Try our new research platform with insights from 80,000+ expert users

Continuous Dynamic (formerly WhiteHat Dynamic) vs Rapid7 InsightAppSec comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Mar 22, 2026

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Continuous Dynamic (formerl...
Ranking in Dynamic Application Security Testing (DAST)
9th
Average Rating
8.0
Number of Reviews
2
Ranking in other categories
No ranking in other categories
Rapid7 InsightAppSec
Ranking in Dynamic Application Security Testing (DAST)
5th
Average Rating
8.2
Reviews Sentiment
6.7
Number of Reviews
20
Ranking in other categories
AI Observability (11th)
 

Mindshare comparison

As of March 2026, in the Dynamic Application Security Testing (DAST) category, the mindshare of Continuous Dynamic (formerly WhiteHat Dynamic) is 4.8%, up from 2.3% compared to the previous year. The mindshare of Rapid7 InsightAppSec is 6.2%, up from 4.2% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Dynamic Application Security Testing (DAST) Mindshare Distribution
ProductMindshare (%)
Rapid7 InsightAppSec6.2%
Continuous Dynamic (formerly WhiteHat Dynamic)4.8%
Other89.0%
Dynamic Application Security Testing (DAST)
 

Featured Reviews

it_user245412 - PeerSpot reviewer
Executive Vice President, Operations at a computer software company with 51-200 employees
The product and customer service is extremely efficient but I would like to see more research and code examples.
* The continuous online scanning capabilities and reporting features. * The SaaS product features accessible from a browser make managing our online systems easy. * The ability to review security items quickly along with being able to retest vulnerabilities on our schedule make the Sentinel product an invaluable tool for our company’s product security requirements.
Shritam Bhowmick - PeerSpot reviewer
Vulnerability Management Lead at garrett
Provides reliable applications security but needs better integration options
There are areas for improvements regarding false positives. Integration capabilities are lacking, as options for integrations with other tools such as SNOW, Jira, or other integration tools are not sufficient in Rapid7 InsightAppSec. The user interface sometimes has glitches, which may prevent appropriate results during navigation, and even when we get appropriate results, it can be impossible to export them to CSV records or download files. Regarding scalability, Rapid7 InsightAppSec is not a scalable solution for our industry due to limited integration capabilities. Rapid7 relies on another tool called InsightConnect, which requires additional investment, detracting from scalability. Another area that needs improvement is the integration of AI capabilities into the platform. Both Rapid7 InsightAppSec and InsightVM need to advance in that area. In terms of behavioral and pattern recognition, identifying complex attacks such as SQL, blind SQL, JSON, and LDAP injections often results in 94% false positives. This necessitates improvement in their behavioral-based analytics feature.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The SaaS product features accessible from a browser make managing our online systems easy."
"Rapid7 InsightAppSec is a good product for dynamic application security testing, providing neat reports that include validation actions and helping to generate web application firewall rules for web applications."
"Dynamic application security scanning provides predefined templates and supports customization. The ability to scan external and internal applications, including on-premises ones, is precious. Additionally, it is a cloud platform, so we don't need to deploy servers or resources. This makes it time-efficient and cost-effective."
"The product’s most valuable feature is UI. It is easy to manage and find vulnerabilities in the application."
"Customers use the product for scanning purposes and do not want to be restricted with respect to the number of scans they perform."
"The solution is stable."
"The initial setup for us was easy enough. We didn't face too many issues. Deployment took maybe 30 minutes. It's quite quick and doesn't cause too much trouble at the outset."
"It is very convenient to get reports from the tool, which offers high-level environmental statistics."
"In Rapid7 InsightAppSec, a distinctive feature is the provision of a CDM for integrating web servers and web applications. To establish the connection between these applications, you only need to paste the provided CDN into your metadata. Once connected, every piece of information, including vulnerabilities, can be accessed. It also offers demo sessions."
 

Cons

"I would like to see more research and code examples for the vulnerabilities identified to better assist us with our remediation process."
"The interface should be a little bit easier to manage. Sometimes, the logic that they use is kind of strange. They need to work a little bit more on their interface to make it more understandable. The interface is the only problem. I'm using Rapid7, which is very intuitive. There are other applications available in the market with a better interface. They can include more techniques or options to test different types of security because the templates are limited. It would be great to see them follow the MITRE ATT&CK framework or what is there in tools like Veracode and Synopsys."
"The dynamic scanning feature has simplified and improved the security testing process. I suggest adding a SaaS feature to the solution to support scanning SaaS applications, making it more comprehensive. It would be beneficial if the solution could also scan mobile applications. It only scans web applications and should also cover mobile applications, including firmware recommendations."
"In terms of behavioral and pattern recognition, identifying complex attacks such as SQL, blind SQL, JSON, and LDAP injections often results in 94% false positives."
"When you add new projects for the same product, it either duplicates or replaces the scan configuration. If I run a scan for the same product with a different scan configuration, it should keep the previous scan configuration and not replace it with the new scan configuration. It should just add the new scan configuration. That would be helpful. They do keep the results as it is, but the scan configuration keeps changing. For example, I have set a scan configuration to a full scan, and next week, I want to run a new scan for the same product with some changes or new functionalities. I want to run a partial scan. Currently, if I change the scan configuration to partial, it changes the old one also to partial. That should be improved."
"We'd like to see integrations with WAF solutions."
"We get a lot of false positives during the tests."
"Currently, InsightAppSec lacks similar functionality. Customers must wait for remediation during the developers' preparation of a new version."
"The number of web applications we can scan is limited."
 

Pricing and Cost Advice

Information not available
"Its price is competitive. It is not expensive."
"Rapid7 InsightAppSec is cheap."
"I rate Rapid7 InsightAppSec’s pricing an eight out of ten."
"They offer a good price, but I don't remember its cost. It is fair as compared to the competition. We have opted for project-based licensing, not user-based. We can add any number of users. That doesn't matter. It is worth the money."
"The price of this product is very cheap."
"I'm not sure how much it costs exactly, but I know it's expensive."
report
Use our free recommendation engine to learn which Dynamic Application Security Testing (DAST) solutions are best for your needs.
884,873 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
16%
Healthcare Company
12%
Computer Software Company
12%
Government
8%
Manufacturing Company
13%
Financial Services Firm
12%
Government
11%
Computer Software Company
10%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
By reviewers
Company SizeCount
Small Business12
Midsize Enterprise2
Large Enterprise5
 

Questions from the Community

Ask a question
Earn 20 points
What do you like most about Rapid7 InsightAppSec?
In Rapid7 InsightAppSec, a distinctive feature is the provision of a CDM for integrating web servers and web applications. To establish the connection between these applications, you only need to p...
What needs improvement with Rapid7 InsightAppSec?
Customers sometimes experience issues with performance. One thing that I recall is that most customers often want to have reporting as per their customized dashboard. This needs to be improved beca...
What is your primary use case for Rapid7 InsightAppSec?
I usually recommend this solution for financial institutions. Banks and financial institutions need this solution mostly because they have to follow stringent compliance advisory requirements, so t...
 

Also Known As

Sentinel Dynamic, WhiteHat Security Application Security Testing, Synopsys WhiteHat Dynamic
InsightAppSec
 

Overview

 

Sample Customers

Information Not Available
CenterPoint Energy, CPA Australia, Hypertherm, First American Financial Corporation, Rackspace
Find out what your peers are saying about Veracode, Checkmarx, OpenText and others in Dynamic Application Security Testing (DAST). Updated: February 2026.
884,873 professionals have used our research since 2012.