Freely subscribe to our NEWSLETTER

NeXpose 2011 Summer Release is part of Rapid7’s integrated security risk intelligence solution portfolio that also includes Metasploit®, the leading penetration testing platform with the world’s largest database of public, tested exploits. Rapid7’s integrated security risk intelligence solutions empower organisations to obtain accurate, actionable and contextual insight into their threat and risk posture. Unlike traditional point solution vendors, Rapid7 is uniquely positioned to deliver a closed-loop solution to determine the existence and likelihood of risk through details on vulnerabilities, exploits and misconfigurations. This solution assesses the potential impact of these threats through standards-based and customisable risk scoring, as well as delivering clear and concise recommendations on mitigation and remediation strategies.

Highlights of the NeXpose 2011 Summer Release include:

Vastly Expanded Deployment Flexibility with the Addition of Private Cloud Support and Added Platforms

With the introduction of multi-tenancy, organisations can now deploy NeXpose in a variety of ways to best suit their environment, including options for software, appliances, virtual appliances, managed services, laptops and private clouds. Organisations can also easily mix and match any of the deployment options, for example, to support security assessments in the field with mobile laptops while leveraging virtual appliances for centralised security assessments of data centers. MSSPs can easily leverage NeXpose’s multi-tenant architecture to maintain silos of information among its various clients while achieving economies of scale of shared infrastructure.

NeXpose 2011 Summer Release can now be deployed on a multitude of operating systems. In addition to previously supported platforms including Windows® Server 2003, VMware ESXi 4, Red Hat Enterprise Linux 5 and Ubuntu 8.04 LTS, NeXpose now supports Ubuntu 10.04 LTS, Windows 2008 and Windows 7 to provide even greater deployment flexibility.

– Enhanced Scalability, Performance and Availability

Based on NeXpose’s Next Generation Database Architecture – first introduced in April 2011 in NeXpose 4.11 – the 2011 Summer Release adds dynamic scan pooling. Without requiring any manual intervention, the pool of available engines that can be leveraged for vulnerability scanning, now dynamically adjusts scan jobs to provide greater efficiency, scanning performance and reliability. Additionally, by pooling connections, page load times, reporting times and memory requirements are significantly reduced.

Ease-of-Integration and Expanded API Management

Rapid7 has also enhanced its enterprise support with enriched integration and API management capabilities. Already supporting more than 25 pre-built connectors to SIEM, GRC, IDS/IPS, network topology, penetration testing and other security solution categories, NeXpose’s XML-based open API has been further extended to support large enterprises and MSSPs. This enables easier configuration of NeXpose to integrate with third-party systems and simplify common administrative tasks, such as for automated ticketing and workflow management.

Improved Administrative Capabilities

NeXpose 2011 Summer Release also includes improved administrative capabilities for more flexible permissions, enhanced reporting and improved workflow support for vulnerability exceptions. With additional pre-defined roles and more than 15 new permissions, end-users can easily customise permission levels and select who receives access to systems and controls. In addition, Rapid7’s site risk trend report offers increased trending analysis based on risk score to provide more granular report control options.