Rapid7 Blog

Maria Varmazis  

AUTHOR STATS:

43

We're back! Rapid7 at SXSW 2016

Last year was the first year we had a number of Rapid7 folks formally speaking at South-by-SouthWest (SXSW), the massive tech/music/culture conference in Austin, TX. Both Nick Percoco and Jay Radcliffe were official presenters and delivered phenomenal talks, which you can read about…

Holiday greetings from all of us at Rapid7!

As we reach the end of December and the end of the year, we wanted to take a moment to pause and recognize what an amazing year it has been -- and how grateful we are to EVERYONE who made 2015 so memorable. That's why…

How to avoid common mistakes in your Metasploit Community/Pro license key request

As a result of export restrictions placed on Metasploit Community and Pro trials, this year we have introduced some new systems to help process license requests. We have received a lot of questions about this, and this post will hopefully answer some of them for…

What is your biggest prediction for 2016?

Following up our earlier post with 2015 key learnings, we asked our panel of lovely infosec pros to gaze into their crystal balls, consult the runes, and read their tea leaves to make their predictions for 2016. In many cases, their notes are less prophetic…

What was your key learning from 2015?

"What's your infosec key learning from 2015?" We asked this question of a number of minds in infosec and got a variety of answers. Below are the responses from some of our brilliant and insightful friends in the infosec community, including from within…

Community Member Spotlight: Q&A with void_in

It's our honor to kick off our Member Spotlight with a Q&A with void_in, one of the most prolific contributors to the Metasploit project and an extremely active member of the Community. You'll frequently find him answering your Metasploit questions or helping…

Thoughts on my very first DerbyCon (which won't be my last)

[ETA: Added in James Lee's excellent State of the Metasploit Framework talk, which I stupidly omitted by accident!] Once you hang around in infosec for a little while, you learn that each of the major cons have their own reputation, their own mini-scene. This one's…

#IoTsec AMA on Reddit: Sept. 9 @ 3:30pm EST with Mark Stanislav & Tod Beardsley

[update 3pm EST Sept 9] This AMA is now live! The direct link is here:  https://www.reddit.com/r/IAmA/comments/3ka38q/we_are_professional_iot_hackers_and_researchers/ Join us and ask your questions! Following up on their research on IoT baby monitor…

Rapid7 Takes Las Vegas: Black Hat, BSidesLV & DEF CON ... Talks, Parties & Giveaways... phew!

First things first: You must be registered & confirmed to be able to attend our 2015 Black Hat party. I can't emphasize this enough: Unlike previous years, we are not doing any kind of at-the-door registration for our party this year. If your plan was…

#UNITEDsummit 2015: Day 2 Recap

UNITED day 2 kicked off another solid day full of great content and speakers.In one of the first sessions of the day, we heard directly from the voice of customers with a great case study on how UserInsight sped up incident investigation at one…

#UNITEDsummit 2015: Day 1 Recap

As I write this, the first full day of the 2015 UNITED Security Summit is nearing its end -- many of our attendees are still out at our Wednesday evening party (or, reading this the next morning... but hopefully no worse for wear).This seems…

Rapid7 Rapid Fire at #UNITEDsummit 2015 (#Rapid7social)

This year we decided to open up our Rapid7 Rapid Fire event to the infosec community as a whole, and the great questions and audience engagement from the event tonight proves what a great idea this was. All of us on the Rapid7 team are…

Important Update Regarding Rapid7 Community (SecurityStreet)

I wanted to update you on the latest state of the Rapid7 Community and Support Portal.In response to your feedback, we've made the decision to transition the Community back to Jive, the previous platform for the site, the evening of Friday, June 5.What…

Breaking down the Logjam (vulnerability)

What is it Disclosed on May 19, 2015, the Logjam vulnerability (CVE-2015-4000) is a flaw in common TLS implementations that can be used to intercept secure communications. This TLS protocol vulnerability would allow an active man-in-the-middle (MITM) attacker to silently downgrade a TLS session to…

2015 Metasploit t-shirt design contest: It's on!

Hacker-designers! We need you! Show us your graphic skills, design an epic Metasploit t-shirt, and win Eternal Fame and Glory! Ahem, er, rather, we're looking for someone to design this year's Metasploit t-shirt. And if you are this year's winning Metasploit t-shirt designer, you will…

Featured Research

National Exposure Index 2017

The National Exposure Index is an exploration of data derived from Project Sonar, Rapid7's security research project that gains insights into global exposure to common vulnerabilities through internet-wide surveys.

Learn More

Toolkit

Make Your SIEM Project a Success with Rapid7

In this toolkit, get access to Gartner's report “Overcoming Common Causes for SIEM Solution Deployment Failures,” which details why organizations are struggling to unify their data and find answers from it. Also get the Rapid7 companion guide with helpful recommendations on approaching your SIEM needs.

Download Now

Podcast

Security Nation

Security Nation is a podcast dedicated to covering all things infosec – from what's making headlines to practical tips for organizations looking to improve their own security programs. Host Kyle Flaherty has been knee–deep in the security sector for nearly two decades. At Rapid7 he leads a solutions-focused team with the mission of helping security professionals do their jobs.

Listen Now