[nexpose-users] NeXpose Release Announcement - 1/29/2010

Ty Bailey Ty_Bailey at rapid7.com
Fri Jan 29 06:07:45 PST 2010 

New build headed out the door; make sure to keep those installs up to date!

Please let us know what you think of the new "NeXpose Exploit Exposure" feature.


<HTTP://www.rapid7.com>[https://www1.vtrenz.net/imarkownerfiles/ownerassets/1123/rapid7.gif]<http://www.rapid7.com/><HTTP://www.rapid7.com>2010-01-29
RELEASE NOTES

This Rapid7 NeXpose(tm) release introduces Exploit Exposure, which provides greater visibility into your organization's security threats and enables better prioritization of your remediation efforts. In addition, the file search capability has been improved.

These release notes document the improvements in the next update to NeXpose. Your NeXpose installation will automatically download and install these updates.

NeXpose Exploit Exposure(tm) vulnerability prioritization feature
[https://www1.vtrenz.net/imarkownerfiles/ownerassets/1123/dots.gif]

 *   The new NeXpose Exploit Exposure feature in the NeXpose Security Console (NSC) Web interface now gives information about the exposure level that discovered vulnerabilities represent to critical protected business data. Access to Exploit Exposure information improves your ability to manage business risk by showing you whether or not a known exploit exists, and the skill rating needed by a malicious attacker to exploit the exposure. This allows you to focus your remediation resources on the most critical, exploitable security gaps identified in your IT infrastructure. When an exploit exists in the Metasploit exploit database, the [https://system.netsuite.com/core/media/media.nl?id=30464&c=663271&h=cfe8b992bf2891015d8a] (tm) icon is displayed, along with a link that gives you the option to safely view detailed exploit information.

Enhanced searching to ensure files stored on target systems comply with security and privacy policies
[https://www1.vtrenz.net/imarkownerfiles/ownerassets/1123/dots.gif]

 *   The NeXpose file searching process has been enhanced to scan for specific file names on target systems to help you verify compliance with corporate security and privacy policies. NeXpose does not store the file content. Scan times will vary depending on the number of files on target systems. The more files found, the longer the required scan window.

Frequently asked questions (FAQ's)
[https://www1.vtrenz.net/imarkownerfiles/ownerassets/1123/dots.gif]

 *   How do I know if my version of NeXpose is up to date?
NeXpose automatically installs software updates on a regular basis. To ensure that you are using the current version, enter the update now command any time on the admin/diag_console.html page of the NeXpose Security Console Web interface. To find out what version of NeXpose is running, enter the command ver or version on the admin/diag_console.html page.
 *   Do the updates automatically apply?
Yes. Once NeXpose has installed an updated version, it will run with that version.
 *   Do I need to take action?
You do not have to take any specific action related to the update. It is recommended that you read the News page in the console Web interface to find out what new features or vulnerability checks are in the new version so that you can get optimal benefits from the update.

Going to RSA? Join us March 3rd for a party at Ruby Skye. Get on the VIP list for the evening everyone else will be talking about at RSA 2010:http://www.rapid7.com/forms/rsarsvp.jsp




Ty Bailey
Manager of Account Services
[cid:image001.png at 01CAA0C2.854DF9E0]

545 Boylston St.
Fourth Floor
Boston, MA 02116



Direct:
General:
E-mail:



857.288.7427
617.247.1717
Ty_Bailey at rapid7.com<mailto:%20marek_glinski at rapid7.com>






Going to RSA?  Join us March 3rd for a party at Ruby Skye. Get on the VIP list for the evening everyone else will be talking about at RSA 2010: www.rapid7.com/forms/rsarsvp.jsp<http://www.rapid7.com/forms/rsarsvp.jsp>


Rapid7 Ranked #1 Fastest Growing Vulnerability Management Company in the US by Inc. Magazine





-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.metasploit.com/pipermail/nexpose-users/attachments/20100129/96c6b323/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image001.png
Type: image/png
Size: 6590 bytes
Desc: image001.png
URL: <http://mail.metasploit.com/pipermail/nexpose-users/attachments/20100129/96c6b323/attachment-0001.png>

More information about the nexpose-users mailing list