Overview

When Rapid7 InsightVM or Nexpose customers want to detect vulnerabilities like missing patches and old operating systems in their AWS EC2 instances, one option is to use this scan engine. This listing is for a version of our standard scan engine that has been modified specifically for use in AWS environments. It leverages the Dynamic Discovery feature of InsightVM, which continuously detects when EC2 instances are added or removed from your AWS environment. The engine uses this information to ensure it scans every active EC2 instance and only EC2 instances that belong to you.

Customers can use this scan engine to scan across multiple VPCs, as long as traffic can flow between the scan engine's VPC and the target (e.g. VPC peering). If your VPCs are isolated, you will need to install a separate engine in each VPC you want to scan. This version of the scan engine can only be used to conduct internal scans of AWS infrastructure.

Highlights

Easily run scans and detect vulnerabilities in your EC2 instances
Designed specifically for AWS environments. Will only scan assets in your AWS account(s).

Details

Sold by

Rapid7

Pricing

AWS Scan Engine for Rapid7 InsightVM and Nexpose

Info

View purchase options

Pricing and entitlements for this product are managed outside of AWS Marketplace through an external billing relationship between you and the vendor. You activate the product by supplying an existing license purchased outside of AWS Marketplace, while AWS provides the infrastructure required to launch the product. Subscriptions have no end date and may be cancelled any time. However, the cancellation won't affect the status of an active license if it was purchased outside of AWS Marketplace.

Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.

Additional AWS infrastructure costs

Type	Cost
EBS General Purpose SSD (gp2) volumes	$0.10/per GB/month of provisioned storage

Vendor refund policy

Please see the seller website for refund details.

Legal

Vendor terms and conditions

Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .

Content disclaimer

Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.

Usage information

Info

Delivery method

Version

Delivery details

64-bit (x86) Amazon Machine Image (AMI)

Amazon Machine Image (AMI)

An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.

Version release notes

https://help.rapid7.com/nexpose/en-us/release-notes/

Additional details

Usage instructions

The Rapid7 Scan Engine must be paired with an existing InsightVM or Nexpose Console via EC2 User Data. No direct access to the Scan Engine via SSH is allowed. Other than user data, all configuration is controlled via an InsightVM or Nexpose Console.

Use the manual "Launch with EC2 Console" to launch in the appropriate region.
Generate a shared secret from from the Scan Engine Administration page of your InsightVM or Nexpose console.
Provide the following EC2 User Data (available under the advance section in instance details) to the Scan Engine, replacing the bracketed sections with information about your console: NEXPOSE_CONSOLE_HOST= NEXPOSE_CONSOLE_SECRET= NEXPOSE_CONSOLE_PORT=40815
We recommend at least an m5.large (8GB of RAM) and at least 10GB of disk space.
Launch the instance.
Once the image boots, it can take 10-15 minutes to pair with the console.
Check the Engines page in the Console to see if the engine paired successfully. For troubleshooting and more information consult the InsightVM or Nexpose docs at help.rapid7.com

Resources

Vendor resources

Product Brief

Free InsightVM Trial

Program Assessment & Development Services

Support

Vendor support

Rapid7 Customer Support services provide rapid resolution of issues. We include telephone and email support, 24 hour vulnerability service level agreement, 24 hour incident response time, and a reliable testing guarantee. http://www.rapid7.com/support/ ; 866-390-8113; support@rapid7.com

AWS infrastructure support

AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.

Get support

Similar products

Security Console for Rapid7 InsightVM and Nexpose

By Rapid7

This Security Console is for use by customers who have already purchased Rapid7's InsightVM or Nexpose vulnerability risk management products. It makes it easy to install and run a Security Console on AWS. You must purchase InsightVM or Nexpose in order to use this Console.

View product

Cloudwatch Logs connector for AWS Glue

By AWS Glue

Cloudwatch logs connector for AWS Glue, with Athena Federated Query interface.

View product

Elasticsearch Spark connector for AWS Glue (deprecated)

By AWS Glue

Elasticsearch connector for AWS Glue, with Spark DataSource interface. For new customers, we recommend using the newer version: https://aws.amazon.com/marketplace/pp?sku=jgxj9mdq1krf0baz03cvpgnv.

View product

Cloudwatch Metrics connector for AWS Glue

By AWS Glue

Cloudwatch Metrics connector for AWS Glue, with Athena Federated Query interface.

View product

Apache Hudi Connector for AWS Glue

By Amazon Web Services

Apache Hudi connector with shaded dependencies to work with AWS Glue.

View product

CloudEndure Disaster Recovery to AWS

By CloudEndure, an AWS company

CloudEndure Disaster Recovery enables organizations to quickly and easily shift their disaster recovery strategy to AWS from existing physical or virtual data centers, private clouds, or other public clouds, in addition to supporting cross-region / cross-AZ disaster recovery in AWS.

View product

Customer reviews

Write a review

Ratings and reviews

Info

1 ratings

5 star

4 star

3 star

2 star

1 star

100%

1 AWS reviews

rohan

Scan Engine is easy to configure but...

Reviewed on Jul 20, 2020

Purchase verified by AWS

The InsightVM scan engine is easy to install and configure with the security console. However, after a few months of regular scans the scan engine EBS volume is completely filled. This wouldn't be a problem if the scan engine allowed ssh access into it so that we can re-size the EBS volume correctly. Instead you have to delete and re-setup the scan engine with a bigger EBS every so often.
There is also no means to delete older logs from the scan engine in an automated fashion which is the main cause of this issue.