NeXpose Enterprise Edition

Rapid7's flagship product, NeXpose Enterprise, is a vulnerability assessment, policy compliance and remediation management solution designed for organizations with large networks which require the highest levels of scalability, performance, customizability and deployment flexibility.

NeXpose Enterprise scans Web applications, databases, networks, operating systems and other software products to locate threats, assess their risk to the environment, and devise a remediation plan.

Designed to minimize the time spent eliminating an organization's security vulnerabilities, NeXpose Enterprise provides comprehensive vulnerability management and risk reporting, allowing the broadest asset protection possible. Performing nearly 40,000 vulnerability checks against 1,500 devices, NeXpose Enterprise provides unsurpassed coverage of your entire network, helping organizations significantly reduce security risks and confidently protect valuable digital assets.

Proven in over 1,000 enterprise deployments, NeXpose Enterprise Edition delivers the following core capabilities:

• Unrivaled breadth of unified vulnerability scanning - scans for over 12,000 vulnerabilities with nearly 40,000 vulnerability checks in networks, operating systems, Web applications and databases across a wide range of platforms. Discover networks of any size and set up your own scan templates to quickly identify key security threats.
• Regular vulnerability updates - provides regular vulnerability auto updates without requiring any user interaction. Delivers immediate Microsoft Patch Tuesday vulnerability updates within 24 hours to stay current with the changing threat landscape.
• Customizable risk assessment - identify risk based upon how the vulnerability in one system affects another and customize the risk scoring system to fit your unique organizational requirements.
• Industry-first exploit exposure – leverages real exploit intelligence to perform risk classification.  As a result, large organizations with complex networks can make informed decisions and focus resources on remediating the most critical, exploitable vulnerabilities.
• Comprehensive compliance and policy checks - determine if your systems comply with corporate or regulatory policies such as PCI, HIPAA, NERC or FISMA.
• Robust predefined and customizable reports - Leverage dozens of out-of-the box reports and view executive dashboards to obtain instant insight into your security posture. Create additional reports on the fly. Easily export your findings into your own enterprise systems based on many available report formats and create distributed report alerts.
• Remediation guidance - fix vulnerabilities quickly and easily with the information provided in remediation reports.
• Accurate scan results - delivers accurate scanning results in less time with an expert system that follows an assessment process similar to that used by ethical hackers.
• Ticketing - manages the remediation workflow process with an internal ticketing system and integration to third-party systems to delegate remediation tasks to the analysts and administrators responsible for individual systems.
• Powerful administration management - supports centralized administration for geographically or organizationally dispersed network environments, role-based access for delegated administration and reporting to an unlimited number of users and integrates with Active Directory and other repositories for role-based groupings.
• Extensive enterprise integration - integrate NeXpose with many third-party security, compliance and risk management solutions such as Archer, ArcSight, RedSeal, RSA and other solutions based on pre-built integrations and NeXose’s open API.
• Out-of-the box Metasploit integration - leverage a direct integration with Metasploit, the world’s leading open source penetration testing platform, to clearly identify, prioritize and remediate real security threats.
• Strong enterprise-class service and support offerings - benefit from many enterprise service and support options including prioritized support, dedicated Technical Account Managers, consulting and training offerings.
• Flexible deployment models - deploy NeXpose Enterprise any way you want, as software, appliance or managed service to meet your unique network scanning needs. Deploy distributed scan engines to achieve the most scalable and high-performing results.

Who should use the NeXpose Enterprise Edition

• Medium, large-sized and Fortune 500 business with large networks that require the highest levels of scalability, performance and customizability.
• Companies that require multiple users to leverage the capabilities of NeXpose or who need to scan more than 1,024 IPs.
• Enterprises that require flexible deployment options ranging, including software, appliances and managed services.
• Enterprises that require a wide range of support options including dedicated SLAs.