The Rapid7 Blog:
Your Signal in the Security Noise

Insights, stories, and guidance from our global security and research teams.

Weekly security updates — no spam. Privacy Policy.

Featured posts

Introducing Rapid7 MDR for Microsoft

Introducing Rapid7 MDR for Microsoft

Read post
The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit

The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit

Read post
What’s New in Rapid7 Products & Services?

What’s New in Rapid7 Products & Services?

Read post
Network complexity: Bad for Business, Great for Job Security

Rapid7 Blog

Network complexity: Bad for Business, Great for Job Security

kevinbeaver's avatar

kevinbeaver

Learn to Pentest SAP with Metasploit As ERP Attacks Go Mainstream

Threat Research

Learn to Pentest SAP with Metasploit As ERP Attacks Go Mainstream

Christian Kirsch's avatar

Christian Kirsch

CTF365: A New Capture The Flag Platform for Ongoing Competitions

Rapid7 Blog

CTF365: A New Capture The Flag Platform for Ongoing Competitions

Marius Corici's avatar

Marius Corici

Weekly Update - 11/6/13

Products and Tools

Weekly Update - 11/6/13

Tod Beardsley's avatar

Tod Beardsley

Supermicro IPMI Firmware Vulnerabilities

Exposure Management

Supermicro IPMI Firmware Vulnerabilities

HD Moore's avatar

HD Moore

Vulnerability Management And Expert Systems

Rapid7 Blog

Vulnerability Management And Expert Systems

Jon Hart's avatar

Jon Hart

National Cyber Security Awareness Month: The Value of Vigilance

Industry Trends

National Cyber Security Awareness Month: The Value of Vigilance

Jen Ellis's avatar

Jen Ellis

Nightmare on Pwn Street

Threat Research

Nightmare on Pwn Street

Patrick Hellen's avatar

Patrick Hellen

Seven FOSS Tricks and Treats (Part One)

Exposure Management

Seven FOSS Tricks and Treats (Part One)

Tod Beardsley's avatar

Tod Beardsley

Legal Considerations for Widespread Scanning

Threat Research

Legal Considerations for Widespread Scanning

Marcia Hofmann's avatar

Marcia Hofmann

Social-Engineer CTF Report Released

Vulnerabilities and Exploits

Social-Engineer CTF Report Released

socialengineer's avatar

socialengineer

National Cyber Security Awareness Month: Avoiding Cloud Crisis

Industry Trends

National Cyber Security Awareness Month: Avoiding Cloud Crisis

Jen Ellis's avatar

Jen Ellis

How to Easily Get All Your Logs from AWS EC2

Products and Tools

How to Easily Get All Your Logs from AWS EC2

Rapid7's avatar

Rapid7

Weekly Update: vBulletin's and D-Link's Backdoors, and MS13-080 revisited

Rapid7 Blog

Weekly Update: vBulletin's and D-Link's Backdoors, and MS13-080 revisited

Tod Beardsley's avatar

Tod Beardsley

Audit the security configuration on your Cisco devices with Nexpose 5.7.14

Rapid7 Blog

Audit the security configuration on your Cisco devices with Nexpose 5.7.14

csong's avatar

csong

National Cyber Security Awareness Month: Basic Password Hygiene

Rapid7 Blog

National Cyber Security Awareness Month: Basic Password Hygiene

Jen Ellis's avatar

Jen Ellis

How To Track Peak Load and Memory Usage vs Response Time on Heroku

Products and Tools

How To Track Peak Load and Memory Usage vs Response Time on Heroku

Rapid7's avatar

Rapid7

How To Receive Log Alerts Via Flashing Lights In Your Office or Home

Products and Tools

How To Receive Log Alerts Via Flashing Lights In Your Office or Home

Rapid7's avatar

Rapid7

Staying Stealthy: Passive Network Discovery with Metasploit

Products and Tools

Staying Stealthy: Passive Network Discovery with Metasploit

Christian Kirsch's avatar

Christian Kirsch

National Cyber Security Awareness Month: Keeping Mobile Devices Safe

Rapid7 Blog

National Cyber Security Awareness Month: Keeping Mobile Devices Safe

ssahay's avatar

ssahay

GestioIP Authenticated Remote Command Execution module

Industry Trends

GestioIP Authenticated Remote Command Execution module

bperry's avatar

bperry