Key Benefits

Nexpose Enterprise Edition Fast, unified security and compliance

Vulnerability management to combat today’s threats Minimize network impact, optimize security
and compliance assessments, and unify
Security teams struggle to identify, discovery, prioritize, and remediate IT security risks that matter to
reporting through a single assessment for
their business. They spend an overwhelming amount of time running a risk management program, and
vulnerabilities, configurations, controls, and
can’t align IT security risk to business priorities and the organizations risk tolerance.
policy checks.

Rapid7 Nexpose is the only vulnerability management solution that prioritizes vulnerabilities, controls, Discover vulnerabilities like an attacker
and configurations across the modern network to make better risk management decisions, faster. Intelligence-gathering expert scanning system
Nexpose leverages RealContext™, RealRisk™, and critical threat awareness from Metasploit to emulates techniques used by human hackers
prioritize and validate your risk, so you can focus on fixing the issues that have impact. to build upon knowledge from prior exploits
and identify additional vulnerabilities, resulting
Simplified security and compliance programs in a more complete risk assessment.
Vulnerability validation with Metasploit®
Nexpose provides the most advanced security assessment across physical, virtual, and cloud
Pro
environments. Industry-first integration with VMware NSX provides a revolutionary way to scan and
Integrates with Metasploit Pro, to validate
mitigate risk in virtual networks. Enterprise-class architecture scales to millions of assets through a
vulnerability exploitability, test controls
centralized console and scan engines.
effectiveness, and drive effective remediation
for proven risk.
Threat-driven prioritization with Rapid7
RealRiskTM
Get accurate insight into the most critical
vulnerabilities with Rapid7 RealRisk, which
leverages threat intelligence such as malware
and exploit exposure, CVSS v2, and temporal
risk metrics.
Effectively manage risk with
RealContext™
Only Rapid7 RealContext allows you to focus
on the highest risks that matter to your
business, through automated asset
Validate vulnerabilities with Metasploit® Pro classification, risk prioritization, and
remediation assignment.
Nexpose is the only closed-loop solution to seamlessly integrate with Metasploit Pro, built on the world’s
most used penetration testing software, to validate vulnerability exploitability, test controls effectiveness, Award-winning remediation plans
and drive effective remediation for proven risk. Drive effective risk reduction by
communicating the most impactful
remediation guidance available. Concise,
actionable, and clear step-by-step instructions
enable IT teams to quickly remediate risk.
Improve controls effectiveness
Leverage your Nexpose deployment with
ControlsInsight to provide actionable visibility
into endpoint defenses against today’s threats
and prioritized action plan to improve endpoint
security.

Simplified audit and report compliance

Nexpose enables organizations to stay compliant with PCI DSS, NERC CIP, FISMA, HIPAA/HITECH,
SANS Top 20 CSC, DISA STIGS, USGCB, and CIS standards for risk, vulnerability, and configuration
management requirements.

Rapid7 Corporate Headquarters 100 Summer Street, 13th Floor, Boston, MA 02110 617.247.1717 www.rapid7.com
Prioritize and manage your risk effectively Gain Greater Insight with
Prioritize and assign remediation with RealContext™ and RealRisk™ RealRiskTM
Only Rapid7 RealContext allows you to focus on the highest risks that matter to your business, through
automated asset classification, risk prioritization, and remediation assignment. Use RealRisk, a threat- “Understanding risk across virtual and physical
driven approach, to prioritize risks with known exploit and temporal metrics because they increase the environments can quickly become a daunting
likelihood of a breach. task if a complete view of assets and related
exposures most vulnerable to an attack are not
readily available. Companies have long needed
a way to make smarter choices when managing
their infrastructure and vendors like Rapid7 are
helping to provide insight into actual and
validated risks.”

About Rapid7

Top remediation reports Rapid7’s IT security data and analytics solutions

Drive effective risk reduction by communicating the most impactful remediation guidance available. collect, contextualize, and analyze the security
data you need to fight an increasingly deceptive
Concise, actionable, and clear step-by-step instructions enable IT teams to quickly remediate risk.
and pervasive adversary. Unlike traditional
vulnerability assessment or incident
management, Rapid7 solutions uniquely provide
insight into the security state of your assets and
users across virtual, mobile, private and public
cloud networks. They enable you to fully manage
your risk, simplify compliance, and identify,
investigate and stop threats faster. Our threat
intelligence, informed by members of the
Metasploit open source community and the
industry-leading Rapid7 Labs, provides relevant
context, real-time updates and prioritized risk.
Our solutions are used by more than 25% of the
Fortune 1000 and nearly 3,000 enterprise,
government, and small business organizations
across 78 countries. To learn more about Rapid7
or get involved in our threat research, visit
www.rapid7.com.

Powerful risk and data analytics

Nexpose provides built-in and fully customizable report templates to create reports for everyone.
Dynamic asset groups and vulnerability filtering allow security professionals to quickly gain insights into
risks across their environment by answering complex security questions.

Rapid7 Corporate Headquarters 100 Summer Street, 13th Floor, Boston, MA 02110 617.247.1717 www.rapid7.com