Quick Cookie Notification

This site uses cookies, including for analytics, personalization, and advertising purposes. For more information or to change your cookie settings, click here.

If you continue to browse this site without changing your cookie settings, you agree to this use.

View Cookie Policy for full details

We've updated Rapid7’s community resources

Hello. We've evolved our community resources to provide a richer experience. Learn more.
Questions? Contact us.

blog.rapid7.com

Blogs, How-tos, & Research

Our new blog will still publish the same cutting-edge research, analysis, and commentary you expect from Rapid7.

Explore the Blog
help.rapid7.com

Docs, Help, & Questions

Help content and documents are now curated to let you get the information you need even faster.

Explore Help
2 min read

Rapid7 Introduces Industry Cyber-Exposure Report: Deutsche Börse Prime Standard 320

 Read More
13 min read

Open-Source Command and Control of the DOUBLEPULSAR Implant

 Read More
4 min read

How Attackers Can Harvest Users’ Microsoft 365 Credentials with New Phishing Campaign

 Read More
View All Tags

Popular Tags:
2 min read

Metasploit Wrap-up

Nagios XI post module Nagios XI may store the credentials of the hosts it monitors, and with the new post module by Cale Smith, we're now able to extract the Nagios database content along with its SSH keys and dump them into the MSF database.…

Louis Sato
Louis Sato Oct 18, 2019 Metasploit
2 min read

What a Difference a Year Makes: Revisiting Our Inaugural Fortune 500 ICER One Year Later

It's now been a year since we released our first Fortune 500 ICER, so we decided to take a quick look at a key control, DMARC, to look for improvements.…

boB Rudis
boB Rudis Oct 18, 2019 Research
4 min read

InsightVM vs. Managed Vulnerability Management: How to Choose Which Rapid7 Offering Is Right for You

In this blog, we explain our two vulnerability management offerings—InsightVM and our Managed Vulnerability Management Service—so you can make an informed decision about which is right for you.…

Maggie Rodriguez
Maggie Rodriguez Oct 17, 2019 InsightVM
10 min read

Import External Threat Intelligence with the InsightIDR Threats API

In this blog, we explain how to automate updating threat feeds in InsightIDR using the REST API.…

Teresa Copple
Teresa Copple Oct 16, 2019 InsightIDR
4 min read

[Podcast] BlackICE Creator Rob Graham Turns Security Textbook Author

On this week’s episode of Security Nation, we spoke with Rob Graham, the founder of Errata Security Consultancy, well-known security blogger, and soon-to-be book author.…

Bri Hand
Bri Hand Oct 15, 2019 Podcast
1 min read

Introducing the Rapid7 InsightConnect App for Splunk

Rapid7 is excited to announce our new integration between InsightConnect and Splunk.…

Mike Rinehart
Mike Rinehart Oct 14, 2019 Automation and Orchestration
2 min read

Metasploit Wrap-up

Exploiting Windows tools There are two new Windows modules this week, both brought to you by the Metasploit team. The Windows Silent Process Exit Persistence module, from our own bwatters-r7, exploits a Windows tool that allows for debugging a specified process on exit. With escalated…

Erin Bleiweiss
Erin Bleiweiss Oct 11, 2019 Metasploit
5 min read

Avoiding the Zombie Cloud Apocalypse: How to Reduce Exposure in the Cloud

In this blog, we share the top cloud configuration mistakes organizations make and four rules to implement so you can migrate securely to the cloud.…

Aaron Sawitsky
Aaron Sawitsky Oct 09, 2019 Cloud Infrastructure
1 min read

Patch Tuesday - October 2019

This month's Patch Tuesday is mainly notable in that there isn't a whole lot to note, which is a change of pace. No 0-days, no vulnerabilities that had been publicly disclosed already, and nothing that could allow worms to proliferate. And nothing from Adobe. Of…

Greg Wiseman
Greg Wiseman Oct 08, 2019 Patch Tuesday
6 min read

R7-2019-32: Denial-of-Service Vulnerabilities in Beckhoff TwinCAT PLC Environment

Rapid7 researcher Andreas Galauner has discovered two vulnerabilities affecting the TwinCAT PLC environment.…

Tod Beardsley
Tod Beardsley Oct 08, 2019 Vulnerability Disclosure
5 min read

Why Do Managed Detection and Response (MDR) Services Exist in a World Dominated by MSSPs?

In this blog, we break-down why Managed Detection and Response (MDR) services can survive in a market dominated by MSSP's.…

Jake Godgart
Jake Godgart Oct 07, 2019 Managed Detection and Response
1 min read

Metasploit Wrap-Up

Command and Control with DOUBLEPULSAR We now have a DOUBLEPULSAR exploit module thanks to some amazing work by our own wvu, Jacob Robles, and some significant contributions from the wider community. The module allows you to check for the DOUBLEPULSAR implant, disable it, or even…

Dean Welch
Dean Welch Oct 04, 2019 Metasploit
3 min read

This One Time on a Pen Test: “Let Me Get That for You”

In this blog, we discuss how our team successfully gained access to a client's physical building in an unlikely way.…

Trevor O'Donnal
Trevor O'Donnal Oct 04, 2019 Penetration Testing
12 min read

SAML All the Things! A Deep Dive into SAML SSO

In this blog, we will take a deep dive into everything you need to know about Security Assertion Markup Language (SAML).…

Elijah A. Martin-Merrill
Elijah A. Martin-Merrill Oct 03, 2019 Security Assertion Markup Language

Blog Feed