The Rapid7 Blog:
Your Signal in the Security Noise

Insights, stories, and guidance from our global security and research teams.

Weekly security updates — no spam. Privacy Policy.

Featured posts

Introducing Rapid7 MDR for Microsoft

Introducing Rapid7 MDR for Microsoft

Read post
The End of Legacy SIEM as we Know it

The End of Legacy SIEM as we Know it

Read post
What’s New in Rapid7 Products & Services?

What’s New in Rapid7 Products & Services?

Read post
Change the Theme, Get a Shell: Remote Code Execution with MS13-071

Vulnerabilities and Exploits

Change the Theme, Get a Shell: Remote Code Execution with MS13-071

Juan Vazquez's avatar

Juan Vazquez

Understanding Security Control Grades

Rapid7 Blog

Understanding Security Control Grades

Bill Sharar's avatar

Bill Sharar

IE 0-day: exploit code is now widely available (CVE-2013-3893)

Exposure Management

IE 0-day: exploit code is now widely available (CVE-2013-3893)

Ross Barrett's avatar

Ross Barrett

How to Log Client-side JavaScript Events – Logging for the Web with le.js

Products and Tools

How to Log Client-side JavaScript Events – Logging for the Web with le.js

Rapid7's avatar

Rapid7

Kvasir: Penetration Data Management for Metasploit and Nexpose

Rapid7 Blog

Kvasir: Penetration Data Management for Metasploit and Nexpose

kgrutzma's avatar

kgrutzma

Federal Friday – 9.20.13 – The Air Gapped-Off line Edition

Industry Trends

Federal Friday – 9.20.13 – The Air Gapped-Off line Edition

John Schimelpfenig's avatar

John Schimelpfenig

Weekly Update

Products and Tools

Weekly Update

Tod Beardsley's avatar

Tod Beardsley

Site Import Procedure

Rapid7 Blog

Site Import Procedure

Chris Lee's avatar

Chris Lee

Weekly Update: MSIE, GE Proficy, and handling Metasploit merge conflicts

Products and Tools

Weekly Update: MSIE, GE Proficy, and handling Metasploit merge conflicts

Tod Beardsley's avatar

Tod Beardsley

Video Tutorial: Introduction to XML External Entity Injection

Rapid7 Blog

Video Tutorial: Introduction to XML External Entity Injection

webpwnized's avatar

webpwnized

Patch Tuesday, Sept 2013

Detection and Response

Patch Tuesday, Sept 2013

Ross Barrett's avatar

Ross Barrett

Weekly Update: Apple OSX Privilege Escalation

Products and Tools

Weekly Update: Apple OSX Privilege Escalation

Tod Beardsley's avatar

Tod Beardsley

Finding Out What Users are Doing on Your Network

Products and Tools

Finding Out What Users are Doing on Your Network

Darragh Delaney's avatar

Darragh Delaney

Firewall Egress Filtering

Products and Tools

Firewall Egress Filtering

Christian Kirsch's avatar

Christian Kirsch

Rapid7 part of VMware NSX Partner ecosystem

Products and Tools

Rapid7 part of VMware NSX Partner ecosystem

Nate Crampton's avatar

Nate Crampton

Upcoming G20 Summit Fuels Espionage Operations

Rapid7 Blog

Upcoming G20 Summit Fuels Espionage Operations

nex's avatar

nex

Weekly Update: Cooperative Disclosure and Assessing Joomla

Products and Tools

Weekly Update: Cooperative Disclosure and Assessing Joomla

Tod Beardsley's avatar

Tod Beardsley

ByeBye Shell and the Targeting of Pakistan

Vulnerabilities and Exploits

ByeBye Shell and the Targeting of Pakistan

nex's avatar

nex

August Patch Tuesday

Detection and Response

August Patch Tuesday

Ross Barrett's avatar

Ross Barrett

Field-level search

Products and Tools

Field-level search

Rapid7's avatar

Rapid7

SecureNinjaTV Interview: Tod Beardsley About Metasploit 10th Anniversary

Products and Tools

SecureNinjaTV Interview: Tod Beardsley About Metasploit 10th Anniversary

Christian Kirsch's avatar

Christian Kirsch