Rapid7 Nexpose Enterprise Edition
Strengths: Vulnerability scanning, along with many other features for full vulnerability management.
Weaknesses: Can be costly for some organizations.
Verdict: A solid vulnerability management tool, if priced a bit on the high side. Still, well worth one’s attention.
SummaryThe Nexpose Enterprise Edition appliance from Rapid7 is another tool that has grown into a vastly different product over the years. This latest version we believe is the best yet. This solution has gone from its early days as pretty much just a vulnerability scanner to a full-scale vulnerability management tool. With this appliance, administrators can manage the entire vulnerability lifecycle - from discovery of assets through reporting and mitigation - all from one place. The Nexpose incorporates the ability to run more than 75,000 vulnerability checks against more than 22,000 vulnerabilities across multiple operating systems, databases, web applications and virtual assets throughout the enterprise.
Getting started is as easy as plugging the device in and turning it on. The appliance can grab a dynamic host configuration protocol (DHCP)-assigned IP address, or a user can easily enter one manually using the LCD screen on the front of the appliance. There is no need to hook up monitors or keyboards just to get an initial configuration. Once the IP address is assigned, the Nexpose web-based management console can be accessed from any web browser on the network. The interface itself is easy to navigate and has a clean and organized look and feel. We also find running scans and using the appliance functions to be easy and straightforward.
This appliance does more than just simple vulnerability scanning. With the Nexpose, the scan is only the first step, and once the initial scan is complete this appliance can do a whole host of analysis. This product can do various correlations and risk analysis based on the results of a scan, including analyzing overall possible exposure to risks, including malware and dangerous exploits. After the analysis is complete, administrators are shown what Rapid7 calls a Remediation Roadmap, which details how to remediate and repair security holes throughout the network. This appliance also comes preloaded with many compliance templates.
Documentation includes a quick-start and a full administrator guide. The quick-start guide is short, but includes a lot of helpful steps on how to get the appliance up and running to gain access to the web-based management console. We find both guides to be well-organized and easy to follow and understand.
Rapid7 includes support as part of the annual license fee. Customers have access to both phone- and email-based technical assistance, along with access to an online knowledge base, user forum and software updates, upgrades and fixes. Customers who require more than the basic plan can purchase additional options, which includes an upgrade to full 24/7 technical help along with faster response times.
At a price of $22,500, this appliance does carry quite the price tag. However, we do find it to be a great value for the money. The Nexpose incorporates a lot of great features and functionality that is both easy to use and highly comprehensive. We have seen this product grow and mature substantially over the years, and we are sure it is not done growing yet.