"Now, I don't have to go to development and ask them to kick off security testing. They do it as part of their process and I get the results in InsightAppSec. I'm out of their way, they can move fast, and we don't have to spend money on third parties."
“If someone breaks into your network, and they know that your policy locks out a user who makes three unsuccessful login attempts, then they can circumvent that by trying to log in twice across 200 machines. You need to ask yourself, would I catch that? Without InsightUBA, the answer is no.”
“In my experience Nexpose has been extremely useful. We use it for both general and target scanning, and love that it can pinpoint a particular device and scan more deeply. It’s great for finding problems and demonstrating what’s really going on in networks. It’s helped educate a lot of people here.”
"We don’t like to stay with one vendor with what we do, but when that vendor continually is the best in each category, it’s kind of hard not to go with them."
"Since using [InsightVM], we’ve cut down vulnerability detection and remediation time to under a week, added real-time progress tracking, and more easily reported metrics to the C-suite."
"Rapid7 Nexpose is simple to use and still meets the bank's security needs even after the organization doubled in size. Today Bridgehampton National Bank receives stellar audits and relies upon Nexpose to scan hundreds of workstations and a virtualized server environment."
"Verdict: For a large enterprise – really, no matter how large – this product is well worth your consideration. It brings the power of significant functionality with a history of reliability and excellent support options."
"Nexpose gives me live vulnerability data that updates the second my environment changes."
"Time is precious, so I don’t want to do something manually that I can automate. Leveraging the Metasploit Framework when automating any task keeps us from having to re-create the wheel as we can use the existing libraries and focus our efforts where it matters."
"Metasploit and Nexpose just work. They both have intuitive designs and provide a fast way to collect all the low-hanging security problems when a new system is deployed."
"Attack Replay saves me a lot of time. Developers don’t ask me nearly as often to run additional scans to test a new security bug patch—instead they can test it directly from the vulnerability report."
“Before, we had one scanner and it would come up with certain vulnerabilities. There wasn’t a lot on the internet side, and we would fix them and go with it. Then we got Nexpose on the production network and thought ‘Wow, there are a lot of vulnerabilities here.’ Maybe it’s because they’re not on the internet and the patching is done a little differently.”
“The saving grace is that you can have Nexpose vulnerabilities automatically imported into Metasploit to validate exploitability. It’s a seamless integration which saves me countless hours and allows me to focus on my highest risks.”
“We pull event data for InsightIDR directly from the event source, and every log source requires a transformation. The Rapid7 user behavior analytics approach is great, especially when it comes to enriching log data with user data. Your developers have properly invested in being able to show the right data in the right format.”
“Sometimes you purchase something and get buyer’s remorse. You wonder if you made the right decision. When we were doing the installation, though, that’s when I thought ‘Wow, these guys know their software.’ They knew a fix immediately, for everything.”
FeaturedCustomers has 1,871,571+ validated customer references
including reviews, case studies, success stories, customer stories,
testimonials and customer videos that will help you make better
software purchasing decisions.