Vulnerability Management | Rapid7

NeXpose Vulnerability Assessment

Rapid7 The Technology Leader in Vulnerability Assessment

Rapid7 NeXpose is vulnerability assessment software that accurately scans Web applications, databases, networks, operating systems and other software to find threats, assess their risk and devise a remediation plan to quickly mitigate these risks. It enables IT and security groups to implement a measurable and proactive vulnerability management process that eliminates security weaknesses in their network before the network is penetrated and confidential information is compromised.

sc magazine five star recommendation

In a review published in the August 2008 issue, SC Magazine's technology editor and product tester, Peter Stephenson, identifies NeXpose's strengths as "vulnerability assessment and risk analysis in one box" and reports that there are no weaknesses to be found. He describes NeXpose as a "tool that always goes beyond expectations," and points out that NeXpose "can not only scan for network-based vulnerabilities, but also looks inside web apps and databases for potential threats."

The review further states that, "Along with vulnerability assessment, (NeXpose) also does risk analysis by finding how vulnerabilities in one asset can lead to problems in others." In his ultimate conclusion, Stephenson affirms, "we find (NeXpose) to be an excellent combination of highly comprehensive features and simple management. We also find this tool to be a good value for the money."

The latest release of NeXpose has added new features that provide customers with increased performance, productivity and compliance with security regulations. Some specific vulnerability assessment enhancements include:

Performance:

  • Unlimited enterprise-level scanning - Performs discovery and fingerprinting in extremely large address spaces, processing over one million addresses per hour.

Productivity:

  • User authentication integrating Microsoft Active Directory and Kerberos - Enables NeXpose users to leverage Active Directory/LDAP and Kerberos authentication to obtain single sign-on, thereby making it easier to manage NeXpose user accounts.
  • Severity-based report filtering - Configures reports to only include severe and/or critical vulnerabilities, allowing administrators to optimize remediation time and focus on the vulnerabilities that pose the greatest risk to the environment.

Compliance:

  • SCADA system scanning for critical infrastructure protection - Performs a less aggressive network audit of sensitive Supervisory Control and Data Acquisition (SCADA) systems and related protocols using only safe checks and fingerprinting techniques, thereby satisfying demands for independent assessments of the systems’ ability to withstand cyber attacks.
  • Vulnerability exception reporting - Provides ability to exclude vulnerabilities from reports as necessary based on corporate policies regarding use and risk and compensating controls defined within the compliance process.

Contact us for more information on how Rapid7 NeXpose vulnerability assessment software meets your needs. Whether you want a software solution, an appliance that simply connects to your network, or the no hassle vulnerability assessment managed service, NeXpose is the vulnerability assessment software for you.

1. NeXpose includes support for CVSS to quantify the risk of vulnerabilities in a standard way as required by the PCI Data Security Standard V1.2.