insightvm.help.rapid7.comSecurity Console Quick Start Guide | InsightVM Documentation

Documentation InsightVM AppSpider Insight Agent InsightAppSec InsightConnect Insight Cloud InsightIDR Insight Network Sensor InsightOps InsightVM Metasploit Nexpose tCell Rapid7 Services Sign In Documentation InsightVM AppSpider Insight Agent InsightAppSec InsightConnect Insight Cloud InsightIDR Insight Network Sensor InsightOps InsightVM Metasploit Nexpose tCell Rapid7 Services Release Notes Get Started Security Console Quick Start Guide Basic deployment plan Security Console overview Requirements Download Install Log in and activate Tour the Home Page Create and Scan a Site Generate a Report Service start, stop, and status controls Glossary Cloud Capabilities Activate your console on the Insight platform Deploy Additional Consoles Email Confirmation for Insight Platform Account Mapping Configure communications with the Insight platform Insight Agents with InsightVM Enable complementary scanning for Scan Engines and Insight Agents Correlate Assets with Insight Agent UUIDs Modify Security Console Sync Interval Dashboards Cards Query in Cards Remediation Projects Ticketing Integration for Remediation Projects Jira ServiceNow Custom Policy Builder Executive Summary Report Goals and SLAs Goal Cards Manage Goals and SLAs Working with Containers Managing Container Images Managing Container Connections Container Registry Sync App Containers Build Interface Containers CI/CD Plugin Container Image Scanner Query Builder Query Operators Reports Archive Collectors Collectors in InsightVM Collector Requirements Collector Installation and Deployment Collector Troubleshooting Collector Proxy Configuration Automation Automation Feature Access Prerequisites and Recommended Best Practices InsightVM Automation Features Notifications Automation Workflows Microsoft SCCM - Automation-Assisted Patching IBM BigFix - Automation-Assisted Patching Cloud Configuration Assessment Cloud Configuration Assessment Overview AWS - Connect to Cloud Configuration Assessment Cloud Configuration Assessment Interface Guide Remediation scripts in Cloud Configuration Assessment Sites What is a site? Site creation scenarios Creating and editing sites Giving users access to a site Adding assets to sites Best practices for adding assets Deleting sites Site Detail View Scan Engines Scan Engines Distributed Scan Engines Post-Installation Engine-to-Console Pairing External Scanning Service Scan Engine Pools AWS Scan Engines Azure Scan Engines Scan Engine Communication Methods Scan Engine Data Collection - Rules and Details Scan Engine Management on the Insight Platform Scan Templates Selecting a scan template Scanning with multiple templates Scan templates appendix Authenticated Discovery Scans Configuring Web spidering Scan Credentials Configuring scan credentials Maximizing security with credentials Configuring site-specific scan credentials Managing shared scan credentials Creating and Managing CyberArk Credentials Kerberos Credentials for Authenticated Scans Using SSH public key authentication Elevating permissions Database scanning credential requirements Using LM/NTLM hash authentication Authentication on Windows: best practices Authentication on Unix and related targets: best practices Using PowerShell with your scans Alerts and Schedules Setting up scan alerts Scheduling scans Scan blackouts Exporting your Calendar Dynamic Discovery Managing dynamic discovery of assets Discovering mobile devices Discovering Amazon Web Services instances Discovering Microsoft Azure instances Discovering Virtual Machines Managed by VMware vCenter or ESX/ESXi Discovering Assets through DHCP Log Queries Discovering Assets managed by McAfee ePolicy Orchestrator Discovering vulnerability data collected by McAfee Data Exchange Layer (DXL) Discovering Assets managed by Active Directory Creating and managing Dynamic Discovery connections Initiating Dynamic Discovery Using filters to refine Dynamic Discovery Monitoring Dynamic Discovery Configuring a site using a Dynamic Discovery connection Other Scanning Resources Working with Project Sonar Scan Engine and Insight Agent Comparison Integrating NSX network virtualizations with scans Importing AppSpider scan data Running a manual scan Stopping all in-progress scans Automating security actions in changing environments Enabling Remote Registry Activation Configuring scan authentication on target Web applications Creating a logon for Web site form authentication Creating a logon for Web site session authentication with HTTP headers Measuring scan performance and time Scanning a load balancer Assess Assess Locating and working with assets Fingerprint certainty Applying RealContext with tags Working with vulnerabilities Vulnerability metrics explained Vulnerability exceptions Policy Manager Policy rule overrides Scanning for specific vulnerabilities Apache Struts (CVE-2017-5638) WannaCry Meltdown and Spectre (CVE-2017-5715, CVE-2017-5753, and CVE-2017-5754) Act Working with asset groups Performing filtered asset searches Creating a dynamic or static asset group from asset searches Report Working with reports Report templates and sections Creating a basic report Viewing, editing, and running reports Working with risk trends in reports For ASVs: Consolidating three report templates into one custom template Distributing, sharing, and exporting reports Configuring data warehousing settings Configuring custom report templates Understanding report content Working with report formats Report start times and durations SQL Query Export Creating reports based on SQL queries Understanding the reporting data model: Overview and query design Understanding the reporting data model: Facts Understanding the reporting data model: Dimensions Understanding the reporting data model: Functions SQL Query Export examples SQL example - new and remediated vulnerabilities SQL example - new assets since last scan SQL example - vulnerability coverage SQL example - vulnerability exceptions SQL example - software counts and listing SQL example - certificates expiring in 90 days SQL example - asset groups SQL example - unauthenticated/unmanaged assets SQL example - vulnerability exception categorization SQL example - asset count SQL example - detailed policy report SQL example - asset discovery SQL example - delta since the last scan SQL example - report on a single vulnerability SQL example - recently published vulnerabilities SQL example - asset authentication access level SQL example - authentication level achieved with current credentials SQL example - sites with credentials issues SQL example - group by CVSS severity and split hostname SQL example - proof of a specific remediation SQL example - most vulnerable site by risk score per asset SQL example - Patch Tuesday SQL example - vulnerable assets SQL example - credential status SQL example - policy reporting SQL example - asset details SQL example - asset IP summary SQL example - view open ports SQL example - assets using ciphertext Tune Tune Working with scan templates and tuning scan performance Configuring custom scan templates Configuring asset discovery Configuring service discovery Selecting vulnerability checks Writing vulnerability checks Common vulnerability check examples Building weak credential vulnerability checks Converting a NASL check Selecting Policy Manager checks Configuring verification of standard policies Configuring scans of various types of servers Configuring File Searches on Target Systems Using other tuning options Managing certificates for scanning Creating a custom policy Uploading custom SCAP policies Risk Strategies Adjusting risk with criticality Sending custom fingerprints to paired Scan Engines Set maximum scan duration per device Set maximum concurrent scans per engine Users and Authentication Managing users and authentication Setting password policies Two factor authentication LDAP authentication Kerberos authentication SAML 2.0 authentication Remove an authentication source from InsightVM How to reset a pass...