Skip to main content

Rapid7 Nexpose Data Warehouse

Vulnerability Management

The Rapid7 Nexpose Data Warehouse Connector integrates with the Rapid7 InsightVM / Nexpose Data Warehouse, a PostgreSQL database that Nexpose exports its dimensional reporting data into. The connector connects directly to that PostgreSQL warehouse over JDBC and syncs vulnerability management data into the Brinqa Unified Data Model (UDM).

It synchronizes three models:

  • Host — assets known to Nexpose, including operating system, addresses, sites, asset groups, tags and cloud instance identifiers.
  • Vulnerability Definition — the catalog of vulnerability definitions, including CVSS v2/v3 metrics, CVE references, exploits, malware kits and remediation guidance.
  • Vulnerability — per-asset vulnerability findings (instances), including status, severity, ports/services and remediation/reintroduction dates.

All database access is performed read-only; the connector opens connections with setReadOnly(true) and issues SELECT-only queries.

Data retrieved from Rapid7 Nexpose Data Warehouse

Connector ObjectRequiredMaps to Data Model
HostYesHost
Vulnerability DefinitionYesVulnerability Definition
VulnerabilityYesVulnerability

Model relationships

note

For detailed steps on how to view the data retrieved from Rapid7 Nexpose Data Warehouse in the Brinqa Platform, see How to view your data.