nexpose.help.rapid7.comSecurity Console Quick Start Guide | Nexpose Documentation

Products Insight Solutions InsightIDR User Behavior Analytics & SIEM InsightVM Vulnerability Management InsightAppSec Dynamic Application Security Testing InsightConnect Orchestration & Automation InsightOps Log Management DivvyCloud by Rapid7 Continuous Security and Compliance for Cloud More Solutions Metasploit Penetration Testing Nexpose Vulnerability Management On-Premises AppSpider Application Security On-Premises tCell by Rapid7 Application Monitoring & Protection Insight Cloud Free Trial Services SERVICES Managed Services Security Consulting Product Consulting Training & Certification Customer Success Support & Resources SUPPORT Support Portal CONTACT CUSTOMER SUPPORT Product Documentation EXPLORE PRODUCT GUIDES Release Notes DISCOVER THE LATEST PRODUCT UPDATES Contact Us TALK TO SALES RESOURCES Fundamentals FOUNDATIONAL SECURITY KNOWLEDGE Blog THE LATEST INDUSTRY NEWS AND SECURITY EXPERTISE Resources Library E-BOOKS, WHITE PAPERS, VIDEOS & BRIEFS Extensions Library PLUGINS, INTEGRATIONS & DEVELOPER COMMUNITY Partners RAPID7 PARTNER ECOSYSTEM Webcasts & Events UPCOMING OPPORTUNITIES TO CONNECT WITH US Vulnerability & Exploit Database SEARCH THE LATEST SECURITY RESEARCH Research Sign In Documentation Nexpose AppSpider Insight Agent InsightAppSec InsightConnect Insight Cloud InsightIDR Insight Network Sensor InsightOps InsightVM Metasploit Nexpose tCell Rapid7 Services Products Insight Solutions InsightIDR User Behavior Analytics & SIEM InsightVM Vulnerability Management InsightAppSec Dynamic Application Security Testing InsightConnect Orchestration & Automation InsightOps Log Management DivvyCloud by Rapid7 Continuous Security and Compliance for Cloud More Solutions Metasploit Penetration Testing Nexpose Vulnerability Management On-Premises AppSpider Application Security On-Premises tCell by Rapid7 Application Monitoring & Protection Insight Cloud Free Trial Services SERVICES Managed Services Security Consulting Product Consulting Training & Certification Customer Success Support & Resources SUPPORT Support Portal CONTACT CUSTOMER SUPPORT Product Documentation EXPLORE PRODUCT GUIDES Release Notes DISCOVER THE LATEST PRODUCT UPDATES Contact Us TALK TO SALES RESOURCES Fundamentals FOUNDATIONAL SECURITY KNOWLEDGE Blog THE LATEST INDUSTRY NEWS AND SECURITY EXPERTISE Resources Library E-BOOKS, WHITE PAPERS, VIDEOS & BRIEFS Extensions Library PLUGINS, INTEGRATIONS & DEVELOPER COMMUNITY Partners RAPID7 PARTNER ECOSYSTEM Webcasts & Events UPCOMING OPPORTUNITIES TO CONNECT WITH US Vulnerability & Exploit Database SEARCH THE LATEST SECURITY RESEARCH Research Sign In Documentation Nexpose AppSpider Insight Agent InsightAppSec InsightConnect Insight Cloud InsightIDR Insight Network Sensor InsightOps InsightVM Metasploit Nexpose tCell Rapid7 Services Release Notes Get Started Security Console Quick Start Guide Basic deployment plan Security Console overview Requirements Download Install Log in and activate Tour the Home Page Create and Scan a Site Generate a Report Service start, stop, and status controls Nexpose glossary of terms Sites What is a site? Site creation scenarios Creating and editing sites Giving users access to a site Adding assets to sites Best practices for adding assets Deleting sites Site Detail View Scan Engines Scan Engines Distributed Scan Engines Post-Installation Engine-to-Console Pairing External Scanning Service Scan Engine Pools AWS Scan Engines Azure Scan Engines Scan Engine Communication Methods Scan Engine Data Collection - Rules and Details Scan Templates Selecting a scan template Scanning with multiple templates Scan templates appendix Authenticated Discovery Scans Configuring Web spidering Scan Credentials Configuring scan credentials Maximizing security with credentials Configuring site-specific scan credentials Managing shared scan credentials Creating and Managing CyberArk Credentials Kerberos Credentials for Authenticated Scans Using SSH public key authentication Elevating permissions Database scanning credential requirements Using LM/NTLM hash authentication Authentication on Windows: best practices Authentication on Unix and related targets: best practices Using PowerShell with your scans Alerts and Schedules Setting up scan alerts Scheduling scans Scan blackouts Exporting your Calendar Dynamic Discovery Managing dynamic discovery of assets Discovering mobile devices Discovering Amazon Web Services instances Discovering Microsoft Azure instances Discovering Virtual Machines Managed by VMware vCenter or ESX/ESXi Discovering Assets through DHCP Log Queries Discovering Assets managed by McAfee ePolicy Orchestrator Discovering vulnerability data collected by McAfee Data Exchange Layer (DXL) Discovering Assets managed by Active Directory Creating and managing Dynamic Discovery connections Initiating Dynamic Discovery Using filters to refine Dynamic Discovery Monitoring Dynamic Discovery Configuring a site using a Dynamic Discovery connection Other Scanning Resources Working with Project Sonar Importing AppSpider scan data Running a manual scan Stopping all in-progress scans Automating security actions in changing environments Enabling Remote Registry Activation Working with Containers Configuring scan authentication on target Web applications Creating a logon for Web site form authentication Creating a logon for Web site session authentication with HTTP headers Measuring scan performance and time Scanning a load balancer Using the Metasploit Remote Check Service Assess Assess Locating and working with assets Fingerprint certainty Applying RealContext with tags Working with vulnerabilities Vulnerability metrics explained Vulnerability exceptions Policy Manager Policy rule overrides Scanning for specific vulnerabilities Apache Struts (CVE-2017-5638) Meltdown and Spectre (CVE-2017-5715, CVE-2017-5753, and CVE-2017-5754) WannaCry Act Working with asset groups Performing filtered asset searches Creating a dynamic or static asset group from asset searches Reports Working with reports Report templates and sections Creating a basic report Viewing, editing, and running reports Working with risk trends in reports For ASVs: Consolidating three report templates into one custom template Distributing, sharing, and exporting reports Configuring data warehousing settings Configuring custom report templates Understanding report content Working with report formats Report start times and durations Upload externally created report templates signed by Rapid7 SQL Query Export Creating reports based on SQL queries Understanding the reporting data model: Overview and query design Understanding the reporting data model: Facts Understanding the reporting data model: Dimensions Understanding the reporting data model: Functions SQL Query Export examples SQL example - new and remediated vulnerabilities SQL example - new assets since last scan SQL example - vulnerability coverage SQL example - vulnerability exceptions SQL example - software counts and listing SQL example - certificates expiring in 90 days SQL example - asset groups SQL example - unauthenticated/unmanaged assets SQL example - vulnerability exception categorization SQL example - asset count SQL example - detailed policy report SQL example - asset discovery SQL example - delta since the last scan SQL example - report on a single vulnerability SQL example - recently published vulnerabilities SQL example - asset authentication access level SQL example - authentication level achieved with current credentials SQL example - sites with credentials issues SQL example - group by CVSS severity and split hostname SQL example - proof of a specific remediation SQL example - most vulnerable site by risk score per asset SQL example - Patch Tuesday SQL example - vulnerable assets SQL example - credential status SQL example - policy reporting SQL example - asset details SQL example - asset IP summary SQL example - view open ports SQL...