Rapid7 Nexpose, not all it's cracked up to be
February 13, 2020
Rapid7 Nexpose, not all it's cracked up to be
Score 7 out of 10
Vetted Review
Verified User
Overall Satisfaction with Rapid7 Nexpose
We currently use Rapid7 Nexpose for all Vulnerability scanning for current and new assets. Several asset groups have been created with assets owners receiving weekly reports for just the assets they own for a weekly snapshot to gauge their trending. We also utilize ad-hoc scans to ensure new devices do not have outstanding patches before being deployed.
Pros
- Creating Device Groups is very easy.
- The API tie ins work well.
Cons
- Frequent updates and console lockups.
- A lot of issues with scans running long out of nowhere, causing resource issues for the next scans.
- Once the initial setup is done, which does take some time and thought, it can be managed by one person.
- Emailing of weekly auto run reports to business owners is valuable.
- Qualys Cloud Platform (formerly Qualysguard)
I personally like Qualys much better. Out of the box, and the overall configuration is more natural, and the system itself is more stable.
Do you think Rapid7 InsightVM delivers good value for the price?
Not sure
Are you happy with Rapid7 InsightVM's feature set?
No
Did Rapid7 InsightVM live up to sales and marketing promises?
No
Did implementation of Rapid7 InsightVM go as expected?
No
Would you buy Rapid7 InsightVM again?
No
Comments
Please log in to join the conversation