Chariot can integrate with Rapid7's InsightVM to enhance your attack surface management and vulnerability monitoring. This integration supports continuous asset discovery and vulnerability assessment.
Chariot offers two methods to integrate with Rapid7's InsightVM: continuous API integration and manual scan imports.
API Integration
The API integration process begins in Chariot's Integrations page.
Look for the Integrations page in the left navigation menu - you'll find it under the Administration heading near the bottom.
Click on "Add Integration" to see all available integration options.
You can easily locate the Rapid7 InsightVM integration either by using the search function or by browsing the Vulnerability Management section of the integration cards.
When you click "Connect" on the Rapid7 InsightVM card, you'll see a configuration popup where you can enter the enter the Setup and Authentication information.
Setup and Authentication
Chariot connects to InsightVM through its API v3 endpoint. To configure the integration:
Obtain API credentials from your InsightVM instance:
- Username
- Password
- InsightVM Security Console URL
Enter the Username, Password, and Security Console URL in the appropriate places in Chariot's Rapid7 InsightVM setup page.
Capabilities
The InsightVM API integration provides:
Asset Discovery
- Retrieves assets from InsightVM that have been scanned within the last 72 hours
- Identifies both IP addresses and hostnames (FQDNs)
- Filters out private IP addresses to focus on external attack surface
- Associates discovered services with ports and protocols
Vulnerability Assessment
- Imports vulnerabilities detected by InsightVM
- Maps severity levels based on:
- CVSS base scores
- CVSS temporal scores if available
- InsightVM's severity ratings
- Captures detailed vulnerability data including:
- Vulnerability descriptions
- CVSS vectors
- Port and protocol information
- Proof of concept/detection details
Manually import scan results
If you prefer to import specific scan results or don't have API access, you can manually import scan data from InsightVM.
In your InsightVM Console, select Reports -> Console-Generated. Then follow the steps:
- Select Create a report.
- Provide a name for the report.
- Select Export.
- Select the XML Export 2.0 format.
- Select the scope of the export. Usually, it is a subset of the sites defined in InsightVM.
- Click Save and Run the Report.
It will generate an XML file.
Once you have the export file, proceed to set up the Rapid7 Import integration in Chariot. In set up, dialog, drag and drop the .xml file into the dialog box.
If you find a topic that you would like discussed in detail, or need further assistance, please let us know at support@praetorian.com!