The Rapid7 Blog:
Your Signal in the Security Noise

Insights, stories, and guidance from our global security and research teams.

Weekly security updates — no spam. Privacy Policy.

Featured posts

Introducing Rapid7 MDR for Microsoft

Introducing Rapid7 MDR for Microsoft

Read post
The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit

The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit

Read post
What’s New in Rapid7 Products & Services?

What’s New in Rapid7 Products & Services?

Read post
Weekly Update: Fun with ZPanel, MoinMoin, and FreeBSD

Vulnerabilities and Exploits

Weekly Update: Fun with ZPanel, MoinMoin, and FreeBSD

Egypt's avatar

Egypt

From the Wild to Metasploit: Exploit for MoinMoin Wiki (CVE-2012-6081)

Vulnerabilities and Exploits

From the Wild to Metasploit: Exploit for MoinMoin Wiki (CVE-2012-6081)

Juan Vazquez's avatar

Juan Vazquez

Weekly Update: Smaller is Better

Products and Tools

Weekly Update: Smaller is Better

Egypt's avatar

Egypt

Cross-site Scripting (XSS) Attacks vs SQL Injection Attacks (SQLi)

Rapid7 Blog

Cross-site Scripting (XSS) Attacks vs SQL Injection Attacks (SQLi)

drew's avatar

drew

Video Tutorial - Installing Kali Linux on Bootable, Persistent USB

Rapid7 Blog

Video Tutorial - Installing Kali Linux on Bootable, Persistent USB

webpwnized's avatar

webpwnized

Custom Vulnerability Checks using Nexpose's Vulnerability Schemas

Products and Tools

Custom Vulnerability Checks using Nexpose's Vulnerability Schemas

Jon Hart's avatar

Jon Hart

Patch Tuesday - June Edition

Rapid7 Blog

Patch Tuesday - June Edition

Ross Barrett's avatar

Ross Barrett

Guide to HTTP Header Configuration

Products and Tools

Guide to HTTP Header Configuration

Rapid7 Support's avatar

Rapid7 Support

Weekly Update: The Nginx Exploit and Continuous Testing

Products and Tools

Weekly Update: The Nginx Exploit and Continuous Testing

Tod Beardsley's avatar

Tod Beardsley

John the Ripper 1.8.0

Threat Research

John the Ripper 1.8.0

solardiz's avatar

solardiz

SecurityStreet Talks - Houston

Rapid7 Blog

SecurityStreet Talks - Houston

Patrick Hellen's avatar

Patrick Hellen

Heroku Account Consolidation-Single View of all your Logs

Products and Tools

Heroku Account Consolidation-Single View of all your Logs

Rapid7's avatar

Rapid7

Weekly Update: 4.6.1, ColdFusion Exploit, and SVN Lockdown

Products and Tools

Weekly Update: 4.6.1, ColdFusion Exploit, and SVN Lockdown

Tod Beardsley's avatar

Tod Beardsley

Git Clone Metasploit; Don't SVN Checkout

Products and Tools

Git Clone Metasploit; Don't SVN Checkout

Tod Beardsley's avatar

Tod Beardsley

Nexpose 5.6 - Top Remediation Reports - Reports that provide the biggest bang for your buck

Products and Tools

Nexpose 5.6 - Top Remediation Reports - Reports that provide the biggest bang for your buck

James Green's avatar

James Green

May 2013 - Patch Tuesday, the "yet another IE 0-day edition"

Rapid7 Blog

May 2013 - Patch Tuesday, the "yet another IE 0-day edition"

Ross Barrett's avatar

Ross Barrett

Vaccinating systems against VM-aware malware

Rapid7 Blog

Vaccinating systems against VM-aware malware

rep's avatar

rep

Switching between UTC and local time

Products and Tools

Switching between UTC and local time

Rapid7's avatar

Rapid7

Metasploit's 10th Anniversary: Laptop Decal Design Competition

Products and Tools

Metasploit's 10th Anniversary: Laptop Decal Design Competition

Tod Beardsley's avatar

Tod Beardsley

Abusing Safari's webarchive file format

Vulnerabilities and Exploits

Abusing Safari's webarchive file format

joev's avatar

joev

Simplify Vulnerability Management with Nexpose 5.6

Exposure Management

Simplify Vulnerability Management with Nexpose 5.6

rpoppa's avatar

rpoppa