Abuse of privileged accounts through compromised credentials is proving to be an increasingly popular tactic for hackers and malicious insiders. When it comes to vulnerability scanning, credentialed scans are more effective because they have a greater reach into an organization’s network.
Integrating Rapid7’s leading vulnerability management solution, InsightVM, or our top-rated on-premise solution, Nexpose, with Thycotic’s SecretServer helps enhance your team’s ability to perform these scans. SecretServer is designed to randomize and store the passwords for accounts on target systems on a regular recurring basis. The passwords are stored and managed by the vault and can be retrieved via a SOAP web service which allows them to be securely shared with other technologies. This integration minimizes the exposure of your critical credentials to possible attackers while allowing your security team to perform critical security assessments.
Thycotic’s SecretServer will store and randomize the passwords regularly. As they are needed for a vulnerability scan, the randomized passwords can then be applied to the relevant assets to allow InsightVM* to run a credentialed scan.
Through this integration, joint Rapid7 and Thycotic customers are now able to maximize their efficiency and reduce their risk exposure by utilizing randomized passwords when running credentialed vulnerability scans.
Once the script is deployed, InsightVM will automatically pull the relevant credentials from SecretServer, allowing users to perform scans with an increased level of password security.
Figure 1: SecretServer securely stores your passwords for use in InsightVM or Nexpose
*All mentions of Rapid7 InsightVM associated with the Thycotic SecretServer also apply to Rapid7 Nexpose.
Download this Integration OverviewDownload Now
Take this integration for a spin and experience the full functionality of InsightVM for 30 daysExplore InsightVM
Please contact Rapid7 for support or assistance at +1.866.380.8113, or view all of our support options.Get Support