139 Rapid7 Testimonials

“The big difference [compared to Nessus] was in the prioritization of vulnerability remediation, which saves me almost 140 hours of work.”

“We don’t just want data for the sake of having data – the goal is to be able to do something with it, it needs to be actionable. Nexpose gives a picture of your environment that calls out where the ‘holes’ are, and where you have room for improvement.”

“[Rapid7 is] definitely writing the books on a lot of things. So I thought, here’s a stateof-the-art, world-class organization, and it would be hard to argue with their position in the market. We wanted the name recognition, especially for our first big pen test.”

“Rapid7 tools such as Metasploit will also play a key role in establishing my own in-house penetration testing and red teaming programs.”

“The goals over the past three or four years has been to transform us from a reactive security organization to something that is much more proactive. The integration of tools and pre-emptive alerting is a large part of this.”

"Invariably people can get to pretty much 80% of what they need intuitively rather than sitting down and having a full lesson."

"After deploying InsightIDR, we no longer needed to query individual syslog servers to find answers."

“My experience with Rapid7 has always been great. Each time we try to evaluate new products or have some new use cases, they’re really interactive and really helpful.”

"Hey look, this vulnerability is legit. I can exploit it with Metasploit. If I can do it, pretty much anybody else on the internet can do it, and let me show you."

"After just a month and a half, Cheney and his colleagues had resolved 12% of all server vulnerabilities and 7% of VDI bugs."

“Rapid7 makes it extremely clear where you stand. So, if I'm telling a peer what they will get out of the product suite, it would be that it has sufficient information, presented in an extremely clear manner which shows them that there’s an issue and that action needs to be taken.”

"Sleeping easier at night is one aspect, but it’s about being more proactive about things. It’s knowing what the landscape is, being able to report on what we don’t know, and to sort, categorise, and prioritise particular styles of threats. It has been an eye-opener for us, particularly because we don’t have a CISO in the business."

“We catch up with one of our CAs regularly, and the conversations we have aren’t just purely around the MDR service—they might be about new vulnerabilities and other things in the industry that have popped up. So we can leverage their knowledge and experience to get more security information.”

"InsightVM helps to trend over time and show that vulnerabilities are being addressed and remediated with a clear goal."

"We don’t like to stay with one vendor with what we do, but when that vendor continually is the best in each category, it’s kind of hard not to go with them."