White Papers
Proactive Vulnerability Management Using Rapid7 NeXpose
This document provides a brief introduction to key challenges organizations are facing in proactively identifying and remediating network vulnerabilities. It then describes how vulnerability management can be implemented using Rapid7's NeXpose solution.
Protecting Patient Health Information in the HITECH Era
The American Healthcare system is getting a complete facelift thanks to incentives to adopt Health Information Technology introduced by the Health Information Technology for Economic and Clinical Health (HITECH) Act. The HITECH Act contains tools for the enforcement of HIPAA regulations, as well as incentives to accelerate the adoption of information systems that reduce costs, gain efficiencies, and ultimately improve patient care while keeping patient health information secure. This paper examines the HITECH Act, the enforcement mechanisms the HITECH Act provides for HIPAA, and the key security challenges healthcare services face in order to protect patient health information as part of becoming HIPAA compliant.
Managing Cross Site Scripting (XSS) - The Number One Item on OWASP's Top Ten List
This white paper discusses the security risk that cross site scripting (XSS) represents for organizations. The white paper outlines the different forms of XSS vulnerabilities including reflective, persistent and DOM-based, why they are dangerous, and how to prevent them.
Best Practices to Protect the Cardholder Data Environment and Achieve PCI Compliance
Cyber-attacks designed for financial gain are on the rise, targeting proprietary information including customer and financial information. With over 127 million records exposed in 2007 in the US alone, attacks are becoming increasingly more sophisticated. Learn more about best practices to protect the cardholder data environment and achieve PCI compliance.
Web Application Scanning
58 % of all Vulnerabilities now affect Web applications. Learn more about Web application vulnerabilities and exploits and how Web application scanning can reduce the risk of being breached by implementing comprehensive vulnerability scanning solutions.
Securing Web 2.0 Applications
New attack vectors make Web 2.0 applications particularly vulnerable to hacking attacks such as prototype hijacking and SQL injection. This technical whitepaper provides an overview of these attack vectors and provides recommendations on what developers need to do to embed secure coding into their processes.
Penetration Testing - Knowledge is Power: Preparing Your Enterprise to Withstand Attack
This white paper highlights the benefits of penetration testing from technical testing (both automated and custom) as well as the role that an experienced security consultant plays in providing a higher level of security against inevitable attacks.
Understanding and Deploying the PCI Data Security Standard
PCI is one of the most stringent and detailed security requirements for retailers and merchants. This document outlines the different requirements to meet PCI compliance, maintain a secure network, protect cardholder data, maintain a vulnerability management program, implement access controls and regularly monitor and test networks.
Using an Expert System for Deeper Vulnerability Scanning
This technical white paper discusses in detail how the Rapid7 NeXpose vulnerability management solution performs scanning and why the use of an expert system can achieve better results than those achieved by traditional procedural methods. The document provides an in-depth view of the use of artificial intelligence to penetrate systems.
IT Security in Higher Education White Paper
According to Analysts, the Higher Education sector is the most breached of any industry. This white paper outlines key reasons why universities are more affected by security issues and how they can better prepare themselves to address IT security and vulnerability management challenges.
-
ON-DEMAND WEBCAST Forrester: PCI Compliance is Good, But is It Enough?
VIEW WEBCAST
- Related Resources
- Read Gartner MarketScope
