Rapid7 InsightVM
Rapid7 InsightVM
Rapid7 InsightVM provides visibility into asset risk posture across hybrid environments. It integrates with cloud and on-premises infrastructure to support remediation workflows and policy compliance.
Rapid7 InsightVM provides visibility into asset risk posture across hybrid environments. It integrates with cloud and on-premises infrastructure to support remediation workflows and policy compliance.
Cost considerations
Functionality
Compatibility
User experience
Customer support
Why these ratings?
Cyberse perspective
Solution details
Product features
Subcategory
Services support
Integrations
Deployment
Key features
Market segment
Scanning coverage
Cloud ecosystem partners
Target industry
We use the following criteria to evaluate this product:
Cost considerations
Rapid7 InsightVM charges roughly $2 per asset each month, a mid-market rate among vulnerability tools. Web-app and cloud assessments sit in separate products, adding extra fees beyond the core license. Similar vendors bundle those functions at comparable or lower prices, so overall spending is acceptable but not budget-leading.
Cost considerations
Rapid7 InsightVM charges roughly $2 per asset each month, a mid-market rate among vulnerability tools. Web-app and cloud assessments sit in separate products, adding extra fees beyond the core license. Similar vendors bundle those functions at comparable or lower prices, so overall spending is acceptable but not budget-leading.
Functionality
Rapid7 InsightVM tracks assets continuously with agents and authenticated scans, covers public-cloud resources and container images, and ranks exposures with an attacker-focused risk score. Remediation tickets are opened automatically in ServiceNow or Jira and close once follow-up scans confirm the fix. These functions place InsightVM at the highest functionality tier among vulnerability management tools.
Functionality
Rapid7 InsightVM tracks assets continuously with agents and authenticated scans, covers public-cloud resources and container images, and ranks exposures with an attacker-focused risk score. Remediation tickets are opened automatically in ServiceNow or Jira and close once follow-up scans confirm the fix. These functions place InsightVM at the highest functionality tier among vulnerability management tools.
Compatibility
Rapid7 InsightVM provides agents for Windows, Linux, and macOS, connects to AWS, Azure, and GCP via APIs, and supports SAML single sign-on. Built-in ServiceNow CMDB sync and a Splunk add-on share asset and vulnerability data with IT and SIEM tools without heavy scripting. Container scanning was retired in 2025, so InsightVM no longer meets the “all environments including containers” bar for a top score
Compatibility
Rapid7 InsightVM provides agents for Windows, Linux, and macOS, connects to AWS, Azure, and GCP via APIs, and supports SAML single sign-on. Built-in ServiceNow CMDB sync and a Splunk add-on share asset and vulnerability data with IT and SIEM tools without heavy scripting. Container scanning was retired in 2025, so InsightVM no longer meets the “all environments including containers” bar for a top score
User experience
Rapid7 InsightVM provides real-time dashboards and guided remediation that surface key risks clearly. Reviewers still describe a clunky console, hard-to-tailor reports, and a steep learning curve, so staff need extra time to get comfortable compared with smoother rivals.
User experience
Rapid7 InsightVM provides real-time dashboards and guided remediation that surface key risks clearly. Reviewers still describe a clunky console, hard-to-tailor reports, and a steep learning curve, so staff need extra time to get comfortable compared with smoother rivals.
Customer support
Rapid7 InsightVM customers receive business-hours phone and web support with round-the-clock escalation for critical issues, and extensive online documentation is available. Vulnerability content is refreshed about every two hours and full console updates are published weekly, putting new CVEs into coverage well inside a day
Customer support
Rapid7 InsightVM customers receive business-hours phone and web support with round-the-clock escalation for critical issues, and extensive online documentation is available. Vulnerability content is refreshed about every two hours and full console updates are published weekly, putting new CVEs into coverage well inside a day