Rapid7 InsightAppSec

paid · Founded 2015 · cloud

Enterprise cloud DAST — quote-based, often bundled with InsightVM and InsightIDR.

Attack Replay provides developers with exact HTTP requests to reproduce vulnerabilities.
Integrates tightly with other Rapid7 Insight products for a unified security view.
Scans can be triggered via API, enabling integration into CI/CD build pipelines.

No public pricing or free trial; requires engaging with a sales team for a quote.
Primarily suited for enterprises; may be too complex and costly for small businesses.
Fewer out-of-the-box integrations compared to some competitors focused solely on DAST.

Tags: web-appapidastenterprisecloud

Alternatives to Rapid7 InsightAppSec

paid

Mature commercial DAST scanner from Invicti — quote-based, generally $4,500+/yr per target tier.

paid

Enterprise DAST + IAST with Proof-Based Scanning — annual contracts, quote-only.

paid

Unified AppSec platform consolidating SAST/SCA/IAST/API/IaC. Quote-based, public minimums ~$30,000/yr.

paid

Continuous DAST + manual pentest hybrid — published pricing $199-$5,999/yr, popular with SaaS startups.