About
Rapid7 Insight AppSec performs black-box security testing to automate identification, triage vulnerabilities, prioritize actions, and remediate application risk.
User Permissions and Prerequisites
The Rapid7 Insight AppSec user must have Admin permissions.
Server URL format: https://YOURREGION.api.insight.rapid7.com/ias/v1
API Key (Rapid7 Insight AppSec platform > Settings > API Key > User Key > +New User Key)
Configure the Rapid7 Insight AppSec Connector
Log in to your Vulcan Cyber dashboard and go to Connectors.
Click on Add a Connector.
Click on the Rapid7 Insight AppSec icon.
Enter the following information into the connector setup page:
Server URL
API Key
Click the Test Connectivity button to verify that Vulcan Cyber can connect to your Rapid7 Insight AppSec instance, then click Create (or Save Changes).
Allow some time for the sync to complete. You can review the sync status under Log.
To confirm the sync is complete, navigate to the Connectors tab to check the sync status. Once the Rapid7 Insight AppSec icon shows Connected, the connection is complete.
Fields Mapping - DAST - Websites
Rapid7 Insight AppSec field | Vulcan field | Value Example |
Root cause URL | Asset name | webscantest.com |
Websites | Asset type |
|
Vulnerability URL | Asset Pages - Name |
See example |
App description Rapid7 app ID | Asset detail | See example |
Rapid7 Tags, rapid7 app name | Asset tags (Rapid7 app name) | See example |
Module type | Vulnerability title | See example |
CVSS score | Vulnerability score | Credentials over an insecure channel |
Description | Vulnerability description |
|
module id, detailed description, references | Vulnerability details |
|
"Fix from Rapid7 InsightAppSec" | Fix - Title | See example |
Recommendation | Fix - Description |
|
Reference | Fix - Reference |
|
CVSS3 vector, rapid7 severity, root cause method, root cause parameter | Assets - Vulnerability connection |
|
Vulnerability URL value example:
App Description value example:
Rapid7 tags value example:
Fix title value example in Rapid7:
Vulnerability Status Mapping
Rapid7 Insight AppSec Status | Vulcan Status |
Unreviewed, Verified, Duplicate | Vulnerable |
Remediated | Fixed |
False positive | Ignored - false positive |
Ignored | Ignored risk acknowledged |
Vulnerability Score mapping
Rapid7 Insight AppSec Score | Vulcan Score |
0-10 | 0-10 |
Locate Rapid7 Insight AppSec vulnerabilities in the Vulcan Platform
As Rapid7 Insight AppSec discovers vulnerabilities, the Vulcan Platform connector imports those vulnerabilities for reporting and action. You can view vulnerabilities via Connector by using the relevant filter:
Open the Vulcan Platform dashboard and navigate to the Vulnerabilities. Click on the Search or filter vulnerabilities search box, scroll to the Vulnerability Source option, and click to filter by the vulnerability source.
Locate Rapid7 Insight AppSec on the vulnerability source/Connector list and click to filter results.
Click on any vulnerability to view further information.
Locate Rapid7 Insight AppSec assets in the Vulcan Platform
To locate all synced hosts, images, and cloud resource assets from Rapid7 Insight AppSec.
In the Vulcan Cyber platform, navigate to Assets > Websites tab.
Click on the Search or filter websites input box and select Connector from the drop-down selection.
Locate the Rapid7 Insight AppSec option to view all synced assets.
Automate actions in the Vulcan Platform
Take advantage of the automation capabilities of Vulcan Cyber and the Rapid7 Insight AppSec connector.
Click here to learn how to create automation in the Vulcan Cyber Platform.