Question

Integrate InsightVM Rapid7 security alerts

Forum|Forum|1 year ago
March 11, 2025
10 replies
76 views

Eli
New Participant

Hey everyone, has anyone helped integrate InsightVM Rapid7 security alerts via a postgre database connection or through another way?

Raanan Dagan
Employee
Forum|Forum|1 year ago
March 11, 2025

I have not tried this specific use case, but Cribl 4.1 added postgres as a database option. I hope that can help

Like

J

JP Bourget
Known Participant
Forum|Forum|1 year ago
March 11, 2025

I thought there is an API for pulling Alerts from InsightVM

Like

E

Eli
Author
New Participant
Forum|Forum|1 year ago
March 11, 2025

Would that be applicable if the InsightVM was on-prem instead of in the Cloud?

Like

J

JP Bourget
Known Participant
Forum|Forum|1 year ago
March 11, 2025

don't see why not

Like

E

Eli
Author
New Participant
Forum|Forum|1 year ago
March 11, 2025

I'll take a look at this. Thank you. <@U01Q3CZ5ABU> and <@U01J549PR6Y>

Like

J

JP Bourget
Known Participant
Forum|Forum|1 year ago
March 11, 2025

If I recall correctly, I think last time I did this (2019 or so) I created a report then pulled versions of a report to get new "findings"

Like

J

JP Bourget
Known Participant
Forum|Forum|1 year ago
March 11, 2025

which I assume is what you mean by alerts

Like

J

JP Bourget
Known Participant
Forum|Forum|1 year ago
March 11, 2025

it can get complicated quickly

Like

E

Eli
Author
New Participant
Forum|Forum|1 year ago
March 11, 2025

I'll have to verify with the customer on this.

Like

J

JP Bourget
Known Participant
Forum|Forum|1 year ago
March 11, 2025

Find out how they define a security alert.

Like

Sign up

Using your Cribl Curious or University Account

Login to the community

Using your Cribl Curious or University Account

Scanning file for viruses.

This file cannot be downloaded