In this edition of "This One Time on a Pen Test," we discuss an engagement with for an energy company with a high-fence compound.…
It’s hard to believe it’s already the end of September, and with it comes Rapid7’s Q2 2020 Quarterly Threat Report.…
In InsightIDR, Rapid7’s SIEM tool, customers use log data to detect malicious activity, prove compliance, and gain visibility across their network.…
Six new modules this week, and a good group of enhancements and fixes!…
In this edition of our NICER Protocol Deep Dive blog series, we take a closer look at internet exposure of SMB.…
The US House passed the IoT Cybersecurity Improvement Act, which would require federal procurement and use of IoT devices to conform to basic security requirements.…
We’re excited to introduce you to two new InsightVM product updates to help you further reduce friction, save time, and gain greater efficiency.…
In this edition of "This One Time on a Pen Test," we discuss outwitting the vexing VPN.…
Earlier this year, Rapid7 and Snyk partnered together with the goal of securing cloud-native apps across the software development lifecycle (SDLC).…
CVE-2020-1472 is a critical privilege escalation vulnerability that can yield an attacker full takeover of an affected network. Here's what you need to know.…
In this blog, we dive into better understanding the difference between vulnerability mitigation vs. remediation.…
In this installation of our NICER Protocol Deep Dive blog series, we take a look at the internet exposure of FTP/S (TCP/990).…
Three new modules, including a Pwn2Own addition for OS X, plus proxy support for Python Meterpreter, new search improvements, and a reminder of how to report security issues in Metasploit.…
In this blog post, we discuss older, lesser-known features that can still provide amazing value in your vulnerability management program using InsightVM.…
In this engagement, Rapid7 pen testers were tasked to identify sensitive information, harvest credentials, and obtain a reverse shell on their machines.…
