Security Experts:

Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Network Security

Rapid7’s Metasploit Products Achieve CVE Compliance, Improve Integration

Boston based Vulnerability management and penetration testing solution provider Rapid7, announced this week that its signature products, Metasploit Pro™ and Metasploit Express™, have achieved Common Vulnerabilities and Exposures (CVE) compliance. CVE associates unique identifiers to security vulnerabilities and exposures to provide common names for publicly known problems.

Boston based Vulnerability management and penetration testing solution provider Rapid7, announced this week that its signature products, Metasploit Pro™ and Metasploit Express™, have achieved Common Vulnerabilities and Exposures (CVE) compliance. CVE associates unique identifiers to security vulnerabilities and exposures to provide common names for publicly known problems.

The Metasploit Framework is a widely used solution, and according to Rapid7, users have downloaded Metaspolit over one million times in the past year. The company also claims Metaspolit has the world’s largest, public database for quality assured exploits. The company released its Metasploit Pro product in October.

Rapid7 MetaSploit CVE

With Metasploit’s CVE compatibility, Metasploit reports can now be more easily cross-referenced with other tools, such as the NeXpose vulnerability scanner.

Rapid7 has enhanced the features of its leading software solutions with CVE to provide a reference method of information security vulnerabilities and exposures as defined by the National Cyber-Security Division of the United States Department of Homeland Security through the non-profit MITRE Corporation.

As organizations face increasing threats to complex and business-critical systems, the ability to simulate realistic attacks on their infrastructure in a Using tools such as MetaSploit, organizations can make informed decisions about which vulnerabilities should be addressed and penetration testers can meet federal, state and local standards for tracking and documenting these security risks with canonical and widely applied industry references.

 

Metasploit Pro, priced at $15,000 per user annually, provides unrestricted remote network access and enables teams to collaborate on network penetration testing projects. Metasploit Pro offers additional functionality over Metasploit Express, its lower end solution priced at $3,000 per user annually, with support for security testing of custom Web applications, managing client-side campaigns against end-users and additional evasion features.

Written By

Click to comment

Expert Insights

Related Content

Network Security

NSA publishes guidance to help system administrators identify and mitigate cyber risks associated with transitioning to IPv6.

Cyberwarfare

Websites of German airports, administration bodies and banks were hit by DDoS attacks attributed to Russian hacker group Killnet

Identity & Access

Hackers rarely hack in anymore. They log in using stolen, weak, default, or otherwise compromised credentials. That’s why it’s so critical to break the...

Cybersecurity Funding

Forward Networks, a company that provides network security and reliability solutions, has raised $50 million from several investors.

Application Security

Electric car maker Tesla is using the annual Pwn2Own hacker contest to incentivize security researchers to showcase complex exploit chains that can lead to...

Network Security

Cisco patched a high-severity SQL injection vulnerability in Unified Communications Manager (CM) and Unified Communications Manager Session Management Edition (CM SME).

Cybersecurity Funding

Network security provider Corsa Security last week announced that it has raised $10 million from Roadmap Capital. To date, the company has raised $50...

Network Security

Vulnerabilities identified in TP-Link and NetComm router models could be exploited to achieve remote code execution (RCE).