The Rapid7 Blog:
Your Signal in the Security Noise

Insights, stories, and guidance from our global security and research teams.

Weekly security updates — no spam. Privacy Policy.

Featured posts

Introducing Rapid7 MDR for Microsoft

Introducing Rapid7 MDR for Microsoft

Read post
The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit

The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit

Read post
What’s New in Rapid7 Products & Services?

What’s New in Rapid7 Products & Services?

Read post
Metasploit Wrapup: Feb. 2, 2018

Products and Tools

Metasploit Wrapup: Feb. 2, 2018

Pearce Barry's avatar

Pearce Barry

Metasploit Wrapup: Jan. 26, 2018

Products and Tools

Metasploit Wrapup: Jan. 26, 2018

Pearce Barry's avatar

Pearce Barry

XSS Bug Reports Made Easy

Rapid7 Blog

XSS Bug Reports Made Easy

Rapid7's avatar

Rapid7

Vulnerability Management Year in Review, Part 3: Remediate

Exposure Management

Vulnerability Management Year in Review, Part 3: Remediate

Nathan Palanov's avatar

Nathan Palanov

How To Detect Unauthorized DNS Servers On Your Network

Detection and Response

How To Detect Unauthorized DNS Servers On Your Network

Rapid7's avatar

Rapid7

Metasploit Wrapup 1/19/18

Products and Tools

Metasploit Wrapup 1/19/18

Brent Cook's avatar

Brent Cook

Think Like a Hacker: Going Beyond Network Security

Rapid7 Blog

Think Like a Hacker: Going Beyond Network Security

Rapid7's avatar

Rapid7

A RESTful API for InsightVM

Exposure Management

A RESTful API for InsightVM

Ken Mizota's avatar

Ken Mizota

3 Questions to Ask When Prioritizing Web Application Vulnerabilities

Exposure Management

3 Questions to Ask When Prioritizing Web Application Vulnerabilities

Alfred Chung's avatar

Alfred Chung

Taking a Message-Based Approach to Logging

Products and Tools

Taking a Message-Based Approach to Logging

Robert Reselman's avatar

Robert Reselman

Metasploit Wrapup: Jan. 12, 2018

Products and Tools

Metasploit Wrapup: Jan. 12, 2018

Aaron Soto's avatar

Aaron Soto

How to Choose a Security Orchestration and Automation Platform

Security Operations

How to Choose a Security Orchestration and Automation Platform

Rapid7's avatar

Rapid7

4 Differences Between Network Security & Application Security

Detection and Response

4 Differences Between Network Security & Application Security

Alfred Chung's avatar

Alfred Chung

GDPR Preparation Checklist: January – Teach and Tidy

Exposure Management

GDPR Preparation Checklist: January – Teach and Tidy

Sam Humphries's avatar

Sam Humphries

Patch Tuesday - January 2018

Exposure Management

Patch Tuesday - January 2018

Greg Wiseman's avatar

Greg Wiseman

Metasploit Wrapup 1/5/18

Products and Tools

Metasploit Wrapup 1/5/18

Dev Mohanty's avatar

Dev Mohanty

Vulnerability Management Year in Review, Part 1: Collect

Security Operations

Vulnerability Management Year in Review, Part 1: Collect

Ken Mizota's avatar

Ken Mizota

HaXmas Review: A Year of Patch Tuesdays

Exposure Management

HaXmas Review: A Year of Patch Tuesdays

Greg Wiseman's avatar

Greg Wiseman

12 Memorable Metasploit Moments of 2017

Products and Tools

12 Memorable Metasploit Moments of 2017

Brent Cook's avatar

Brent Cook

An Evaluation of the North Pole’s Password Security Posture

Security Operations

An Evaluation of the North Pole’s Password Security Posture

Jonathan Stines's avatar

Jonathan Stines

Regifting Python in Metasploit

Products and Tools

Regifting Python in Metasploit

Adam Cammack's avatar

Adam Cammack