ThreatDown (formerly Malwarebytes for Business), combines Malwarebytes' endpoint security capabilities in four bundles. The basic Core tier includes incident response, Next-gen AV, device control, vulnerability assessments, and the ability to block unwanted application.
$345
per year per endpoint (minimum 5)
Rapid7 InsightVM
Score 8.9 out of 10
N/A
InsightVM is presented as the next evolution of Nexpose, by Rapid7. This Insight cloud-based solution features everything included in Nexpose, such as Adaptive Security and the proprietary Real Risk score, and extends visibility into cloud and containerized infrastructure. InsightVM also offers advanced remediation, tracking, and reporting capabilities not included in Nexpose.
$19
per GB
Pricing
ThreatDown, powered by Malwarebytes
Rapid7 InsightVM
Editions & Modules
Core
$345
per year per endpoint (minimum 5)
Advanced
$395
per year per endpoint (minimum 5)
Elite
$495
per year per endpoint (minimum 5)
Ultimate
$595
per year per endpoint (minimum 5)
Log Management
$19
per GB
Vulnerability Management
$22
per asset
insightIDR
$52
per asset
Application Security
$2,000
per app
insignConnect
Contact sales team
Offerings
Pricing Offerings
ThreatDown, powered by Malwarebytes
Rapid7 InsightVM
Free Trial
Yes
No
Free/Freemium Version
No
No
Premium Consulting/Integration Services
No
No
Entry-level Setup Fee
No setup fee
No setup fee
Additional Details
Optional Add-Ons include server and mobile device protection. Server protection ranges from $129 to $179 per annum depending on service tier. Mobile security is $10 per device, no matter the service tier. A 10% discount is offered for choosing a two-year billing plan.
—
More Pricing Information
Community Pulse
ThreatDown, powered by Malwarebytes
Rapid7 InsightVM
Features
ThreatDown, powered by Malwarebytes
Rapid7 InsightVM
Endpoint Security
Comparison of Endpoint Security features of Product A and Product B
ThreatDown, powered by Malwarebytes
8.7
Ratings
2% above category average
Rapid7 InsightVM
-
Ratings
Anti-Exploit Technology
8.50 Ratings
00 Ratings
Endpoint Detection and Response (EDR)
9.10 Ratings
00 Ratings
Centralized Management
9.70 Ratings
00 Ratings
Hybrid Deployment Support
8.00 Ratings
00 Ratings
Infection Remediation
8.50 Ratings
00 Ratings
Vulnerability Management
8.60 Ratings
00 Ratings
Malware Detection
8.70 Ratings
00 Ratings
Threat Intelligence
Comparison of Threat Intelligence features of Product A and Product B
ThreatDown, powered by Malwarebytes
-
Ratings
Rapid7 InsightVM
7.4
Ratings
7% below category average
Network Analytics
00 Ratings
5.30 Ratings
Threat Recognition
00 Ratings
7.00 Ratings
Vulnerability Classification
00 Ratings
9.30 Ratings
Automated Alerts and Reporting
00 Ratings
9.30 Ratings
Threat Analysis
00 Ratings
7.40 Ratings
Threat Intelligence Reporting
00 Ratings
7.00 Ratings
Automated Threat Identification
00 Ratings
6.70 Ratings
Vulnerability Management Tools
Comparison of Vulnerability Management Tools features of Product A and Product B
I would absolutely recommend Malwarebytes Endpoint Protection to a colleague and I have recommended it to many of my peers in the IT world. Malwarebytes is well suited for any environment that requires protection from mal/ransomware which is most companies these days. In particular for companies that host their own big data that the operation of the company relies on. The only place Malwarebytes Endpoint Protection may not be AS appropriate would be one where there is near zero reliance on computers, networks and data.
I think Rapid7 InsightVM is well suited for large enterprise customers with a lot of assets. It integrates well with a number of different ITSM solutions which I think is very good. There are not many CIS benchmarking tools on the market and Rapid7 InsightVM does a very good job at benchmarking. I think where Rapid7 InsightVM falls down a little is on false positive vulnerabilities. Sometime you there a few positive results on vulnerabily discovery. Tuning the settings for scan engines can sometimes be trick as well.
The biggest plus with this software is that you can manage all the clients from a management console. You can push the install/updates through it. If the client cannot connect to the management console, then it will update directly from their website. This means you are always up to date and protected.
The software on the client machine has very low overhead so it doesn't affect the performance.
You can create policies based on the types of users or by the department. You can customize these policies so it will let you micro-manage the clients.
The API is also a great tool for us to automate lots of routine procedures like scan and report of asset(s) BY EMAIL.
Tagging. It helps sort out results and reports for respective assets Owner for remediation without a lengthy report including unnecessary information for that particular team.
SQL Reporting. It provides advanced reporting and export capabilities that you can not find in the stock report template.
Devices found and scanned are never removed. Removal must be done manually with no option for automation.
The database can be fragile. Ours quietly corrupted and progressively degraded until we had to restore and lose 6 months of data. Still didn't fix it and had to be rebuilt again losing all data.
Workflow for delegating remediation is supposed to be helpful, but can also become cumbersome.
Scheduling can become a nightmare if not monitored closely. We found jobs had failed to run because the server had gone offline. When the server came online, it did not try to run missed jobs. Running missed jobs all at once can overload the server, but searching for and launching a large number of missed jobs manually is a pain.
When I first used the tool in my home systems MANY years ago, I wished for a Business version. I was once at a focus group for a major antivirus company, and one attendee’s feedback to “what could we do better?” was “buy out MalwareBytes and add it to your tool”. I’ve used the Business version since it first became available, and have continued to be a dedicated user through the many iterations and improvements
It simply works. It doesn't require the hand-holding and monitoring that some other solutions do. It's simple to deploy and maintain, and adding custom content such as Exceptions require minimal effort. I’ve had to add a few exceptions for internal-use, in-house-developed tools, but it’s quite simple to do so within the online interface
While I think it is a great tool and platform, I believe it (like all tools and solutions) is always evolving and the needs for clients are changing as the industry evolves and threats are upgraded. Cost is good, and support is helpful. Some things could be more granular and others could be easier to understand
Whenever I've had a query for the support team, they have got back to me very quickly, and given me very well detailed advice on fixing whatever the issue I had was. They also pointed me to help documents and such where I could find more information if I needed
I gave it a seven due to the functionality and general ease of use after the initial setup headaches, but compared to Qualys, Rapid7 Nexpose falls short on features and ease of use. Their support drags this rating down a point as well. I have gone weeks with no update on semi-critical issues and typically have to make call after call to get a semi-coherent response.
I first implemented this more than 10 years ago, when it required an in-site setup with SQL Server (or SQL Express), and even that was pretty easy. With the move to centralized web management some treats ago, it’s become even easier to deploy
I think Malwarebytes Endpoint Protection is hands down better from any point of view other than price. Malwarebytes is a little bit more costly than Webroot. However, Malwarebytes detects more threats, protects against more malicious URL's, allows more in customization of policies, has better administration GUI, and has better means of implementation.
I think Tenable is very comparable and they are both leaders in this space. I evaluated both of them side-by-side and ultimately decided to go with Rapid7. Tenable did have a slight edge on the amount of information I was getting from the machines, but I landed on R7 because I found the features of the InsightVM tool to be more useful. They both get the job done, but I found InsightVM a better experience to use on a day-to-day basis and had better quality of life features that I was looking for.
It certainly has a more positive impact than negative impact while performing the scans. Nexpose can find report vulnerabilities that our other scanner fails to identify during the scan because of its defined scan templates.
Also, even if the scan is not being performed due to some issues like reachability, whitelisting, etc. it will try to give scan results unlike QualysGuard which just marks the asset as unreachable.