With the recent announcement from Intel about their new tool to check for the ME, SPS, and TXE vulnerabilities is Nexpose going to be able to scan for them as well? I searched the database and didn't see any of the CVEs in Intel's release listed. Link to Intel's announcement: https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00086&languageid=en-fr Thanks.
Posted by Jake Dawley about a year ago
whenever i delete an aws based scan engine after disconnecting all dependent sites attached to it,I get the below errors. Any clean way to delete a Scan Engine. 017-11-18T13:23:51 [ERROR] [Thread: do-message-exchange-6] [EngineID: silo:29] Uncaught exception thrown while exchanging messages: null java.lang.NullPointerException: null 2017-11-18T13:24:15 [ERROR] [Thread: do-message-exchange-9] [EngineID: silo:29] Uncaught exception thrown while exchanging messages: null java.lang.NullPointerException: null
Posted by Anvesh about a year ago
Hello Can you please explain details between the dashboard that we see post scan vs the masked Dashboard features in the InsightVM platform ? What are the advantage & value that will be provided to the client ? What data is sent to the cloud & does Rapid7 has region specific cloud like one for Asia, UK, Europe, US etc ?
Posted by saurabh about a year ago
I need more details than what a discovery scan gives for our asset management. I also don't want a full vulnerability scan that could potentially affect production. Has anyone encountered this need? Any and all feedback is welcome.
Posted by Mario Aguilar about a year ago
Hi, We are trying to parse some data from the logs and have set up some queries to export the data into the table format. But when we use the menu to export to csv it only gives us the first 100 entries. We want all of the data from the query. How do we export it?
Posted by Angela Streeter about a year ago
Every time we use the filter button in the top right corner of the Nexpose console, we receive a message "Loading user list" that takes about 1 - 2 minutes to go away. Keep in mind, this is without actually searching for anything yet, this is just waiting to display the search page. This started happening about 2 weeks ago. Can someone provide some troubleshooting advice? Thanks
Posted by Hussam about a year ago
hi im wondering where to start learn metaspolit framework completely all the resources not sufficient i need any full filled book or resources where i can learn complete internal architecture working stuffs of metaspolit i like to contribute to this society. suggest me to what are the steps could carried out!
Posted by Akshay about a year ago
I've tried HTML and BBCode and little WikiText but can't seem to figure out which markup language works. It's actually weird that there isn't a little toolbar or something on the text entry field and helps with some common markups like italics, bold, and code blocks. Not a fan of whatever this is supposed to be.
Posted by Jasey DePriest about a year ago
I am trying to build a SQL Query to pull only systems that were live during the most recent scan in a particular site. I have the various attributes mapped out but just can't get the JOINs right. What I have so far is this: <code> SELECT da.asset_id, da.ip_address, da.host_name AS hostname, da.mac_address, da.sites AS site_list, da.last_assessed_for_vulnerabilities AS last_scan_per_asset, das.scan_finished AS last_scan_per_scan FROM dim_asset da JOIN dim_asset_scan das USING (asset_id) JOIN dim_site ds ON ds.last_scan_id = das.scan_id ORDER BY da.host_name, da.ip_address </code> It shows me every asset with its last scan date, not just assets that were live on the last scan. These are the attributes I've been trying to create relationships with. dim_site.last_scan_id dim_asset.last_assessed_for_vulnerabilities dim_asset_scan.finished dim_scan.finished I've tried to JOIN where dim_site.last_scan_id matches dim_scan.scan_id where dim_scan.scan_id matches dim_asset_scan.scan_id I've also tried matching in timestamps. Where I want an asset included only if dim_asset.last_assessed_for_vulnerabilities matches dim_scan.finished But I cannot get the syntax correct. The SQL always fails validation when I try to add in the additional logic. Thanks! Jasey
Posted by Jasey DePriest about a year ago
Hello Rapid 7 Team, I've Been trying to create a Remediation project and display results. However, I don’t get why nothing is coming up. Not sure if something from the internal side or maybe something isn’t configured correctly? Should I contact my CSM? Been using these steps below as well as the demo for InsightVM. It’s very Straightforward, but I’ll keep trying. Creating a Remediation Project https://insightvm.help.rapid7.com/v1.0/docs/remediation-workflow 1. Create a remediation project from within the Dashboard or from the Projects tab. 2. If you are within the Dashboard, expand the card showing assets by risk and vulnerabilities to view a list of assets. If desired, you can apply an existing filter or create a new query. 3. Select the assets you want to include and add them to create a Static Remediation Project. For Dynamic Remediation Projects, use the asset and vulnerability filters to define the scope of the solutions that will populate the project. 4. Name the project and assign it to one or more Security Console users. DEMO https://information.rapid7.com/insightvm-product-demo-august-thanks.html?aliId=19803371 Any help would be great. Thank you.
Posted by Kenneth Boadu about a year ago
My company has changed their methodology for scanning configuration policy. I've got a number of systems that report on platforms that don't apply ex. Routers reporting Windows compliance results. Sometimes the results are 0% and sometimes they are higher. I need to have all of this cleared out. It messes up my reporting and there is not way to get these systems properly identified to eliminate the incorrect policy checks. I've thought of deleting the assets, but I'm not sure that's the best solution.
Posted by John Booth about a year ago
Hello, I get "login failed" on both port 139 and 445. The credentials are obviously valid since I can connect from the same Win10 machine. The server has been hardened and it only supports SMB v2.I also tried setting various advanced SMB:: parameters to no avail. I ran Wireshark and Metasploit offers LANMAN and NT LANMAN version 1.0 and 0.12 which are not accepted by the remote server so in the next packet it closes the connection. I have the same issues also for the smb_ms17_010 scanner. Is SMB2 currently not supported by Metasploit modules? Thank you, Luke
Posted by Luke about a year ago