Listing Thumbnail

    AWS Scan Engine for Rapid7 InsightVM and Nexpose

     Info
    Sold by: Rapid7 
    This scan engine is for customers who have already purchased Rapid7's InsightVM or Nexpose vulnerability management products. It is used to detect vulnerabilities in a customer's EC2 instances. You must purchase InsightVM or Nexpose in order to use this scan engine.
    Listing Thumbnail

    AWS Scan Engine for Rapid7 InsightVM and Nexpose

     Info
    Sold by: Rapid7 

    Overview

    When Rapid7 InsightVM or Nexpose customers want to detect vulnerabilities like missing patches and old operating systems in their AWS EC2 instances, one option is to use this scan engine. This listing is for a version of our standard scan engine that has been modified specifically for use in AWS environments. It leverages the Dynamic Discovery feature of InsightVM, which continuously detects when EC2 instances are added or removed from your AWS environment. The engine uses this information to ensure it scans every active EC2 instance and only EC2 instances that belong to you.

    Customers can use this scan engine to scan across multiple VPCs, as long as traffic can flow between the scan engine's VPC and the target (e.g. VPC peering). If your VPCs are isolated, you will need to install a separate engine in each VPC you want to scan. This version of the scan engine can only be used to conduct internal scans of AWS infrastructure.

    Highlights

    • Easily run scans and detect vulnerabilities in your EC2 instances
    • Designed specifically for AWS environments. Will only scan assets in your AWS account(s).

    Details

    Sold by

    Categories

    Delivery method

    Delivery option
    Scan Engine EC2 Instance
    64-bit (x86) Amazon Machine Image (AMI)

    Latest version

    Operating system
    Ubuntu 22.04

    Features and programs

    Financing for AWS Marketplace purchases

    AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
    Financing for AWS Marketplace purchases

    Pricing

    AWS Scan Engine for Rapid7 InsightVM and Nexpose

     Info
    Pricing and entitlements for this product are managed outside of AWS Marketplace through an external billing relationship between you and the vendor. You activate the product by supplying an existing license purchased outside of AWS Marketplace, while AWS provides the infrastructure required to launch the product. Subscriptions have no end date and may be cancelled any time. However, the cancellation won't affect the status of an active license if it was purchased outside of AWS Marketplace.
    Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator  to estimate your infrastructure costs.

    Additional AWS infrastructure costs

    Type
    Cost
    EBS General Purpose SSD (gp2) volumes
    $0.10/per GB/month of provisioned storage

    Vendor refund policy

    Please see the seller website for refund details.

    Legal

    Vendor terms and conditions

    Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .

    Content disclaimer

    Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.

    Usage information

     Info

    Delivery details

    64-bit (x86) Amazon Machine Image (AMI)

    Amazon Machine Image (AMI)

    An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.

    Additional details

    Usage instructions

    The Rapid7 Scan Engine must be paired with an existing InsightVM or Nexpose Console via EC2 User Data. No direct access to the Scan Engine via SSH is allowed. Other than user data, all configuration is controlled via an InsightVM or Nexpose Console.

    1. Use the manual "Launch with EC2 Console" to launch in the appropriate region.
    2. Generate a shared secret from from the Scan Engine Administration page of your InsightVM or Nexpose console.
    3. Provide the following EC2 User Data (available under the advance section in instance details) to the Scan Engine, replacing the bracketed sections with information about your console: NEXPOSE_CONSOLE_HOST=<hostname or IP of your console> NEXPOSE_CONSOLE_SECRET=<console shared secret> NEXPOSE_CONSOLE_PORT=40815
    4. We recommend at least an m5.large (8GB of RAM) and at least 10GB of disk space.
    5. Launch the instance.
    6. Once the image boots, it can take 10-15 minutes to pair with the console.
    7. Check the Engines page in the Console to see if the engine paired successfully. For troubleshooting and more information consult the InsightVM or Nexpose docs at help.rapid7.com

    Support

    Vendor support

    Rapid7 Customer Support services provide rapid resolution of issues. We include telephone and email support, 24 hour vulnerability service level agreement, 24 hour incident response time, and a reliable testing guarantee. http://www.rapid7.com/support/ ; 866-390-8113; support@rapid7.com 

    AWS infrastructure support

    AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.

    Similar products

    Customer reviews

    Ratings and reviews

     Info
    3
    1 ratings
    5 star
    4 star
    3 star
    2 star
    1 star
    0%
    0%
    100%
    0%
    0%
    1 AWS reviews
    rohan

    Scan Engine is easy to configure but...

    Reviewed on Jul 20, 2020
    Purchase verified by AWS

    The InsightVM scan engine is easy to install and configure with the security console. However, after a few months of regular scans the scan engine EBS volume is completely filled. This wouldn't be a problem if the scan engine allowed ssh access into it so that we can re-size the EBS volume correctly. Instead you have to delete and re-setup the scan engine with a bigger EBS every so often.
    There is also no means to delete older logs from the scan engine in an automated fashion which is the main cause of this issue.

    View all reviews