The Rapid7 Blog:
Your Signal in the Security Noise

Insights, stories, and guidance from our global security and research teams.

Weekly security updates — no spam. Privacy Policy.

Featured posts

Introducing Rapid7 MDR for Microsoft

Introducing Rapid7 MDR for Microsoft

Read post
The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit

The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit

Read post
What’s New in Rapid7 Products & Services?

What’s New in Rapid7 Products & Services?

Read post
ControlsInsight: A Step-by-Step Approach to Troubleshoot Missing Assets

Rapid7 Blog

ControlsInsight: A Step-by-Step Approach to Troubleshoot Missing Assets

Naveen Bibinagar's avatar

Naveen Bibinagar

Using D3.js to Graph Your Log Data

Products and Tools

Using D3.js to Graph Your Log Data

Rapid7's avatar

Rapid7

2014 Metasploit T-Shirt Design Contest

Products and Tools

2014 Metasploit T-Shirt Design Contest

Tod Beardsley's avatar

Tod Beardsley

Federal Friday - 4.25.14 - A Whole Lot of Oops

Threat Research

Federal Friday - 4.25.14 - A Whole Lot of Oops

John Schimelpfenig's avatar

John Schimelpfenig

Log Aggregation & Grouping in 3 Clicks

Products and Tools

Log Aggregation & Grouping in 3 Clicks

Rapid7's avatar

Rapid7

Hacker's Dome: An Online Capture-the-Flag (CTF) Competition on May 17

Products and Tools

Hacker's Dome: An Online Capture-the-Flag (CTF) Competition on May 17

Christian Kirsch's avatar

Christian Kirsch

Customer Success: Sending your CoreOS data to Logentries

Products and Tools

Customer Success: Sending your CoreOS data to Logentries

Rapid7's avatar

Rapid7

4 Reasons to Love Your Log Data

Products and Tools

4 Reasons to Love Your Log Data

Rapid7's avatar

Rapid7

What is "real-time" anyway…?

Products and Tools

What is "real-time" anyway…?

Rapid7's avatar

Rapid7

A Note on Logentries Security

Products and Tools

A Note on Logentries Security

Rapid7's avatar

Rapid7

Exploiting CSRF under NoScript Conditions

Vulnerabilities and Exploits

Exploiting CSRF under NoScript Conditions

joev's avatar

joev

From the Trenches: AV Evasion With Dynamic Payload Generation

Rapid7 Blog

From the Trenches: AV Evasion With Dynamic Payload Generation

Shane Rudy's avatar

Shane Rudy

Heartbleed War Room - Product FAQ

Products and Tools

Heartbleed War Room - Product FAQ

Trey Ford's avatar

Trey Ford

Sophos Web Appliance Privilege Escalation and Remote Code Execution Vulnerability

Vulnerabilities and Exploits

Sophos Web Appliance Privilege Escalation and Remote Code Execution Vulnerability

bperry's avatar

bperry

Using Nexpose to Stop the Bleeding (Scanning for the OpenSSL Heartbleed Vulnerability)

Products and Tools

Using Nexpose to Stop the Bleeding (Scanning for the OpenSSL Heartbleed Vulnerability)

Greg Wiseman's avatar

Greg Wiseman

Automating logging to Logentries

Products and Tools

Automating logging to Logentries

Rapid7's avatar

Rapid7

Security Advisory: OpenSSL Heartbleed Vulnerability (CVE-2014-0160) in Metasploit (Updated 4/11/14 2:20pm EDT)

Products and Tools

Security Advisory: OpenSSL Heartbleed Vulnerability (CVE-2014-0160) in Metasploit (Updated 4/11/14 2:20pm EDT)

Christian Kirsch's avatar

Christian Kirsch

It's the end of XP as we know it, April Patch Tuesday 2014, and, oh yeah... heartbleed.

Detection and Response

It's the end of XP as we know it, April Patch Tuesday 2014, and, oh yeah... heartbleed.

Ross Barrett's avatar

Ross Barrett

Metasploit's Brand New Heartbleed Scanner Module (CVE-2014-0160)

Vulnerabilities and Exploits

Metasploit's Brand New Heartbleed Scanner Module (CVE-2014-0160)

Tod Beardsley's avatar

Tod Beardsley

"Hack Away at the Unessential" with ExpLib2 in Metasploit

Vulnerabilities and Exploits

"Hack Away at the Unessential" with ExpLib2 in Metasploit

Wei Chen's avatar

Wei Chen

Metasploitable in the Cloud

Rapid7 Blog

Metasploitable in the Cloud

Marius Corici's avatar

Marius Corici