Browse archive

Latest news

CISOs need to engage with the board

Wi-Fi client security weaknesses still prevalent

Find TrueCrypt and BitLocker encrypted containers and images

Sourcefire goes beyond the sandbox

The CSO perspective on healthcare security and compliance

Jailed hacker designs device to thwart ATM card skimming

U.S. Congress has questions about Google Glass and privacy

Cyber espionage campaign uses professionally-made malware

Form-grabbing rootkit sold on underground forums

Large cyber espionage emanating from India

Over 45% of IT pros snitch on their colleagues

Thoughts on the need for anonymity

IT security jobs: What's in demand and how to meet it

Hacking charge stations for electric cars

Metasploit achieves CVE compliance

Posted on 14 December 2010.

Rapid7 announced that Metasploit Pro and Metasploit Express have achieved Common Vulnerabilities and Exposures (CVE) compliance.

CVE associates unique identifiers to security vulnerabilities and exposures to provide common names for publicly known problems. As a result of Metasploit’s CVE compatibility, Metasploit reports can now be more easily cross-referenced with other tools.

Rapid7 has enhanced the features of its software solutions with CVE to provide a reference method of information security vulnerabilities and exposures as defined by the National Cyber-Security Division of the United States Department of Homeland Security through the non-profit MITRE Corporation.

"As a leader in both vulnerability management and penetration testing, Rapid7 appreciates MITRE’s efforts to provide unique CVE identifiers across both of these areas,” said HD Moore, Rapid7 CSO and Metasploit chief architect. “This enables our customers to easily reference vulnerabilities and exploits across security solutions, including Metasploit penetration testing solutions and NeXpose vulnerability scanners."