eyeExtend for Rapid7® Nexpose
Uncover device vulnerabilities in real time and mitigate your risk exposure
- Developer
- Forescout
Enhance the power of Rapid7 Nexpose with complete visibility across managed, unmanaged and transient devices
Forescout eyeExtend for Rapid7 InsightVM lets you harness complete device visibility
agentlessly across your entire attack surface and automates response workflows for
device compliance, remediation and risk mitigation.
Features and Benefits
Assess device vulnerabilities on-connect
Gain real-time insight into risks and vulnerabilities on your network. eyeExtend for Rapid7 Nexpose prevents exploitation
of unmanaged or transient endpoints by detecting devices immediately on connect. After determining if the device is new,
unmanaged or has an outdated scan, eyeExtend initiates real-time scans from the Nexpose Security Console, eliminating the
problem of missing or out-of-date device scans.Apply policy-based conditional scans
Manage device vulnerabilities after devices connect. Operators can create a Forescout policy that initiates a Nexpose scan
automatically in the event of a device configuration change or noncompliance. For example, Forescout policies can be used to
trigger a scan on devices that have not been scanned in X number of days or if a device’s vulnerability severity is greater than X,
or if any monitored item has changed since the last scan. Forescout can also use this information to initiate remediation in these
instances.Prioritize vulnerabilities and automate response
In cases where there are large numbers of devices with vulnerabilities, Forescout eyeExtend leverages Nexpose’s granular risk
scoring system or standard CVSS rankings to organize devices with vulnerabilities into priority groups for accelerated isolation
and remediation of the riskiest devices to your business. When Nexpose identifies a device as noncompliant, it shares the
information with Forescout eyeExtend. Forescout quarantines or blocks the device from accessing the network dynamically and
initiates remediation workflows until the device is deemed compliant and healthy. Forescout can also target remediation actions
such as installing required security software, updating agents or applying security patches proactively. Once all vulnerabilities are
addressed, the device is allowed back onto the network.
Assess Device Configuration
Assess device configuration
and compliance when and
after a device connects to
the network
Scan all Network Devices
Scan all new devices the
instant they connect
Initiate Scans
Initiate scans based on
time of last scan, severity
of vulnerability, change in
device posture and Nexposespecific metrics
Automate Remediation
Automate remediation
actions by vulnerability
criticality based on Nexpose
risk scores and CVSS
Control Access to Network
Control network access by
dynamically quarantining or
blocking vulnerable devices
from accessing sensitive
parts of the networkWorks with Forescout Cloud
Vulnerabilities discovered by this eyeExtend integration can be sent to Forescout Cloud’s Risk & Exposure Management (REM) solution to support vulnerability management workflows and enhance REM’s multi-factor risk scoring.
Additional Information
Support
EyeExtend modules are fully supported by Forescout. Please see support details at https://www.forescout.com/resources/activecare-maintenance-and-support-policy/
- Phone: +1-866-377-8773
- Knowledge Base
- Read Documentation
Categories
-
App Type
-
Built By
-
Licensing Category
-
Works With
Resources
Forescout eyeExtend for Rapid7® Nexpose Data Sheet
Download PDF