The Rapid7 Blog:
Your Signal in the Security Noise

Insights, stories, and guidance from our global security and research teams.

Weekly security updates — no spam. Privacy Policy.

Featured posts

Introducing Rapid7 MDR for Microsoft

Introducing Rapid7 MDR for Microsoft

Read post
The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit

The Chrysalis Backdoor: A Deep Dive into Lotus Blossom’s toolkit

Read post
What’s New in Rapid7 Products & Services?

What’s New in Rapid7 Products & Services?

Read post
Update to the Metasploit Updates and msfupdate

Products and Tools

Update to the Metasploit Updates and msfupdate

Tod Beardsley's avatar

Tod Beardsley

Hacking like it's 1985: Rooting the Cisco Prime LAN Management Solution

Products and Tools

Hacking like it's 1985: Rooting the Cisco Prime LAN Management Solution

HD Moore's avatar

HD Moore

Video Tutorial: Introduction to Burp-Suite 1.5 Web Pen Testing Proxy

Rapid7 Blog

Video Tutorial: Introduction to Burp-Suite 1.5 Web Pen Testing Proxy

webpwnized's avatar

webpwnized

Exploiting Ruby on Rails with Metasploit (CVE-2013-0156)

Vulnerabilities and Exploits

Exploiting Ruby on Rails with Metasploit (CVE-2013-0156)

HD Moore's avatar

HD Moore

Weekly Metasploit Update: Rails Scanning, ZDI, and Exploit Dev

Products and Tools

Weekly Metasploit Update: Rails Scanning, ZDI, and Exploit Dev

Tod Beardsley's avatar

Tod Beardsley

Serialization Mischief in Ruby Land (CVE-2013-0156)

Vulnerabilities and Exploits

Serialization Mischief in Ruby Land (CVE-2013-0156)

HD Moore's avatar

HD Moore

Free Metasploit Penetration Testing Lab in the Cloud

Products and Tools

Free Metasploit Penetration Testing Lab in the Cloud

Christian Kirsch's avatar

Christian Kirsch

Using BackTrack 5 R3 with Metasploit Community or Metasploit Pro

Products and Tools

Using BackTrack 5 R3 with Metasploit Community or Metasploit Pro

Christian Kirsch's avatar

Christian Kirsch

Guide to monitoring JVM Memory usage

Rapid7 Blog

Guide to monitoring JVM Memory usage

Landon Dalke's avatar

Landon Dalke

Security Death Match: Open Source vs. Pay-for-Play Exploit Packs

Products and Tools

Security Death Match: Open Source vs. Pay-for-Play Exploit Packs

Christian Kirsch's avatar

Christian Kirsch

How Metasploit's 3-Step Quality Assurance Process Gives You Peace Of Mind

Vulnerabilities and Exploits

How Metasploit's 3-Step Quality Assurance Process Gives You Peace Of Mind

Christian Kirsch's avatar

Christian Kirsch

New Metasploit Exploit: Crystal Reports Viewer CVE-2010-2590

Vulnerabilities and Exploits

New Metasploit Exploit: Crystal Reports Viewer CVE-2010-2590

Juan Vazquez's avatar

Juan Vazquez

Weekly Metasploit Update: CrystalReports and Testing Discipline

Products and Tools

Weekly Metasploit Update: CrystalReports and Testing Discipline

Tod Beardsley's avatar

Tod Beardsley

5 Tips to Ensure Safe Penetration Tests with Metasploit

Exposure Management

5 Tips to Ensure Safe Penetration Tests with Metasploit

Christian Kirsch's avatar

Christian Kirsch

Introduction to Metasploit Hooks

Exposure Management

Introduction to Metasploit Hooks

Egypt's avatar

Egypt

The Odd Couple: Metasploit and Antivirus Solutions

Exposure Management

The Odd Couple: Metasploit and Antivirus Solutions

David Maloney's avatar

David Maloney

Weekly Metasploit Update: Exploit Dev How-to and InfoSec Targets

Products and Tools

Weekly Metasploit Update: Exploit Dev How-to and InfoSec Targets

Tod Beardsley's avatar

Tod Beardsley

November Exploit Trends: Apache Killer Exploit New to List

Vulnerabilities and Exploits

November Exploit Trends: Apache Killer Exploit New to List

Christian Kirsch's avatar

Christian Kirsch

Introducing Nexpose 5.5 - CIS, USGCB 2, Enhanced Reporting, and Data Scalability

Products and Tools

Introducing Nexpose 5.5 - CIS, USGCB 2, Enhanced Reporting, and Data Scalability

Eric Reiners's avatar

Eric Reiners

Metasploit Hits 1000 Exploits

Rapid7 Blog

Metasploit Hits 1000 Exploits

Tod Beardsley's avatar

Tod Beardsley

Skynet, a Tor-powered botnet straight from Reddit

Vulnerabilities and Exploits

Skynet, a Tor-powered botnet straight from Reddit

nex's avatar

nex