Question

Integrate InsightVM Rapid7 security alerts

Forum|Forum|10 months ago
March 11, 2025
10 replies
63 views

Eli
New Participant

Hey everyone, has anyone helped integrate InsightVM Rapid7 security alerts via a postgre database connection or through another way?

Raanan Dagan
Employee
Forum|Forum|10 months ago
March 11, 2025

I have not tried this specific use case, but Cribl 4.1 added postgres as a database option. I hope that can help

Like

J

JP Bourget
Known Participant
Forum|Forum|10 months ago
March 11, 2025

I thought there is an API for pulling Alerts from InsightVM

Like

E

Eli
Author
New Participant
Forum|Forum|10 months ago
March 11, 2025

Would that be applicable if the InsightVM was on-prem instead of in the Cloud?

Like

J

JP Bourget
Known Participant
Forum|Forum|10 months ago
March 11, 2025

don't see why not

Like

E

Eli
Author
New Participant
Forum|Forum|10 months ago
March 11, 2025

I'll take a look at this. Thank you. <@U01Q3CZ5ABU> and <@U01J549PR6Y>

Like

J

JP Bourget
Known Participant
Forum|Forum|10 months ago
March 11, 2025

If I recall correctly, I think last time I did this (2019 or so) I created a report then pulled versions of a report to get new "findings"

Like

J

JP Bourget
Known Participant
Forum|Forum|10 months ago
March 11, 2025

which I assume is what you mean by alerts

Like

J

JP Bourget
Known Participant
Forum|Forum|10 months ago
March 11, 2025

it can get complicated quickly

Like

E

Eli
Author
New Participant
Forum|Forum|10 months ago
March 11, 2025

I'll have to verify with the customer on this.

Like

J

JP Bourget
Known Participant
Forum|Forum|10 months ago
March 11, 2025

Find out how they define a security alert.

Like

Sign up

Using your Cribl.Cloud account

Login to the community

Using your Cribl.Cloud account

Scanning file for viruses.

This file cannot be downloaded