Vulnerability Management & Pentesting

The best way to know how possible intruders will actually breach your network posture is to simulate a “real-world attack” in a controlled environment. This approach provides a real overview of the risks posed to your company as seen from the hacker perspective. The solutions of Rapid7 can not only locate and address the vulnerabilities that are found but these vulnerabilities can also be exploited in a controlled environment.

Rapid7

Rapid7

Rapid7 offers intelligent security risk assessment solutions to offer you insight into real threats to protect your mission critical assets and information.

  • Periodical vulnerability scans
  • Penetration testing
  • Policy compliance audits

Lower your risk posture

By correlating vulnerabilities, exploits and possible malware, misconfigurations and pentesting results, Rapid7 quantifies your true risk. In addition to this risk assessment process, Rapid7 adds specific recommendations for mitigation, enabling you to lower your risk posture.

Rapid7 offers a Vulnerability Management solution (Nexpose) as well as a Penetration Testing (Metasploit) solution, both of which integrate seamlessly with Sourcefire intrusion detection and prevention products. This offers a perfect platform in response to compliance issues.

Nexpose - Vulnerability Management

Nexpose Express (SMB);

  • Scans up to 128 or 256 (Pro) IPs
  • Scans networks, OS and DBs
  • Deployment option: software

Nexpose Consultant;

  • Scans up to 1,024 IPs
  • Scans networks, OS, DBs web applications and virtual environments
  • Deployment options: software
  • Integrated configuration assessment and policy management
  • Custom scan configurations, reports and remediation plans
  • High priority phone support

Nexpose Enterprise;

  • Unlimited IPs available
  • Scans networks, OS, DBs web applications and virtual environments
  • Deployment options: software, appliance, virtual appliance, managed service
  • Integrated configuration assessment and policy management
  • Custom scan configurations, reports and remediation plans
  • High priority phone support

Metasploit - Penetration Testing

Metasploit Express (SMB);

  • Community features:
  • Baseline Penetration Testing Workflow
  • Smart exploitation
  • Password auditing
  • Baseline penetration testing reports

Metasploit Pro (Mid-Sized and Enterprise);

  • Express features plus:
  • Advanced team workflow automation and reporting and Risk validation
  • Social engineering
  • Web app scanning
  • API for custom integrations

For more information, call our security consultants at +31(0)345 506 105 or send an email to info@isoc24.com

Vendors

Sourcefire, Niksun, Netwrix, Redsocks, Rapid 7, Unomaly, Logpoint, Isight Partners