I want to send a monthly report to IT team to review assets that have not been scanned in the last 90 days. I've created a Dynamic Asset Group to list these assets (from the sites I want), showing the Asset name, IP address, Site name, OS, Last scan date. I am trying to schedule a monthly report, to report the assets from this Dynamic Asset Group, but I am struggling with the SQL query. May I get your assistance please? Thanks.
Posted by Joseph Mikhail about a year ago
Can anyone help me how to validate RHOSTS in MetaSploit Pro in Windows? [-] Task Exception: Msf::OptionValidateError The following options failed to validate: RHOSTS. ["C:/metasploit/apps/pro/vendor/bundle/ruby/2.3.0/gems/metasploit-framework-4.16.10/lib/msf/base/simple/auxiliary.rb:62:in `run_simple'", "C:/metasploit/apps/pro/vendor/bundle/ruby/2.3.0/gems/metasploit-framework-4.16.10/lib/msf/base/simple/auxiliary.rb:92:in `run_simple'", "C:/metasploit/apps/pro/engine/app/concerns/metasploit/pro/engine/rpc/tasks.rb:467:in `block in task_proc'", "C:/metasploit/apps/pro/engine/lib/pro/tasks.rb:231:in `block in start'", "C:/metasploit/apps/pro/vendor/bundle/ruby/2.3.0/gems/metasploit-framework-4.16.10/lib/rex/thread_factory.rb:22:in `block in spawn'", "C:/metasploit/apps/pro/vendor/bundle/ruby/2.3.0/gems/metasploit-framework-4.16.10/lib/msf/core/thread_manager.rb:100:in `block in spawn'"]
Posted by Rohit Sharma about a year ago
I'd like to have a ruby script (or feature added) to enable me to delete a large number of assets from a site (not from everywhere). The gui console requires a lot of selecting and un-selecting to remove just the desired assets.( A filter here would be nice) I've searched for a script but don't see anything that will work well or is easily modified although I think this might come close. https://blog.rapid7.com/2014/10/16/site-consolidation/ if one is any good with ruby. :)
Posted by Lawrence about a year ago
Doing a site scan under Web Applications shows 3 lines but when i go Web App Audit cant never run it, keep saying no url selected and under virtual host there is nothing, even when i selected the 3 urls on Web Applications
Posted by sigfredo gomez about a year ago
I have a scan engine that I have moved all of the sites off of that I cannot delete. The console is telling me that there is a schedule on a least one site for this engine but I cannot find it. Also the engine trying to be deleted is still a member of two sites even though I have changed the default engine for the site to another engine. How do I get rid of the old scan engine or find the schedules?
Posted by John Griffin about a year ago
Hi there, I've set up to reports to automatically be emailed to an email address. Our email provider is Google (Gsuite) but when specifying our email address, it is not received at all.(I have also checked that my email is actively receiving all other emails) I have tried a different provider such as Microsoft and that seems to receive it fine. I believe the problem is with gmail itself, it doesn't seem to receive its own relayed email. Has anyone had this problem before? I'd appreciate if someone could help me out. Thank you
Posted by Biz about a year ago
Hi So according to PCI you have 30 days to fix your critical vulnerability's , how are most people reporting to not show vulns that are critical and were detected less than the 30 days ...? This would give our tech teams the 30 day cycle they need so technically within that 30days they are compliant, we scan weekly and report on asset groups every two weeks currently and they guys are struggling to keep up I was thinking in the asset groups add a filter that says vulnerability's assed earlier than 30 days...? anyone have and input thanks in advance
Posted by dean mulley about a year ago
I would like to install metasploit on Tiny Core Linux, while i have searched for options to build from code, I keep finding may way to debian or fedora installers. I could use a shell script to try to make the debian binaries work, but, I would prefer the install to be built for the system I am running. Can I please get some advice.
Posted by Peter Smith about a year ago
Help, always failed android n windows msf exploit(handler) > exploit [*] Exploit running as background job 5. [*] Started reverse TCP handler on 22.214.171.124:1717 msf exploit(handler) > [*] Sending stage (69088 bytes) to 126.96.36.199 [*] Meterpreter session 1 opened (188.8.131.52:1717 -> 184.108.40.206:34150) at 2017-10-29 01:58:06 -0700 [*] Sending stage (69088 bytes) to 220.127.116.11 [*] Meterpreter session 2 opened (18.104.22.168:1717 -> 22.214.171.124:56813) at 2017-10-29 01:58:06 -0700 [*] Sending stage (69088 bytes) to 126.96.36.199 [*] Meterpreter session 3 opened (188.8.131.52:1717 -> 184.108.40.206:39639) at 2017-10-29 01:58:07 -0700 [*] Sending stage (69088 bytes) to 220.127.116.11 [*] Meterpreter session 4 opened (18.104.22.168:1717 -> 22.214.171.124:35984) at 2017-10-29 01:58:10 -0700 [*] Sending stage (69088 bytes) to 126.96.36.199 [*] Meterpreter session 5 opened (188.8.131.52:1717 -> 184.108.40.206:37599) at 2017-10-29 01:58:11 -0700 [*] Sending stage (69088 bytes) to 220.127.116.11 [*] Meterpreter session 6 opened (18.104.22.168:1717 -> 22.214.171.124:35975) at 2017-10-29 01:58:12 -0700 [*] Sending stage (69088 bytes) to 126.96.36.199 [*] Meterpreter session 7 opened (188.8.131.52:1717 -> 184.108.40.206:34156) at 2017-10-29 01:58:12 -0700 [*] Sending stage (69088 bytes) to 220.127.116.11 [*] Meterpreter session 8 opened (18.104.22.168:1717 -> 22.214.171.124:36555) at 2017-10-29 01:58:13 -0700 [*] Sending stage (69088 bytes) to 126.96.36.199 [*] Meterpreter session 9 opened (188.8.131.52:1717 -> 184.108.40.206:39089) at 2017-10-29 01:58:14 -0700 [*] Sending stage (69088 bytes) to 220.127.116.11 [*] Meterpreter session 10 opened (18.104.22.168:1717 -> 22.214.171.124:37261) at 2017-10-29 01:58:15 -0700 [*] Sending stage (69088 bytes) to 126.96.36.199 [*] Meterpreter session 11 opened (188.8.131.52:1717 -> 184.108.40.206:53959) at 2017-10-29 01:58:26 -0700 [*] Sending stage (69088 bytes) to 220.127.116.11 [*] Meterpreter session 12 opened (18.104.22.168:1717 -> 22.214.171.124:59260) at 2017-10-29 01:58:29 -0700
Posted by deny about a year ago
2. Enter Product Key You've Received by Email Paste in the product key that was sent to the email address you registered with and click the ACTIVATE LICENSE button ACTIVATE LICENSE I have not received a message in gmail
Posted by Mberak.ALG about a year ago
Please tell me what the public IP Address range is of the Rapid7 Hosted vulnerability scanners please. This used to be easy to find but since moving to the new help pages were split, the location of that specific article is no longer around.
Posted by DH about a year ago
I just setup the DHCP log watcher in InsightVM, it hasn't populated any assets in the last two hours, still reads zero assets, how long does that take to populate and is there any way I can get an email notification if it detects that a new asset has been detected on the network.
Posted by Brian Jackson about a year ago