Free Newsletter
Register for our Free Newsletters
Newsletter
Zones
Access Control
LeftNav
Alarms
LeftNav
Biometrics
LeftNav
Detection
LeftNav
Deutsche Zone (German Zone)
LeftNav
Education, Training and Professional Services
LeftNav
Government Programmes
LeftNav
Guarding, Equipment and Enforcement
LeftNav
Industrial Computing Security
LeftNav
IT Security
LeftNav
Physical Security
LeftNav
Surveillance
LeftNav
View All
Other Carouselweb publications
Carousel Web
Defense File
New Materials
Pro Health Zone
Pro Manufacturing Zone
Pro Security Zone
Web Lec
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
 
News

Security testing and risk management portfolio

Rapid7 : 19 July, 2013  (New Product)
Rapid7 has enhanced its product set for IT risk assessment including the management of mobile devices
Security testing and risk management portfolio

Rapid7 has announced innovations for its risk assessment and management portfolio. The new enhancements provide security teams with even more actionable visibility into the risk associated with their users and IT assets. This simplifies remediation, testing and communication of security program performance to the organisation. New automation features also offer increased productivity for testing the effectiveness of security controls and the potential impact of a breach. The portfolio innovations include Metasploit 4.7 and the new version of Mobilisafe – introducing Mobilisafe AppSentinel - both available immediately, and Nexpose 5.7, which will be available later in the month.

“Information security professionals face a huge, unrelenting challenge, and all-too-often they are under-resourced and tasked to wear multiple hats,” said Lee Weiner, senior vice president of products and engineering at Rapid7. “Our goal is to make their lives easier, delivering efficiency around common tasks to maximise their productivity, and giving them the visibility they need into what’s really working and what needs attention.”

Metasploit 4.7

Metasploit Pro 4.7 introduces MetaModules, a unique new way to simplify and operationalise security testing for IT security professionals. Many security testing techniques are either based on cumbersome tools or require custom development, making them expensive to use. To expedite this testing, Metasploit Pro is introducing MetaModules, which automate common, yet sophisticated, security tests to provide under-resourced security departments a more efficient way to get the job done.

MetaModules are based on a unique architecture that will enable Rapid7 to develop more packaged security testing to help defenders improve security. The current release includes six MetaModules for security controls and penetration testing. These package in-demand functionality, such as validating which outbound firewall ports are open, testing for default credentials, or stealthily discovering hosts on the network.
Metasploit 4.7 is available immediately.

Mobilisafe

Mobilisafe’s mobile risk management capabilities now extend actionable visibility into mobile application risk through Mobilisafe AppSentinel™. This advancement builds on the solution’s existing capabilities of identifying which devices are accessing corporate data and networks, and assessing the risk associated with the operating system and device itself. Mobilisafe provides system administrators and IT security staff with visibility into the risk associated with the Bring Your Own Device (BYOD) trend, and enables them to manage that risk and related policies directly through a single console.

Mobile applications represent a new vector of risk for an overworked security staff, with corporate data stored on users’ devices and high levels of permissions requested. Mobilisafe’s new capabilities help mitigate this by delivering insight and analytics for the applications users are running on their devices. Mobilisafe discovers and inventories applications on each device, and flags any iOS and Android apps that are not on the official iOS and Google Play App Stores, as they may be more likely to cause undue risk. IT professionals get an aggregate view of the applications being used, as well as intelligence on the most frequently downloaded and used applications, helping them profile user behaviour and risk. This information can also help companies highlight potential areas where controls may be needed, for example in discouraging use of non-approved applications for company-related activity.

Nexpose 5.7

Nexpose 5.7’s innovative new capabilities help users verify and demonstrate that their remediation strategy is actually reducing risk. The new vulnerability trends report highlights key developments and demonstrates the success of remediation efforts over time. Trends include which assets and vulnerabilities are being discovered, vulnerability age, severity levels, and exploit and malware kit exposures. By leveraging Nexpose’s powerful dynamic filtering, vulnerability trends reports can be created to target specific risks or compare developments across various sets of assets.

In addition, Nexpose 5.7 offers improved workflows for common tasks, enhancing user productivity. With a single action users can now easily create multiple vulnerability exceptions and remove groupings of unwanted assets within the Nexpose instance. For large scale complex environments, this can greatly improve the signal-to-noise ratio, enabling security professionals to identify and take the necessary actions sooner.

Bookmark and Share
 
Home I Editor's Blog I News by Zone I News by Date I News by Category I Special Reports I Directory I Events I Advertise I Submit Your News I About Us I Guides
 
   © 2012 ProSecurityZone.com
Netgains Logo