ForeScout and Rapid7 Deliver On-Connect Vulnerability Assessment and Automated Risk Mitigation to Reduce Attack Surface

New ForeScout Extended Module for Rapid7 Nexpose Further Closes the Visibility Gap for Transient Devices to Protect Against Data Breaches

SAN JOSE, CA — August 16, 2016

ForeScout Technologies, Inc., the pioneer in agentless cybersecurity, today announced the ForeScout Extended Module for Rapid7 Nexpose, an industry-leading, live vulnerability management solution. The ForeScout Extended Module allows joint customers to leverage Nexpose to scan for vulnerabilities and mitigate threats stemming from potentially risky devices that join the network. Rapid7 (NASDAQ: RPD) is an industry-leading security data and analytics company.

Vulnerability assessment scans are a critical component for comprehensive threat protection. However, with workforce mobility and Bring Your Own Device (BYOD) options, more and more transient devices are being added to corporate networks, creating an attack surface that is increasingly harder to monitor and protect.

When a transient device is offline during a scheduled scan, most traditional methods of detection will fail to identify it. This oversight allows the device to connect or reconnect to the network unseen, after potentially being exposed to threats. The ForeScout Extended Module for Rapid7 Nexpose allows customers to automatically block devices from joining their network until they reach an acceptable risk level. With this combination of Nexpose and CounterACT®, customers are able to reduce the attack surface on their networks while remediation is happening.

ForeScout CounterACT is designed to enforce endpoint compliance each time a device connects to the network, providing continuous compliance within and between the scan windows. Through Rapid7 Insight Agents or Adaptive Security, Nexpose provides live monitoring, visibility, remediation prioritization and automatic threat mitigation for new devices or vulnerabilities on the network.

“The recent surge of BYOD strategies within the enterprise represents a fundamental change in the way companies operate,” said Pedro Abreu, Chief Strategy Officer at ForeScout. “Identifying devices on a network – the moment they connect to it – is critical to creating an accurate picture of the threat landscape. ForeScout’s integration with Rapid7 Nexpose enables IT security professionals to obtain more complete information about the endpoints on their network and provides them with the tools to secure them.”

      The new ForeScout Extended Module for Rapid7 Nexpose provides the following key benefits to customers: 


  • Immediate Information Sharing: CounterACT notifies Nexpose when devices join the network or change configuration so Nexpose can immediately scan for vulnerabilities.
  • Policy Enforcement: Enforces policies across the network – even for transient devices that were initially missed by scheduled vulnerability assessment scans – by delivering a detailed report on endpoint protection status.
  • Automation: Communicates with Nexpose to provide workflow automation such as on-connect assessment and automated identification of security threats. The ForeScout Extended Module for Rapid7 Nexpose is designed to automatically recommend and help prioritize policy-based remediation actions when devices join the network.

“Vulnerability management is a crucial piece of any holistic security program,” said Lee Weiner, Chief Product Officer at Rapid7. “This collaboration with ForeScout helps us further deliver excellent security solutions to our customers with visibility into devices as they connect to the network, minimizing risk and helping them make informed decisions.”

"Today’s networks are complex and dynamic, with changes in infrastructure and security posture happening every moment,” said Billy Lewis, Director of Information Technology at State Garden, Inc. “As endpoints come and go and the threat landscape changes, IT departments face the challenge of keeping pace. We believe integration between CounterACT and Nexpose allows for complete automation of events in real time by leveraging the power and insight collected by both tools."

For a video demonstration of the integration between ForeScout CounterACT and Rapid7 Nexpose, please visit: ForeScout and Rapid7 Integration Demo.

About ForeScout Technologies, Inc.
ForeScout Technologies, Inc. is transforming security through visibility. ForeScout offers Global 2000 enterprises and government organizations the unique ability to see devices, including non-traditional devices, the instant they connect to the network. Equally important, ForeScout lets you control these devices and orchestrate information sharing and operation among disparate security tools to accelerate incident response. Unlike traditional security alternatives, ForeScout achieves this without requiring software agents or previous device knowledge. The company’s solutions integrate with leading network, security, mobility and IT management products to overcome security silos, automate workflows and enable significant cost savings. As of January 2016, more than 2,000 customers in over 60 countries improve their network security and compliance posture with ForeScout solutions. Learn more at

© 2016. ForeScout Technologies, Inc. is a privately held Delaware corporation. ForeScout, the ForeScout logo, ControlFabric, CounterACT Edge, ActiveResponse and CounterACT are trademarks or registered trademarks of ForeScout. Other names mentioned may be trademarks of their respective owners.

ForeScout Media Contact:
Elliott Suthers
+1.415.963.4174 ext. 6

About Rapid7

Rapid7 is a leading provider of security data and analytics solutions that enable organizations to implement an active, analytics-driven approach to cyber security. We combine our extensive experience in security data and analytics and deep insight into attacker behaviors and techniques to make sense of the wealth of data available to organizations about their IT environments and users. Our solutions empower organizations to prevent attacks by providing visibility into vulnerabilities and to rapidly detect compromises, respond to breaches, and correct the underlying causes of attacks. Rapid7 is trusted by more than 5,300 organizations across over 100 countries, including 36% of the Fortune 1000. To learn more about Rapid7 or get involved in our threat research, visit

Press Contact

Rachel E. Adam

Senior PR Manager