Rapid7

The Rapid7 Blog:
Your Signal in the Security Noise

Insights, stories, and guidance from our global security and research teams.

Weekly security updates — no spam. Privacy Policy.

Rapid7 Analysis: CVE-2018-13379 Path Traversal in Fortinet FortiOS

Threat Research

Rapid7 Analysis: CVE-2018-13379 Path Traversal in Fortinet FortiOS

Rapid7 Labs's avatar

Rapid7 Labs

What’s New in InsightAppSec and tCell: Q1 2021 in Review

Products and Tools

What’s New in InsightAppSec and tCell: Q1 2021 in Review

Rapid7's avatar

Rapid7

Metasploit Wrap-Up 4/2/21

Exposure Management

Metasploit Wrap-Up 4/2/21

Brendan Watters's avatar

Brendan Watters

Rapid7 Analysis: CVE-2021-21975

Threat Research

Rapid7 Analysis: CVE-2021-21975

Rapid7 Labs's avatar

Rapid7 Labs

MDR Vendor Must-Haves, Part 3: Ingestion of Other Technology Investments

Products and Tools

MDR Vendor Must-Haves, Part 3: Ingestion of Other Technology Investments

Jake Godgart's avatar

Jake Godgart

Rapid7 Analysis: CVE-2020-12271: Sophos XG Firewall Pre-Auth SQL Injection Vulnerability

Threat Research

Rapid7 Analysis: CVE-2020-12271: Sophos XG Firewall Pre-Auth SQL Injection Vulnerability

Rapid7 Labs's avatar

Rapid7 Labs

SolarWinds Patches Four New Vulnerabilities in Their Orion Platform

Exposure Management

SolarWinds Patches Four New Vulnerabilities in Their Orion Platform

boB Rudis's avatar

boB Rudis

MDR Vendor Must-Haves, Part 2: Ingestion of Network Device Data

Products and Tools

MDR Vendor Must-Haves, Part 2: Ingestion of Network Device Data

Jake Godgart's avatar

Jake Godgart

Metasploit Wrap-Up: 3/26/21

Exposure Management

Metasploit Wrap-Up: 3/26/21

Christopher Granleese's avatar

Christopher Granleese

DivvyCloud Adds Support for IAM Analyzer Policy Recommendations

Products and Tools

DivvyCloud Adds Support for IAM Analyzer Policy Recommendations

Chris DeRamus's avatar

Chris DeRamus

Rapid7 Analysis: CVE-2021-3450

Threat Research

Rapid7 Analysis: CVE-2021-3450

Rapid7 Labs's avatar

Rapid7 Labs

Rapid7 Analysis: OpenSSL TLS Server Crash (NULL pointer dereference) — CVE-2021-3449

Threat Research

Rapid7 Analysis: OpenSSL TLS Server Crash (NULL pointer dereference) — CVE-2021-3449

Rapid7 Labs's avatar

Rapid7 Labs

Attack vs. Data: What You Need to Know About Threat Hunting

Products and Tools

Attack vs. Data: What You Need to Know About Threat Hunting

Jeffrey Gardner's avatar

Jeffrey Gardner

Rapid7 Analysis: K03009991: iControl REST unauthenticated remote command execution vulnerability CVE-2021-22986

Threat Research

Rapid7 Analysis: K03009991: iControl REST unauthenticated remote command execution vulnerability CVE-2021-22986

Rapid7 Labs's avatar

Rapid7 Labs

Rapid7 Recognized as a Strong Performer in the Inaugural Forrester Wave™ for MDR, Q1 2021

Products and Tools

Rapid7 Recognized as a Strong Performer in the Inaugural Forrester Wave™ for MDR, Q1 2021

Jake Godgart's avatar

Jake Godgart

MDR Vendor Must-Haves, Part 1: Deep Observation of Real-Time Endpoint Data

Products and Tools

MDR Vendor Must-Haves, Part 1: Deep Observation of Real-Time Endpoint Data

Jake Godgart's avatar

Jake Godgart

Defending Against the Zero Day: Analyzing Attacker Behavior Post-Exploitation of Microsoft Exchange

Products and Tools

Defending Against the Zero Day: Analyzing Attacker Behavior Post-Exploitation of Microsoft Exchange

Eoin Miller's avatar

Eoin Miller

SOC Automation with InsightIDR and InsightConnect

Products and Tools

SOC Automation with InsightIDR and InsightConnect

Sydney Coffaro's avatar

Sydney Coffaro

Metasploit Wrap-Up: Mar. 19, 2021

Exposure Management

Metasploit Wrap-Up: Mar. 19, 2021

Shelby Pace's avatar

Shelby Pace

F5 Discloses Eight Vulnerabilities—Including Four Critical Ones—in BIG-IP Systems

Products and Tools

F5 Discloses Eight Vulnerabilities—Including Four Critical Ones—in BIG-IP Systems

boB Rudis's avatar

boB Rudis

Rapid7 Announces Release of New tCell Amazon CloudFront Agent

Products and Tools

Rapid7 Announces Release of New tCell Amazon CloudFront Agent

Nate Crampton's avatar

Nate Crampton