3 min
Security Operations (SOC)
Building a Culture of Security Awareness: How to Use Performance Metrics to Communicate SOC Effectiveness Throughout Your Org
In this blog, we break down which SOC performance metrics to report to your organization and how to measure your impact.
3 min
InsightConnect
Global Artifacts Now Available in InsightConnect
Rapid7 is excited to announce the release of Global Artifacts to enhance the capabilities provided by InsightConnect, Rapid7’s SOAR solution.
4 min
IoT
IoT Vuln Disclosure: Children's GPS Smart Watches (R7-2019-57)
In a recent IoT hacking training exercise, Rapid7 penetration testers set out to find vulnerabilities in a number of children's GPS-enabled smart watches.
2 min
Patch Tuesday
Patch Tuesday - December 2019
Today we come to the end of 2019's monthly Microsoft Patch Tuesday
(also known as Update Tuesday). This Christmas, Microsoft presents us with 36
vulnerabilities (that's two less than this time last year!) and no new
vulnerabilities from Adobe for Adobe Flash.
Unfortunately, despite a light month, there's still action to be taken.
CVE-2019-1458
11 min
Labs
How I Shut Down a (Test) Factory with a Single Layer 2 Packet
In this blog, we discuss how a Denial of Service (DoS) bug could crash all Beckhoff PLCs running the Profinet protocol stack if an attacker gains access.
3 min
Metasploit
Metasploit Wrap-Up: 12/6/19
Management delegation of shells
Onur ER contributed the Ajenti auth username
command
injection exploit
module for the vulnerability Jeremy Brown discovered and published a PoC for on
2019-10-13 (EDB 47497) against Ajenti version 2.1.31. Ajenti is an open-source
web-based server admin panel written in Python and JS. The application allows
admins to remotely perform a variety of server management tasks. The
ex
3 min
Application Security
Hidden Helpers: Security-Focused HTTP Headers to Protect Against Vulnerabilities
In our second installment of the 'Hidden Helpers' series, we discuss security-focused HTTP headers and how they can protect against vulnerabilities.
3 min
InsightIDR
InsightIDR Now Available for Purchase in AWS Marketplace
Rapid7 is excited to announce that InsightIDR, our security information and event management (SIEM) offering, is now available in the AWS Marketplace.
8 min
Podcast
Discovering a New Path in Asset Discovery: A Q&A with Metasploit Founder HD Moore
In honor of the 10-year anniversary of Rapid7’s acquisition of Metasploit, our latest episode of Security Nation features an interview with its founder, HD Moore.
2 min
Threat Intel
Kilos: The Dark Web’s Newest – and Most Extensive – Search Engine
Kilos allows buyers to search for products across numerous dark web sites.
3 min
Cybersecurity
5 Types of Cybersecurity Attacks to Watch Out for This Black Friday and Cyber Monday
With the holiday season right around the corner, here are five types of cybersecurity attacks to be wary of during Black Friday and Cyber Monday shopping.
3 min
Metasploit
Metasploit Wrap-Up: 11/22/19
Payload payday
As we blogged about yesterday
, a new form of payload that is compiled directly from C when generated was
added by space-7 . We hope this is only the first
step in a journey of applying the myriad tools that obfuscate C programs to our
core payloads, so be sure to check out all the nifty workings of the code! If
that wasn't enough, we also got a pair of payloads written f
3 min
InsightConnect
How SMBs Can Decrease Vulnerabilities and Incident Response Time with Automation
In this blog, we discuss how Security Automation can free up time and resources for people to do more valuable, creative work.
7 min
Metasploit
Metasploit Shellcode Grows Up: Encrypted and Authenticated C Shells
Introducing encrypted, compiled payloads in Metasploit Framework 5
1 min
InsightConnect
InsightConnect Announces New Plugin for Microsoft Teams
Rapid7 is excited to announce a new plugin between InsightConnect and Microsoft Teams that helps you collaborate, notify, and drive your workflows.