Rapid7 NeXpose
NeXpose Vulnerability Assessment
Rapid7 NeXpose is vulnerability assessment software that accurately scans Web applications, databases, networks, operating systems and other software to find threats, assess their risk and devise a remediation plan to quickly mitigate these risks. It enables IT and security groups to implement a measurable and proactive vulnerability management process that eliminates security weaknesses in their network before the network is penetrated and confidential information is compromised.
In a review published in the August 2008 issue, SC Magazine's technology editor and product tester, Peter Stephenson, identifies NeXpose's strengths as "vulnerability assessment and risk analysis in one box" and reports that there are no weaknesses to be found. He describes NeXpose as a "tool that always goes beyond expectations," and points out that NeXpose "can not only scan for network-based vulnerabilities, but also looks inside web apps and databases for potential threats."
The review further states that, "Along with vulnerability assessment, (NeXpose) also does risk analysis by finding how vulnerabilities in one asset can lead to problems in others." In his ultimate conclusion, Stephenson affirms, "we find (NeXpose) to be an excellent combination of highly comprehensive features and simple management. We also find this tool to be a good value for the money."
Enlarge this graphic
NeXpose combines the following into one unified product to enable non-stop, flexible protection from network security threats:
- Vulnerability management - scan your environment from both inside and outside the firewall to find exposures that can compromise your network
- Risk assessment - identify risk based upon how the vulnerability in one system affects another
- Policy and compliance reporting - determine if your systems comply with corporate and/or regulatory policies
- Remediation guidance - fix vulnerabilities quickly and easily with the information provided in remediation reports
- Accurate scanning - delivers accurate scanning results in less time with an expert system that follows an assessment process similar to those used by ethical hackers
- Automated ticketing - manages the remediation workflow process with an internal ticketing system to delegate remediation tasks to the analysts and administrators responsible for individual systems
NeXpose audits Web applications, databases, operating systems, servers, and network devices from a single product. NeXpose, available as a software product, hardware appliance or a managed service, runs on Linux and Window platforms and self manages internal database, program, and vulnerability library updates.
Where Next?
Read more Rapid7 related content:
Rapid7
“IP FIX IT” is the brand for Cohort Technology’s family of technical services. The comprehensive range of professional services give us the ability to deliver help and support at every stage of the requirement, from the initial consultation, through to the installation and support of the chosen solution. The service includes:- Technical Support Contract
- Network Health Checks
- Consultancy
- Project Management
- Installation and Configuration
- For more information visit the IP FIX IT page.
