NeXpose Accelerates Vulnerability Scanning


Security vendor Rapid7 is updating its NeXpose vulnerability management solution this week. NeXpose 4.11 rolls in new features as well as increasing the performance of the solution. The 4.11 release debuts what Rapid7 calls the Next Generation Database Architecture. According to Rapid7, the new database can deliver up to 10x performance gains in specific operations.

Sitting at the core of the new database architecture is the open source PostgreSQL 9 database. PostreSQL 9 was first released in September of 2011 as a major update providing new replication and hot standby features.

Richard Li, senior director of product management at Rapid7 told that previous versions of NeXpose were also PostgreSQL based. Prior to NeXpose 4.11, Rapid7 had been using PostgreSQL based version 8.2.

"In addition to upgrading the database version, we’ve also done some additional optimization through database partitioning and query optimization and testing," Li said. "As a result we’ve seen certain operations execute up to 10x faster than before."

In addition to being a faster application, NeXpose 4.11 now also provides enhanced injection support. The 4.11 release is able to perform over 63,300 checks to help identify over 16,000 vulnerabilities.

"In 4.11 we’ve added OS Command Injection and LDAP injection, expanding on our market-leading Web scanning capabilities," Li said.

Payment Card Industry Data Security Standards (PCI DSS) scanning support has also been improved in the new NeXpose release. According to Rapid7, customizability and usability have been improved enabling security professionals to easily update graphics, page layouts and table formatting.

Rapid7 is also using the 4.11 release as an opportunity to expose updates that were first debuted in the 4.10.x release cycle. One such update is the enhanced Flash scanning capabilities that were introduced in NeXpose 4.10.4. NeXpose is able to provides full decompilation of Flash content in an effort to help identify security risks.

"In essence we’ve rolled all 4.10.x updates into our 4.11 release in addition to a number of 4.11 specific enhancements – like the Next Generation Database Architecture)," Li said.

Sean Michael Kerner is a senior editor at, the news service of, the network for technology professionals.