Rapid7 NeXpose Leverages Metasploit Data, Exploit Database

Exploit Exposure provides users with deeper insight into the breach paths for vulnerabilities identified across multiple threat vectors

February 24, 2010

2 Min Read


BOSTON, Mass. " February 23, 2010 " Rapid7', the leading provider of unified vulnerability management, compliance and penetration testing solutions, today announced Exploit Exposure, a new technology available immediately in its flagship vulnerability management product, Rapid7 NeXpose'. Exploit Exposure provides users with deeper insight into the breach paths for vulnerabilities identified across multiple threat vectors, including Web applications, operating systems, networks and databases by detailing the risk that discovered vulnerabilities represent to critical business data. With this new feature, NeXpose is the only vulnerability management solution to use real exploit intelligence to perform risk classification. As a result, organizations can make more informed decisions and focus remediation resources on the most critical, exploitable security gaps identified in their IT infrastructure.

The Rapid7 NeXpose family of products, from the robust NeXpose Enterprise Edition to the no-cost NeXpose Community Edition, performs more than 40,000 vulnerability checks across the broadest level of assets found in today's complex IT infrastructure within organizations of all sizes. As the number of attacks and vulnerabilities continue to rise, security professionals need the ability to prioritize real threats and remediate the greatest risks first. Exploit Exposure addresses this challenge by identifying whether an exploit exists and combines exploit ranking with other factors to determine the probability of a successful attack. As a result, security managers have additional knowledge behind identified vulnerabilities, including whether those vulnerabilities have known exploits, and can then determine appropriate remediation next steps.

"When it comes to vulnerability management and reducing the risk of an attack through exploits, detailed information is critical and organizations greatly benefit from data gathered by the security community," said Mike Tuchen, president and CEO of Rapid7. "Given the number of vulnerabilities organizations face every day, we have always provided our customers with prioritization reports to assist with remediation. The addition of Exploit Exposure is a further milestone in the evolution of risk quantification and prioritization. Combined with existing risk metrics in NeXpose, Rapid7 provides the most practical and flexible methods for identifying, measuring and managing risk across enterprise environments." About Rapid7

Rapid7 is the leading provider of unified vulnerability management, compliance, and penetration testing solutions, delivering actionable intelligence about an organization's entire IT environment. Rapid7 offers the only integrated threat management solution that enables organizations to implement and maintain best practices and optimize their network security, Web application security and database security strategies.

Recognized as the fastest growing vulnerability management company in the U.S. by Inc. Magazine, Rapid7 helps leading organizations such as Liz Claiborne, the United States Postal Service, Carnegie Mellon University and Red Bull to mitigate risk and maintain compliance for regulations such as PCI, HIPAA, FISMA, SOX and NERC. Rapid7 also manages the Metasploit Project, the leading open-source penetration testing platform with the world's largest database of public, tested exploits. For more information, visit www.rapid7.com.

Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.

You May Also Like

More Insights