Quick Cookie Notification

This site uses cookies, including for analytics, personalization, and advertising purposes. For more information or to change your cookie settings, click here.

If you continue to browse this site without changing your cookie settings, you agree to this use.

View Cookie Policy for full details

We've updated Rapid7’s community resources

Hello. We've evolved our community resources to provide a richer experience. Learn more.
Questions? Contact us.

blog.rapid7.com

Blogs, How-tos, & Research

Our new blog will still publish the same cutting-edge research, analysis, and commentary you expect from Rapid7.

Explore the Blog
help.rapid7.com

Docs, Help, & Questions

Help content and documents are now curated to let you get the information you need even faster.

Explore Help
5 min read

WannaCry, Two Years On: Current Threat Landscape, Forgotten Lessons, and Hope for the Future

 Read More
1 min read

Introducing the Metasploit Development Diaries

 Read More
1 min read

A Serial Problem: Exploitation and Exposure of Java Serialized Objects

 Read More
View All Tags

Popular Tags:
1 min read

Metasploit Wrap-Up

Take a moment from this week's barrage of vulnerabilities in seemingly everything to see the cool stuff happening with the Metasploit team of contributors: a video interview between two greats, a new exploit module in GetSimple CMS, and a whole host of improvements.…

Aaron Soto
Aaron Soto May 17, 2019 Metasploit Weekly Wrapup
4 min read

The Last Chip

You can learn a lot about an organization—and its leadership team—by eating chips at the airport waiting for a delayed flight.…

Christina Luconi
Christina Luconi May 16, 2019 Rapid7 Culture
3 min read

How SOAR Is Disrupting Traditional Vulnerability Management

In a recent episode of Whiteboard Wednesday, we dive into how security orchestration, automation, and response (SOAR) is changing traditional vulnerability management.…

Justin Buchanan
Justin Buchanan May 15, 2019 Vulnerability Management
2 min read

Patch Tuesday - May 2019

Hot on the heels of several Apple security advisories on Monday, May's Patch Tuesday sees Microsoft fix nearly 80 vulnerabilities across their product line, some of them very serious indeed, and Adobe address over 80 in Acrobat Reader alone. A fix for a critical remote…

Greg Wiseman
Greg Wiseman May 14, 2019 Patch Tuesday
9 min read

Medical Device Security, Part 3: Putting Safe Scanning into Practice

In this blog post, we put the theory we've built out in our medical device scanning series into practice.…

Joe Agnew
Joe Agnew May 13, 2019 Medical
2 min read

Metasploit Wrap-Up

A new Chrome browser exploit, some WebLogic RCE, and an exploit for PostgreSQL. Also announcing the return of our annual Open-Source Security Meetup in Vegas!…

Pearce Barry
Pearce Barry May 10, 2019 Metasploit Weekly Wrapup
2 min read

Take Advantage of Hands-On Learning Opportunities at Rapid7's Boost 2019 Customer Conference

Join our Rapid7 Product Consulting and Education teams at our Boost 2019 customer event on June 24 in Boston for hands-on learning.…

Spencer Seale
Spencer Seale May 10, 2019 Events
3 min read

Your Pocket Guide for Cloud SIEM Evaluation

In this post, we’ll quickly review five critical questions to help kick-start your cloud SIEM evaluation.…

Meaghan Donlon
Meaghan Donlon May 09, 2019 InsightIDR
3 min read

A Match Made in ChatOps Heaven: InsightConnect Now Integrates with Slack

Slack-integrated alerts, the first of three upcoming ChatOps features, is now live within InsightConnect, with the others coming later this spring.…

Malolan Santhanakrishnan
Malolan Santhanakrishnan May 08, 2019 InsightConnect
3 min read

Extracting Firmware from Microcontrollers’ Onboard Flash Memory, Part 4: Texas Instrument RF Microcontrollers

In our fourth and final part of this ongoing series, we will conduct further firmware extraction exercises with the Texas Instruments RF microcontroller.…

Deral Heiland
Deral Heiland May 07, 2019 Research
7 min read

Medical Device Security, Part 2: How to Give Medical Devices a Security Checkup

In part two of our series, we get into the weeds of medical device scanning and examine how to directly perform assessments on medical devices.…

Cody Florek
Cody Florek May 06, 2019 Medical
3 min read

Rapid7 Named a ‘Strong Performer’ in 2019 Forrester Wave for Global Cybersecurity Consulting Providers

Being recognized as one of the “14 providers that matter most” in the global cybersecurity consulting market by Forrester Research is an incredible honor. Our Services business has been designated a Strong Performer, and we could not be more elated to have debuted here in…

Scott King
Scott King May 06, 2019 Security Strategy
< 1 min read

WebLogic Deserialization Remote Code Execution Vulnerability (CVE-2019-2725): What You Need to Know

Oracle has released an out-of-band security advisory and set of patches for Oracle WebLogic Server versions 10.3.6.0 and 12.1.3.0.…

boB Rudis
boB Rudis May 03, 2019 Vulnerability Disclosure

Blog Feed