All Posts

1 min

Patch Tuesday, March 2015

This month Microsoft has released 14 new bulletins, 5 of which are rated as “Critical” and another 9 as “Important”. As a déjà vu from last month, a critical remote code execution vulnerability (MS15-018) affecting all supported Internet Explorer versions (6-11) is being patched, which addresses 12 CVEs. The patch addresses issues with Internet Explorer's memory management that could allow the remote corruption of memory and result in the execution of malicious code as the current user. As alway
4 min IT Ops

Terminology Nerd War: APM, Log Analysis & More

Just the other day I was hanging out with my developer buddy. We entered what we thought would be an interesting topic on how you cannot call an environment “DevOps” without analytics. But we soon were in a nerd war on what a term meant. Yes, this is what I talk about in my free time. !(https://blog.rapid In the thick of it, we both used the term “Server Monitoring.” But neither of us were talking about the same thing. I was referring to log man
2 min InsightIDR

Tracking Web Activity by MAC Address

In this blog post we explore the benefit of tracking web activity by MAC address. Learn more.
5 min Apple

Top 10 list of iOS Security Configuration GIFs you can send your friends and relatives

Easily share these animated iOS Security tips with friends and relatives! While iOS is generally considered to be quite secure, a few configuration items can improve its security. Some changes have very little functionality impact, while others are more visible but probably only needed in specific environments. This guide contains some of the most important, obvious ones, and contains a GIF for each configuration step to be taken. If you already know everything about iOS security, use this a
3 min IT Ops

Why Interoperability is a Key Requirement for Your DevOps Toolkit

Today’s DevOps culture drives the requirement for development and ops teams to share tooling and to combine lots of different services/processes to give them visibility into their systems throughout the system life cycle. For example the modern DevOps toolkit will consistently include the following categories of tools (and more…): * APM (e.g. New Relic, AppDynamics, AppNeta, AlertSite) * Team Communication (e.g. Slack

3 min IT Ops

Getting Started with the Logentries & Logstash Integration

Logstash is an open source tool for managing events and logs. It is used to collect, search and store logs for later use. If you are using Logstash to collect logs from across your infrastructure already, and you are looking for more sophisticated log analytics tool, you are in the right place. I will show you how to configure Logstash to forward all your logs to your Logentries account using the plugin and token connection. Prerequisites * Logstash downloaded and co
3 min IT Ops

Logging Your Entire Software Delivery Pipeline

When we think of traditional development and production operations, we often put everything into a linear software delivery pipeline that starts with a development backlog, and ends with production monitoring. We slot tools at each stage, and for the most part, keep everything segmented. Log analysis is a common tool in that chain but where does it fit? At the end? I think not. Log analysis can be used throughout your entire software delivery pipeline. The linear pipeline
4 min IT Ops

Acceptance Tests In Practice - Behavior Driven Development

What is Acceptance Testing? "Acceptance testing is a test conducted to determine if the requirements of a specification or contract are met.” (Wikipedia definition ) In simple words, Acceptance tests check if the software that we have built matches the requirements that were provided. The Magical Black Box Acceptance testing is usually performed using “black box ” testing method. The tester of the system k
1 min Metasploit

Nexpose and Metasploit Training and Certification Courses Filling Up Fast!

Looking to amp-up or fine-tune your security prowess? UNITED conference attendees get the chance to do just that by registering for additional small group training and certification courses (Nexpose Basic, Metasploit Basic, and Nexpose Advanced). Since we're keeping the sessions intimate, spots are filling up quickly! Save your spot now for two days of formalized, curriculum-based training with Rapid7 experts . You'll get to: * Share best p
2 min Microsoft

A Closer Look at February 2015's Patch Tuesday

This month's Patch Tuesday covers nine security bulletins from Microsoft, including what seems like a not-very-unusual mix of remote code execution (RCE) vulnerabilities and security feature bypasses. However, two of these bulletins – MS15-011 and MS15-014 – require a closer look, both because of the severity of the vulnerabilities that they address and the changes Mi
3 min

Why I joined Rapid7

I'll start by admitting that this blog post is a little overdue. I started at Rapid7 on December 1st of last year and I have literally hit the ground running. That's no excuse for being late but a good indicator that I have landed in the right place. I'm not the kind of person that changes jobs on a whim (no pun intended) so I'm happy to go in a bit more detail on why I joined Rapid7 and why I'm so excited about this. I've been in this business for almost 18 years now and enjoyed doing security
3 min IT Ops

Installing Logentries Using Ansible

*This post was written by Logentries customer Richard van den Brand, Software Engineer at Waarneembemiddeling.nl, where he is responsible for developing and maintaining their Symfony2 applications and infrastructure. * In this short tutorial I’ll describe the steps required to install the Logentries agent using Ansible. This tutorial assumes you have some basic knowledge about Ansible and how to use playbooks and roles. If you’re unfamiliar with these topics please co
2 min Patch Tuesday

Patch Tuesday, February 2015

For the second straight month Microsoft is holding fast to their blockade of information.  Customers with “Premier” support are getting a very sparse advance notification 24 hours before the advisories drop, and “myBulletins” continues to be useless because it is not updated until well after the patch Tuesday release.  Microsoft called this an evolution, and I can certainly see why – they are applying a squeeze to security teams that will eliminate the weak members of the herd. This month we ar
2 min Android

R7-2015-02: Google Play Store X-Frame-Options (XFO) Gaps Enable Android Remote Code Execution (RCE)

Vulnerability Summary Due to a lack of complete coverage for X-Frame-Options (XFO) support on Google's Play Store web application domain, a malicious user can leverage either a Cross-Site Scripting (XSS) vulnerability in a particular area of the Google Play Store web application, or a Universal XSS (UXSS) targeting affected browsers, to remotely install and launch the main intent of an arbitrary Play S
4 min Metasploit

Being Product Manager of Metasploit

Hello World My name is Eray Yilmaz, and I am the new Product Manager of Metasploit. It has been three months since I have joined Rapid7, and I wanted to share my experiences with you so far. Before we get to that, here is tiny bit about myself: I am a 28, married, and fairly new father. I went to UTSA where I majored in Information Assurance and Information Systems, and received my B.B.A. Like anyone else in our industry, I have done my fair share of IT work, from helpdesk to managing networks

Popular Topics

Tags