Hi, I am working with the Community Version. In the Scan Report I see that there was a identification for 112 Vuls, but in the console I can not see any results. The scan Template is "Full audit without Web Spider". What can I do to see the vulnerabilities? Or is that a problem with the community license? S.
Posted by S. 2 months ago
The "New Discovery Connection" form is missing the Azure Connection Type from the drop down. It has an error upon page load "Failed to get integration connection types: Not Found" https://topf5.com/2RuSJbB I've been following this documentation: https://nexpose.help.rapid7.com/docs/creating-and-managing-dynamic-discovery-connections#section-adding-a-microsoft-azure-connection I've already run the "update now" from the "screen -r nexpose" session and that didn't fix it.
Posted by Adam Cloud 2 months ago
I have just installed RAPID7 VM for console in azure using azure market place. I am trying to login to teh nexpose console via chrome browser like https://<ipaddress>:3780. I am not able to connect to the web console. It says site cannot be reached. Port 3780 is open for anywhere.
Posted by rajith 2 months ago
Hello, is it possible for InsightVM to highlight vulnerability trends for a "individual vulnerability"? What do I mean? After a remediation has been applied, there should be a statistical review to indicate a increase or decrease based on the specific vulnerability.
Posted by Delano Sinclair 2 months ago
When I scan the assets (already shown at the credentials testing ), the result is 0 assets and 0 vulnerabilities, of course, with that messageat Scan Status: Failed (java.io.IOException: The Nmap exit value is not zero: -1073741819at com.rapid7.nexpose.scan.nmap.Nmap.start(Unknown Source)at com.rapid7.nexpose.scan.nmap.Nmap.run(Unknown Source)at com.rapid7.nexpose.scan.Scan.start(Unknown Source)at com.rapid7.nexpose.scan.Scan.run(Unknown Source)at java.lang.Thread.run(Thread.java:748) ) What I made wrong? Thanks.
Posted by Ionel Mirzac 2 months ago
Hello guys, My question is about the duration of the webscan. How long does it take "normally" to take a scan of a web? I have to run the scan aproximately to a 58 websites and i splitted it in three scan. 1 scan: 20 webs 2 scan: 20 webs 3 scan: 18 webs I run the first one and i had to stop it after 4-5 hours because it was telling me that the duration was 2-3 days aproximately and i think that's crazy. Same when i tried with the second one. Maybe i'm doing something wrong when i'm setting up the scans but anyway i couldn't find anywhere a guide or something to how to deploy scans correctly. (I read the user guide and didn't help...does not explain real cases for example) Can someone help me? Thank you in advance
Posted by Pedro Pablo Mula 2 months ago
What is the best practice for deleting a remediation project that has automated ticketing enabled? Remediation projects have been created with automated tickets in ServiceNow but the ServiceNow Incident is missing information designated for the additional comments field. I would like to delete the tickets and the remediation projects to recreate them. What's the best practice for doing this?
Posted by Penny Maples 2 months ago
Hi, I am running metaspoilt on Fedora Linux 27. I am able to use non root user to run msfconsole and connect to msf database. But when try to do port scan, I have the following errors. msf > use auxiliary/scanner/portscan/syn msf auxiliary(scanner/portscan/syn) > run SIOCSIFFLAGS: Operation not permitted [-] Auxiliary failed: RuntimeError enp5s0: You don't have permission to capture on that device (socket: Operation not permitted) [-] Call stack: [-] /opt/metasploit-framework/embedded/framework/lib/msf/core/exploit/capture.rb:124:in `open_live' [-] /opt/metasploit-framework/embedded/framework/lib/msf/core/exploit/capture.rb:124:in `open_pcap' [-] /opt/metasploit-framework/embedded/framework/modules/auxiliary/scanner/portscan/syn.rb:58:in `run_batch' [-] /opt/metasploit-framework/embedded/framework/lib/msf/core/auxiliary/scanner.rb:215:in `block in run' [-] /opt/metasploit-framework/embedded/framework/lib/msf/core/thread_manager.rb:100:in `block in spawn' [*] Auxiliary module execution completed When I use root to do msfconsole or from non root user to do sudo msfconsole, it is unable to connect to database msf > db_status [*] postgresql selected, no connection I was clueless how to solve the error, really appreciate someone that can help? Thank you
Posted by JT Lai 2 months ago
Wanted to remove some static sites in favor of dynamic sites - Created connections to our vSphere - created the sites using the new vSphere connections to discover the assets - deleted the old static sites - all the data seems to be unaffected except from the Trends Report which only shows about the last month's worth of data - anyone have any idea's?
Posted by David Miller 2 months ago
I have installed Rapid7 in ubuntu in one of the machine. I am trying to login via web browser from different machine like https://<public ip address of the installed machine> :3780/ Port 3780 is open but still I am unable to open the URL. It says This site can’t be reached
Posted by rajith 2 months ago
Hi, We want to make the pre-authorized scanner immutable in AWS and wondering if you can call the API to generate a shared secret so we can deploy the scanners via Terraform. We don't want to use VPC peering as this is viewed as a security risk should the main account get compromised, they'd have access to all of our other accounts. Thanks, James
Posted by James Boothby 2 months ago
I have install Metasplot pro with trial key. And after I launch console it write to me: Warning! The following modules could not be loaded! C:/metasploit/apps/pro/vendor/bundle/rudy/2.3.0/gems/metasplot-framework-4.17.11/modules/auxiliary/dos/smb/smb_loris.rb: Msf::Modules::Error Failed to load module <dos/smb/smb_loris from C:/metasploit/apps/pro/vendor/bundle/rudy/2.3.0/gems/metasplot-framework-4.17.11/modules/auxiliary/dos/smb/smb_loris.rb> due to Invalid module <no MetasplotModule class or module name> But i have file in the following folder with following name! Any solutions?
Posted by Fozzy 2 months ago
This video shows how Jenkins integration works on Rapid7 InsightVM to assess vulnerabilities of Docker Images before they go production which is detailed at https://insightvm.help.rapid7.com/docs/containers-cicd-plugin https://youtu.be/5zjEHBANgbg
Posted by Omer SEN 2 months ago
Hi, I'd like to remove all the assets associated with a tag in Nexpose using Ruby client. But the assets are not being cleared after saving the tag. Any thoughts? tag = Nexpose::Tag.load(connection,tag_id) puts tag.associated_asset_ids // Lists all the asset ids tag.associated_asset_ids.clear puts tag.associated_asset_ids // It is empty tag.save(connection) Also, I'd like to know if it's a good practice to always delete the tags (maybe 2K) and create new ones on daily basis?
Posted by Anvesh Samineni 2 months ago
Dear Team, Greetings! We are new to Insight. The plan is to install Linux_Insight_Agent.zip as shared by our client and here is the zip content. -agent_installer.sh -cafile.pem -client.crt -client.key -config.json I have been going through your website to understand the process. However I had below questions. Q1) The current linux server version does not seem to be matching with what you mention in your website, so can we really proceed with the Linux_Insight_Agent setup as mentioned above? our server shows this version [wcsadmin@sit-wcs-01 bin]$ uname -r 3.10.0-514.2.2.el7.x86_64 which is not matching with yours mentioned in https://insightagent.help.rapid7.com/docs/operating-system Q2) It was told to disable auditd service in Linux? Will it not impact the existing linux applications? I see this is already installed in our machines at /var/log/audit (hope this is one? also please let us know how can we disable that) Q3) Should we install the insight Agent as root user or a separate use has to be created or can we use one of existing users like wcsadmin? Q4) Are we supposed to take any backup files on servers before proceeding with installation? Q5) Please brief the procedure of testing after the installation process. Please explain the entire process clearly so that we don't run into issues. Expecting your valuable reply at the earliest. Thank you very much. Best Regards, MuraliKrishna
Posted by MuraliKrishna 2 months ago