Rapid7 NeXpose Enterprise Edition
Strengths: Solid scanning with Metasploit plug-in.
Weaknesses: Documentation could be better organized.
Verdict: We like the inclusion of Metasploit and the other capabilities of this powerful product.
SummaryNeXpose Enterprise Edition returns to our Group Test reviews and is now packed with features, including the ability to scan a multitude of places in which threats can hide, including web applications, databases, operating systems and other software products. It then assesses their risk to the environment and compiles a remediation plan. This product provides comprehensive scanning performing nearly 40,000 vulnerability checks against 1,500 devices.
This tool can be installed on either Windows or Linux operating systems. We installed the Windows version and the install is quite straightforward. The installation application runs through a short installation wizard and then installs all the necessary components and services. At the end of the setup, the services-command terminal is launched, which starts all the necessary services. From there, the web GUI can be accessed through a web browser. We found this interface to be easy to navigate and use. The layout is well-organized and has an intuitive feel.
Initial configuration of the site and scan options takes just a few minutes and there are a few built-in scan options available by default. These scan options include a full audit, exhaustive audit, or penetration test. While NeXpose does not have a native penetration tool built-in, through a plug-in it can work with the open source tool Metasploit.
Documentation is kind of all over the place. The one single piece of documentation is a PDF quick-install guide, which details how to download and install the application. However, it is all text with no screen shots or examples. The installation procedure is well documented, but some visuals would help make the step more clear. From there, additional documentation can be found in the help sections. We found this documentation to be easy to follow and it includes screen shots, but the depth is quite limited.
Rapid7 offers various support options as part of an annual support contract. Options for technical support include web, phone and email in both eight hours a day/five days a week and 24/7. There is also a free support area on the website that includes a knowledge base and community forum.
At a price of $20,000, we find this product to be a good value for the money. The comprehensive scanning capability combined with an easy to use interface and Metasploit plug-in make this a solid vulnerability management product.