Sold by: Rapid7
Deployed on AWS
This scan engine is for customers who have already purchased Rapid7's InsightVM or Nexpose vulnerability management products. It is used to detect vulnerabilities in a customer's EC2 instances. You must purchase InsightVM or Nexpose in order to use this scan engine.
Overview
When Rapid7 InsightVM or Nexpose customers want to detect vulnerabilities like missing patches and old operating systems in their AWS EC2 instances, one option is to use this scan engine. This listing is for a version of our standard scan engine that has been modified specifically for use in AWS environments. It leverages the Dynamic Discovery feature of InsightVM, which continuously detects when EC2 instances are added or removed from your AWS environment. The engine uses this information to ensure it scans every active EC2 instance and only EC2 instances that belong to you.
Customers can use this scan engine to scan across multiple VPCs, as long as traffic can flow between the scan engine's VPC and the target (e.g. VPC peering). If your VPCs are isolated, you will need to install a separate engine in each VPC you want to scan. This version of the scan engine can only be used to conduct internal scans of AWS infrastructure.
Highlights
- Easily run scans and detect vulnerabilities in your EC2 instances
- Designed specifically for AWS environments. Will only scan assets in your AWS account(s).
Features and programs
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing and entitlements for this product are managed through an external billing relationship between you and the vendor. You activate the product by supplying a license purchased outside of AWS Marketplace, while AWS provides the infrastructure required to launch the product. AWS Subscriptions have no end date and may be canceled any time. However, the cancellation won't affect the status of the external license.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Vendor refund policy
Please see the seller website for refund details.
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
64-bit (x86) Amazon Machine Image (AMI)
Amazon Machine Image (AMI)
An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.
Version release notes
Additional details
Usage instructions
The Rapid7 Scan Engine must be paired with an existing InsightVM or Nexpose Console via EC2 User Data. No direct access to the Scan Engine via SSH is allowed. Other than user data, all configuration is controlled via an InsightVM or Nexpose Console.
- Use the manual "Launch with EC2 Console" to launch in the appropriate region.
- Generate a shared secret from from the Scan Engine Administration page of your InsightVM or Nexpose console.
- Provide the following EC2 User Data (available under the advance section in instance details) to the Scan Engine, replacing the bracketed sections with information about your console: NEXPOSE_CONSOLE_HOST=<hostname or IP of your console> NEXPOSE_CONSOLE_SECRET=<console shared secret> NEXPOSE_CONSOLE_PORT=40815
- We recommend at least an m5.large (8GB of RAM) and at least 10GB of disk space.
- Launch the instance.
- Once the image boots, it can take 10-15 minutes to pair with the console.
- Check the Engines page in the Console to see if the engine paired successfully. For troubleshooting and more information consult the InsightVM or Nexpose docs at help.rapid7.com
Resources
Support
Vendor support
Rapid7 Customer Support services provide rapid resolution of issues. We include telephone and email support, 24 hour vulnerability service level agreement, 24 hour incident response time, and a reliable testing guarantee. http://www.rapid7.com/support/ ; 866-390-8113; support@rapid7.com
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products
This Security Console is for use by customers who have already purchased Rapid7's InsightVM or Nexpose vulnerability risk management products. It makes it easy to install and run a Security Console on AWS. You must purchase InsightVM or Nexpose in order to use this Console.
Cloudwatch Logs connector for AWS Glue
By AWS Glue
Cloudwatch logs connector for AWS Glue, with Athena Federated Query interface.
Elasticsearch connector for AWS Glue, with Spark DataSource interface.
For new customers, we recommend using the newer version: https://aws.amazon.com/marketplace/pp?sku=jgxj9mdq1krf0baz03cvpgnv.
Cloudwatch Metrics connector for AWS Glue
By AWS Glue
Cloudwatch Metrics connector for AWS Glue, with Athena Federated Query interface.
Apache Hudi Connector for AWS Glue
By Amazon Web Services
Apache Hudi connector with shaded dependencies to work with AWS Glue.
Red Hat OpenShift Service on AWS
By Red Hat
Red Hat OpenShift Service on AWS is a fully-managed and jointly supported Red Hat OpenShift offering that combines the power of the industry's most comprehensive enterprise Kubernetes platform, and the AWS public cloud. Access the service from the AWS Console at https://console.aws.amazon.com/rosa
Customer reviews
rohan
Scan Engine is easy to configure but...
Reviewed on Jul 20, 2020
Purchase verified by AWS
The InsightVM scan engine is easy to install and configure with the security console. However, after a few months of regular scans the scan engine EBS volume is completely filled. This wouldn't be a problem if the scan engine allowed ssh access into it so that we can re-size the EBS volume correctly. Instead you have to delete and re-setup the scan engine with a bigger EBS every so often.
There is also no means to delete older logs from the scan engine in an automated fashion which is the main cause of this issue.
Leave a comment1 comments