Posts tagged Open Source

5 min Exploits

Security Death Match: Open Source vs. Pay-for-Play Exploit Packs

In the blue corner: an open-source exploit pack. In the red corner: a pay-for-play incumbent. As a security professional trying to defend your enterprise against attacks, which corner do you bet on for your penetration tests? What's the goal of the game? Okay, this is a loaded question, because it really depends on what your goal is. If you are like 99% of enterprises, you'll want to protect against the biggest and most likely risks. If you are the 1% that comprise defense contractors and the

1 min Open Source

Webcast: Playing in the Sandbox - Open Source Tools for Threat Intelligence

If you missed last week's webcast in the Life's a Breach series, I have good news for you: The recording is now available [] . In this webcast, Claudio Guarnieri, security researcher with Rapid7 and creator of Cuckoo Sandbox, shows what we can learn from analyzing malware that have been caught with honeypots. By watching this webcast you will learn: * How to actively collect and analyze thr

1 min Open Source

Magnificent7 Update - Submission Deadline

Back in August, we announced th at Rapid7 is committing $100,000 to support up to seven Open Source projects in 2012: the Magnificent7 [/2011/08/22/rapid7-supports-open-source-projects-with-magnificent7-100000-fund] . So far we have received some really great proposals, and some requests for more time from some interesting projects, so this is a quick post to confirm that we are accepting submissions for 2012 funding until January 1, 2012. If you are interested in being considered, you do stil

3 min Open Source

Being Agile within an Open Source project

When I started to work at Rapid7 almost a year and a half ago, one of the first things I thought about was: "How can w3af benefit from all the methodologies, tools and ideas that Rapid7 uses to create NeXpose?", and without using too many brain cycles it was clear that Agile development methodologies (and more specifically SCRUM) was one of those great things. During the first months as a Rapid7 employee it was very difficult for me to spend any time developing for w3af, and the hiring of our P