的安全風險智慧解決方案包括集成的安全性漏洞管理和滲透測試產品 Nexpose ® 和
Rapid7’s security risk
intelligence solutions include the integrated
vulnerability management and penetration testing
products Nexpose® and Metasploit®, which empower
organizations to proactively obtain accurate,
actionable and contextual intelligence into their
threat and risk posture.
enables a holistic approach to vulnerability
management so that security and network operations
teams can make better decisions, faster. Nexpose
ensures that you can:
Scan 100% of your infrastructure : scan databases, web applications and
all network devices to ensure you know about all of your vulnerabilities
Accurately understand your real risk exposure : with continuous discovery
of physical and virtual assets along with integrated information on Malware
and Exploit exposure, Nexpose provides accurate insight into where your
most significant risks exist
Prioritize vulnerabilities quickly and accurately : scans can uncover
thousands of vulnerabilities; with Real Risk, Nexpose effectively prioritizes
your remediation efforts so you don't waste time
Verify that vulnerabilities have been remediated : with integrated data
from Metasploit, your security teams can verify that remediation efforts have
been successful, reducing duplicate efforts and more effective risk reduction
Based on detailed risk reporting across all physical and virtual assets Nexpose provides a contextualized, detailed, sequenced remediation roadmap with time estimates for each task, leading to more effective and efficient reduction of risk.
A collaboration between the
open source community and Rapid7, Metasploit®
software helps security and IT professionals
identify security issues, verify vulnerability
mitigations, and manage expert-driven security
assessments. This provides true security risk
intelligence, helping to prevent data breaches.
Capabilities include smart exploitation, password auditing, web application scanning, and social engineering. Teams can collaborate in Metasploit and present their findings in consolidated reports.
Metasploit editions range from a free edition to professional enterprise editions, all based on the Metasploit Framework, an open source software development kit with the world's largest, public collection of quality-assured exploits.