rapid7 InsightIDR are two prominent endpoint security solutions. Rapid7 InsightIDR holds an edge for its comprehensive suite and higher user satisfaction, while VMware Carbon Black stands out for its pricing and support.

Features: VMware Carbon Black Endpoint offers strong malware detection, threat hunting capabilities, and competitive pricing. Rapid7 InsightIDR includes advanced analytics, automated incident response, and a robust performance feature set.

Room for Improvement: VMware Carbon Black Endpoint users need better integration with other security tools, a more intuitive management console, and simplified initial setup. Rapid7 InsightIDR users want enhancements in reporting, more flexible deployment options, and improved integration with existing tools.

Ease of Deployment and Customer Service: VMware Carbon Black Endpoint is praised for its deployment process but critiqued for complex initial setup. Rapid7 InsightIDR receives positive feedback for straightforward deployment and efficient customer service, making it simpler and more reliable for users.

Pricing and ROI: VMware Carbon Black Endpoint is appreciated for its competitive pricing and perceived value. Rapid7 InsightIDR, while more expensive, is seen as worth the investment due to its extensive features and robust performance, justified by its higher ROI according to users.

To learn more, read our detailed Rapid7 InsightIDR vs. VMware Carbon Black Endpoint Report (Updated: April 2025).

Buyer's Guide

Rapid7 InsightIDR vs. VMware Carbon Black Endpoint

April 2025

Download the complete report

Helped 848,476 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Rapid7 InsightIDR

Ranking in Endpoint Detection and Response (EDR)

18th

Average Rating

8.4

Reviews Sentiment

7.4

Number of Reviews

Ranking in other categories

Security Information and Event Management (SIEM) (9th), User Entity Behavior Analytics (UEBA) (2nd), Threat Deception Platforms (5th), Extended Detection and Response (XDR) (14th)

VMware Carbon Black Endpoint

Ranking in Endpoint Detection and Response (EDR)

15th

Average Rating

7.8

Reviews Sentiment

7.0

Number of Reviews

Ranking in other categories

Endpoint Protection Platform (EPP) (21st), Security Incident Response (1st), Ransomware Protection (5th)

Mindshare comparison

As of April 2025, in the Endpoint Detection and Response (EDR) category, the mindshare of Rapid7 InsightIDR is 1.1%, up from 0.7% compared to the previous year. The mindshare of VMware Carbon Black Endpoint is 1.7%, down from 3.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Endpoint Detection and Response (EDR)

Featured Reviews

Asim Naeem

Principal IT Security & Compliance at IBEX Holdings Ltd

Providing comprehensive insight into alerts while working towards AI enhancement

I definitely recommend Rapid7 InsightIDR. It is becoming better, with improvements being continuously made to the product. Right now, I do not have any advice about Rapid7 for other users because every organization or user has different criteria or multiple use cases, so I refrain from commenting on that. I rate the overall solution seven out of ten.

Read full review

Nikunj Kamboj

Cybersecurity Analyst at OnX Canada

Integrates well with our existing SIEM tool and helps in identifying suspicious activities

The solution's integration with our existing security infrastructure is good. Whenever we have any alert in VMware Carbon Black Endpoint, we can easily that alert in our SIEM tool and check logs from the SIEM tool itself. VMware Carbon Black Endpoint is just a secondary security tool for us, and we are just monitoring the alerts from it. The solution's behavioral analytics feature helps in identifying suspicious activities pretty well. Whenever we have even a small thing, we get an alert. The solution is deployed on the cloud in our organization. Performance-wise, the solution is doing great in terms of connecting to the host directly. Performing a malware scan usually takes a lot of time, more than 24 hours. A malware scan is something that we do only on Carbon Black for the old endpoint devices and servers. It used to take sometimes three days to perform. I would recommend the solution to other users. Overall, I rate the solution an eight out of ten.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"Simple configuration and automatically syncs to the cloud platform."

"It is a very stable solution."

"The incident case management is the most valuable feature. Even though there's always something I find I would like to add to that feature, the ability to quickly sort through all the logs, network and endpoint data, etc., and add it to an incident case as part of the investigation, is nice. Having it automatically timeline that additional data into the original incident timeline, and correlate it to other notable events and activities on the network, results in a huge improvement in our overall confidence that we've quickly traced down the right source of an issue."

"The biggest reason why we chose Rapid7 was to gain value in a really quick time. Its deployment doesn't take months. It just takes a few days."

"InsightIDR helps us investigate an environment to discover information about incidents."

"The platform offers unlimited storage and agent-based solutions."

"The solution is very stable and works very well for what I need it to do."

"Log search allows us to dive deep into aggregated logs and query all event types at once."

More Rapid7 InsightIDR pros

"What I like the most about it is the dynamic grouping, where you get to group endpoints based on setup criteria. That's pretty cool. I like the simplified policy management and simplified white-listing process."

"It has the best live response feature."

"Technical support is excellent."

"The product's most valuable feature is its ability to be fully integrated with the VMware environment."

"Carbon Black Cb Defense has a nice component called Alert Triage. It contains full details of the process execution "kill chain" and "go live" for immediate remediation."

"The best feature of this solution is that we have a live response, which is really tailored to our needs."

"The portal is easy to use and manage."

"One of the most valuable features is that it will block vulnerable sites. If there was a connection between one of our devices to a known malware site, it will block it."

More VMware Carbon Black Endpoint pros

Cons

"It would be useful to import threat intelligence in YARA format along with known incorrect email addresses."

"One of the things that could be better is digital forensics. It is there, but it can be better. They could provide more on the endpoint detection level."

"Tenable Nessus is easier to deal with. It's more efficient and accurate. InsightIDR is heavier than Tenable in terms of performance and scanning. Rapid7 would be much easier to use if it had a network connector like Tenable. Tenable's connector allows continuous monitoring over the B caps."

"The interface for doing investigation needs to be enhanced with minor improvements that would make it more useful."

"Lacks a mobile application."

"InsightIDR's integration with other solutions could be improved. Also, I'd like more control from the portal over what's happening on the endpoint side. For example, when I see an attack on an endpoint, I want to be able to stop it from the portal."

"InsightIDR is only available in a cloud version. Some of our customers prefer an on-prem solution because they want to manage the security within their environment."

"The solution's XDR agents cannot compete with the XDR solutions out there yet."

More Rapid7 InsightIDR cons

"Certain settings have limitations. For example, I cannot manually block some malware activities."

"The solution needs better overall compatibility with other products."

"The application control can be improved. It should also have an automatic update of the agents."

"The node management could be much better. The one thing that they cannot do very easily is change the tenant from a backend."

"The solution needs expanded endpoint query tools."

"It would be a better solution if Carbon Black Cb Defense had an on-promise solution and a virus auto delete or quarantine."

"A search bar in the investigation page and some AI-related tasks like outgoing alerts, or recent tactics that are being used in the market, must be embedded in the tool so that it's easier to find alerts."

"This solution could have greater granular control on how certain applications work."

More VMware Carbon Black Endpoint cons

Pricing and Cost Advice

"The pricing of the solution depends on the user. But there is a yearly licensing cost."

"It is a reasonably priced solution."

"Rapid7 InsightIDR's pricing is reasonable."

"The pricing and licensing are competitive."

"I rate Rapid7 InsightIDR's price a four on a scale of one to ten, where one is cheap, and ten is expensive."

"It is more reasonably priced than other vendors."

"Accurately predict your licensing counts as this is a subscription based product."

"The solution has a mid-range price point in the market"

More Rapid7 InsightIDR pricing and cost advice

"The cost is a considerable factor, but the benefit factor is the most important. When you compare it with other products, the price is high. Carbon Black will negotiate the price."

"The product’s price is less expensive than other vendors."

"The pricing is annually based and operates through another department than mine."

"It is more expensive, but it's worth it. There are no additional costs beyond the standard licensing fee."

"Overall, it was cost-effective too."

"The license is annual. It's a standard license."

"It's reasonable in price"

"The product is quite reasonable."

More VMware Carbon Black Endpoint pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Endpoint Detection and Response (EDR) solutions are best for your needs.

See recommendations

848,476 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

16%

Financial Services Firm

Manufacturing Company

Government

Computer Software Company

15%

Financial Services Firm

11%

Government

10%

Manufacturing Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What SOC product do you recommend?

For tools I’d recommend: -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also, rememb...

See all answers

What do you like most about Rapid7 InsightIDR?

During simulations or demonstrations, the tool generates alerts, providing details such as the specific application, its origin, and potential threats. For instance, it can identify if an applicati...

See all answers

What is your experience regarding pricing and costs for Rapid7 InsightIDR?

The product pricing is very cheap.

See all answers

What to choose: an endpoint antivirus, an EDR solution or both?

I can recommend Carbon Black, an award-winning next-gen anti-virus (NGAV) and endpoint detection and response (EDR) security solution. The CB Predictive Security Cloud platform combines multiple hi...

See all answers

What's the difference between Carbon Black CB Response and Carbon Black CB Defense?

Carbon Black offers two different levels of Endpoint Detection and Response. One is the VM Carbon Black Cloud Endpoint Standard (CB Defense), and the other is the Carbon Black Endpoint Detection an...

See all answers

What do you like most about Carbon Black CB Defense?

VMware Carbon Black Endpoint is a highly stable solution.

See all answers

Comparisons

Darktrace vs Rapid7 InsightIDR

Compared 10% of the time

Microsoft Sentinel vs Rapid7 InsightIDR

Compared 9% of the time

Rapid7 InsightVM vs Rapid7 InsightIDR

Compared 8% of the time

CrowdStrike Falcon vs Rapid7 InsightIDR

Compared 5% of the time

Splunk Enterprise Security vs Rapid7 InsightIDR

Compared 5% of the time

More Rapid7 InsightIDR Competitors

CrowdStrike Falcon vs VMware Carbon Black Endpoint

Compared 15% of the time

Microsoft Defender for Endpoint vs VMware Carbon Black Endpoint

Compared 14% of the time

SentinelOne Singularity Complete vs VMware Carbon Black Endpoint

Compared 9% of the time

Trellix Endpoint Security vs VMware Carbon Black Endpoint

Compared 9% of the time

Trend Micro Deep Security vs VMware Carbon Black Endpoint

Compared 8% of the time

More VMware Carbon Black Endpoint Competitors

Product Reports

Buyer's Guide

Rapid7 InsightIDR

April 2025

Download Rapid7 InsightIDR product report

Buyer's Guide

VMware Carbon Black Endpoint

March 2025

Download VMware Carbon Black Endpoint product report

Also Known As

InsightIDR

Carbon Black CB Defense, Bit9, Confer

Overview

Parsing hundreds of trivial alerts. Managing a mountain of data. Manually forwarding info from your endpoints. Forget that. InsightIDR instantly arms you with the insight you need to make better decisions across the incident detection and response lifecycle, faster.

Rapid7

VMware Carbon Black Endpoint provides comprehensive endpoint security against ransomware, spyware, malware, and viruses, catering to both cloud and on-premise environments.

VMware Carbon Black Endpoint facilitates endpoint detection and response, threat hunting, application control, antivirus support, and protection for virtual and physical machines. Features include intelligent learning, whitelisting, and integration with other security tools, making it suitable for distributors, MSPs, and enterprises seeking advanced threat defense and real-time monitoring. With its capability to detect and stop malicious executables, it supports both offline and online environments and offers tools like command shell access for deeper investigation.

What are the key features of VMware Carbon Black Endpoint?

Intelligent learning: Improves detection capabilities over time.
Whitelisting: Allows only approved applications to run.
Integration with other security tools: Enhances overall security posture.
Centralized cloud control: Manages endpoints from a single interface.
Command shell access: Offers deeper investigation capabilities.
Dynamic grouping: Facilitates organized endpoint management.
Simplified policy management: Streamlines security policy implementation.
API for system remoting: Allows remote system access and management.
Twenty-four-seven support: Provides continuous assistance and response.

What are the benefits of VMware Carbon Black Endpoint?

Real-time monitoring: Offers constant vigilance against threats.
Threat hunting: Identifies and mitigates threats proactively.
Historical data analysis: Assists in understanding past incidents and patterns.
Improved endpoint protection: Enhances overall endpoint security.
Enhanced threat detection: Reduces exposure to advanced threats.

VMware Carbon Black Endpoint is implemented across various industries including technology, healthcare, and finance. Organizations utilize it in cloud and hybrid environments, enhancing their security frameworks with real-time monitoring, intelligent learning, and robust threat detection capabilities tailored to their specific industry needs.

VMware

Sample Customers

Liberty Wines, Pioneer Telephone, Visier

Netflix, Progress Residential, Indeed, Hologic, Gentle Giant, Samsung Research America

Buyer's Guide

Rapid7 InsightIDR vs. VMware Carbon Black Endpoint

April 2025

Free Report: Rapid7 InsightIDR vs. VMware Carbon Black Endpoint

Find out what your peers are saying about Rapid7 InsightIDR vs. VMware Carbon Black Endpoint and other solutions. Updated: April 2025.

DOWNLOAD NOW

848,476 professionals have used our research since 2012.

See our Rapid7 InsightIDR vs. VMware Carbon Black Endpoint report.

See our list of best Endpoint Detection and Response (EDR) vendors.

We monitor all Endpoint Detection and Response (EDR) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.