Incident Response Services
Penetration Testing Services
IoT Security Services
Training & Certification
Managed Vulnerability Management
Managed Application Security
Managed Detection & Response
Find a Partner
Rapid7 Insight is your home for SecOps, equipping you with the visibility, analytics, and automation you need to unite your teams and amplify efficiency.
Insight Cloud Overview Try Now
User Behavior Analytics & SIEM
Orchestration & Automation
Need a hand with your security program? From planning and strategy to full service support, our experts have you covered.
Need immediate help with a breach?
As a provider of security software, services, and research, we take security issues very seriously and recognize the importance of privacy, security, and community outreach. As such, we are committed to addressing and reporting security issues through a coordinated and constructive approach designed to drive the greatest protection for technology users. Whether you’re a user of Rapid7 solutions, a software developer, or simply a security enthusiast, you’re an important part of this process.
Reporting security issues
If you believe you have discovered a vulnerability in a Rapid7 product or have a security incident to report, please fill out this contact form. If you feel the need, please use our PGP public key - KeyID: 959D3EDA - to encrypt your communications with us.
Once we have received a vulnerability report, Rapid7 takes a series of steps to address the issue:
Rapid7 will endeavor to keep the reporter apprised of every step in this process as it occurs.
We greatly appreciate the efforts of security researchers and discoverers who share information on security issues with us, giving us a chance to improve our products and services, and better protect our customers. Thank you for working with us through the above process.
Coordination is key
When properly notified of legitimate issues, we’ll do our best to acknowledge your emailed report, assign resources to investigate the issue, and fix potential problems as quickly as possible. When we discover vulnerabilities through our own research, we will do our best to coordinate efforts with the vendor's security teams and CERT/CC.
Security issues found by Rapid7 research
Once we have found a vulnerability in another vendor’s products, Rapid7 takes a series of steps to address the issue:
For the latest news, research, and developments from Rapid7 on security, research, and projects visit our blog.