Rapid7 Research

Building a safer world through open sources that go beyond code

Introducing the 2021 Industry Cyber-Exposure Report (ICER)

Our latest research measures the internet exposure of the most critical businesses across the globe.

Research at a Glance

Our Philosophy

We believe security is the responsibility of all technology users, manufacturers, and intermediaries and that collaboration is the only way to achieve long-term change. That’s why we’re committed to openly sharing security information, helping our peers to learn, grow, and develop new capabilities, and supporting each other in raising and addressing issues that affect the cybersecurity community.

reseach-globe.png

Impact Across Industries

Rapid7 researchers constantly work to uncover unknowns as far as technology reaches.

Consumer Technology

Consumer Technology

Security risks are present in even the most commonplace devices—and not just your phone and laptop. Rapid7 researchers have exposed vulnerabilities in everything from printers, baby monitors, vehicles, and even children’s toys.

Business Technology

Business Technology

It’s no secret that security can have far-reaching impacts on a business, including on its bottom line. Our researchers have helped global organizations across industries secure their internal processes and ensure the safety of their customers.

Public Infrastructure

Public Infrastructure

Critical infrastructure, such as energy, communications, and transportation, are core to the functioning of our world as we know it. That’s why we prioritize infrastructure research and public policy efforts aimed at helping governments keep infrastructure secure.

The Minds Behind the Research

Tas Giakouminakis
Tas Giakouminakis
Bob-Rudis.jpg
Bob Rudis
Tod-Beardsley.jpg
Tod Beardsley
Deral Heiland
Deral Heiland
Threat Feed

Where Research Meets the Roadmap

Explore how Rapid7’s unparalleled understanding of attackers makes our products more powerful.

  • Threat feed dashboard informed by Project Heisenberg honeypots in InsightVM
  • Attacker Based Analytics sourced from Projects Sonar and Heisenberg and threat intelligence in InsightIDR
  • Accelerated discovery and coverage of zero-days and other low-notice exploits in InsightVM
  • Discovery of internet-facing assets in InsightVM using integration with Project Sonar
  • Identification of weak or distrusted certs using research on SSL certificate ecosystem

Want to dive deeper into our research data?

View Open Data