Reviews from AWS Marketplace
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
External reviews are not included in the AWS star rating for the product.
Kunal Review
What do you like best about the product?
Identify active assets
Port scanning
Missing patch identification
Port scanning
Missing patch identification
What do you dislike about the product?
Fixing Authentication issue specially Unix
No domain based authentication for Linux device
No Cis benchmark configration error identification
No domain based authentication for Linux device
No Cis benchmark configration error identification
What problems is the product solving and how is that benefiting you?
Inventory with businsess unit
All asset identification in cloud
All asset identification in cloud
- Leave a Comment |
- Mark review as helpful
InsightVM simplified vulnerability Management and outlines a plan for IT without big infosec teams
What do you like best about the product?
InsightVM gave us the ability to bring together several log systems and freed up our time to concentrate on the high value issues and single out the highest risk assets in the environment as well as justify removing Java from the environment that one team required an out of date version for an application. Real actionable data to provide to management to make changes in security policy.
What do you dislike about the product?
We did not have any negative experiences during deployment and use. We do still have issues with the web platform and missing features compared to the on premises server, but that is minor compared to what we have gained from the platform.
What problems is the product solving and how is that benefiting you?
We have greatly improved our time to response on vulnerabilities and the reporting has proven useful in many high level meetings in order to affect changes and show improvements in our security exposure over the last 6 months.
InsightVM (Nexpose) Review
What do you like best about the product?
I like how InsightVM does a deeper vulnerability scan of all assets that have an IP address in our network. Network devices, hosts, IoTs, phones, etc. InsightVM also integrates very well with InsightIDR SIEM and Insight Anyconnect to remediate issues it finds. I also like how it integrates with SCCM which makes it easier for us to remediate and automate things.
What do you dislike about the product?
InsightVM for some reason had issues resolving licensing count in our deployment as well as doing exclusions when manually creating a scan group. The ability to create a scan group exclusion is critical because we use a guest network and during an IP range scanning, these devices are also reported by InsightVM.
What problems is the product solving and how is that benefiting you?
We mostly used InsightVM for the vulnerability management of our servers and workstation environment. Using InsightVM allowed us to find obsolete software we've already forgotten as well as helping us keep our Windows environment updated with current patches.
Recommendations to others considering the product:
As a recommendation for others considering InsightVM, run a longer POC of the system and see how it works. Line up a test system and play with all the settings. The product is solid and the support is top-notch. InsightVM is a great tool for any vulnerability management process.
Rapid7 InsightVM - No Other Way To Go
What do you like best about the product?
Definitely the Remediation Projects. No more spreadsheets, thousands of tickets, or super long PDF's that the owner is just going to throw away.
What do you dislike about the product?
Just the waiting on them to offer a full-cloud option.
What problems is the product solving and how is that benefiting you?
Risk-based Vulnerability Management with plenty of automation and granularity built right in.
Security Overview
What do you like best about the product?
InsightVM allows us to see an overall view of our security posture. Easy to use and understand the metrics provided on the built-in reports and dashboards.
What do you dislike about the product?
Very minimal to dislike.. I would say the one request I would like to see in the future is more customization of reporting and projects.
What problems is the product solving and how is that benefiting you?
Being able to see the entire view of the company in one view. Easy to identify where remediation efforts are needed. VM allows me to communicate to stakeholders easily and provide detailed feedback when asked questions regarding the reports.
InsightVM The Ultimate Vulnerability Management Solution
What do you like best about the product?
Vulnerability metrics
Remediation Projects
Dashboards
Asset Tagging
Automated Scanning
Remediation Projects
Dashboards
Asset Tagging
Automated Scanning
What do you dislike about the product?
Credentialed scanning can raise some concerns about password sniffing, but this is mitigated by installing the agent on the endpoints.
What problems is the product solving and how is that benefiting you?
The product has given us visibility into our threat landscape and has helped us significantly reduce the number of exploitable systems in our environment.
Recommendations to others considering the product:
Geographic Sites with respectively placed scan engines.
InsightVM
What do you like best about the product?
I am a big fan of the reporting tools, SLAs and insightVM agent
What do you dislike about the product?
I really don't have any nuances with the product, it has evolved since I start using it, got more integration, and additional features
What problems is the product solving and how is that benefiting you?
Staying on top of our remediation process, monitoring the progress and meeting SLAs
Recommendations to others considering the product:
It is a great product, easy to setup and use
InsightVM (Nexpose) Vulnerability Management
What do you like best about the product?
Configuration, customization, and scanning
What do you dislike about the product?
Inaccuracy of some scans (Cisco routers sometimes show up as different models which mark incorrect vulnerabilities)
What problems is the product solving and how is that benefiting you?
Insight to Vulnerabilities and validation of our patch management
Insight VM useful experience in vulnerability management
What do you like best about the product?
IVM has a remediation projects , a section that is a helpful tool to follows vulns state during periods between scan jobs, we can review the vulns state per group (servers, apps, workstations, others), and the person in charge and is possible to add comments and approval the remediation actions and do additional test to confirm. This feature reduces the load of work in management and is the most effective strattegy
What do you dislike about the product?
Some times different areas have differents needs and we must to prepare a very customizable reports for each one, some times the person in charge change the idea and request a new report with other info.
What problems is the product solving and how is that benefiting you?
We solved that with a single tool can scan internal external IP addresses, virtualizad and cloud objetives
We have a better useful manage for remediation projects with third party integrations, this info can be exported to other solutions like SIEM, or Metasploit and is more easy to do complex tasks
We have a better useful manage for remediation projects with third party integrations, this info can be exported to other solutions like SIEM, or Metasploit and is more easy to do complex tasks
Switched to IVM and never looked back
What do you like best about the product?
IVM is very easy to use and intuitive. From setting up sites, to creating asset groups, to tagging, it all makes sense. Granted there are deeper features to learn about, especially those related to the cloud-based features such as Remediation Projects. I've used IVM for about 3 years and I continually find new ways to use the product and R7 is consistently adding new features, so there's always a new way to use the product.
What do you dislike about the product?
While it isn't an easy ask, the remediation instructions can be improved on. Granted it can be difficult when there are numerous operating systems, along with their associated versions, especially when you get into the Linux world. This can be helpful for teams that are not experienced with security or are less technically knowledgeable.
What problems is the product solving and how is that benefiting you?
The core of what we are trying to resolve is vulnerability assessment and management. In an enterprise environment this is always a challenge, but additionally we've found it useful for discovery and organization of assets. While IVM isn't designed for asset management, it can certainly help. While our network design isn't typical, it has been helpful to utilize tags to organize and assign remediation responsibilities.
Recommendations to others considering the product:
As with any product, ensure that it meets your needs and fills gaps that you may have. IVM won't be a magic bullet, but it will point you in the right direction and will help your security team with vulnerability remediation. Rapid 7 has also kept those that are outside of security in mind. With the proper knowledge, remediation projects, goals, reports, and asset groups can all be used to ensure other technical teams have the information they need to fix any issues identified in IVM.
showing 31 - 40