Rapid7 is on a mission to drive the SecOps movement into the future, and we take that to heart with our holistic approach to security. Rapid7 has policies and procedures in place to keep our data, platform, and products secure, so that we can continue creating tools and services that keep our customers secure.
Rest assured: Rapid7’s approach to security is established on four core pillars essential to trust.
Availability
You have access to your data when you need it and our operational status is always up to date.
Read What’s New on the Rapid7 Blog
Distribute Reports to Email Addresses in InsightVM
A new email reports feature in InsightVM allows users to easily and quickly distribute reports to users who may not have access to the platform.
Better Together: XDR, SOAR, Vulnerability Management, and External Threat Intelligence
Effectively prioritizing security incidents comes down to having the right data and intelligence from inside your IT environment and the world outside.
Metasploit Wrap-Up
GitLab RCE
New Rapid7 team member jbaines-r7 [https://github.com/jbaines-r7] wrote an
exploit targeting GitLab via the ExifTool command. Exploiting this vulnerability
results in unauthenticated remote code execution as the git user. What makes
this module extra neat is the fact that it chains two vulnerabilities together
to achieve this desired effect. The first vulnerability is in GitLab itself that
can be leveraged to pass invalid image files to the ExifTool parser which
contained the second v
