Tool integration

Nexpose Integration Guide

Rapid7 on-premise vulnerability scanner with XML 2.0 export

Get a Free API Key

Integrate Rapid7 Nexpose with Vulnetix. Export scan results as XML 2.0 via the Nexpose API or console for vulnerability management.

Network / InfrastructureSaaS platformXML

How Vulnetix compares — better together

Vulnetix does not replace Nexpose. Keep running it. Vulnetix sits on top of Nexpose — and every other scanner you already own — turning disconnected tool outputs into one prioritised, fixable queue.

Nexpose is strongest at its core category and also carries features in Container & Image Scanning, IaC & Cloud Configuration, Cloud Security & CSPM — just like Vulnetix spans categories.

CapabilityVulnetixNexpose
Security coverage
SAST (static code analysis)Built-in rules + Semgrep augmentation
SCA / dependencies40+ ecosystems, transitive graph
DAST (dynamic testing)~ Ingests DAST results; no native dynamic engine
Container & imageImage CVEs, base image, Dockerfile~ Had a CI/CD container image scanner but Rapid7 EOL'd InsightVM Container Security after Mar 5, 2025; moved to Cloud Security/Exposure Command
IaC / misconfigurationTerraform, k8s, CloudFormation~ Policy Manager runs CIS benchmark / configuration-compliance checks on live hosts, not IaC template scanning
Secret scanning1,000+ rules, source + binary + git history
Cloud / CSPMCloud-posture findings, compliance tab~ Cloud/remote asset assessment in InsightVM; deep CSPM is in InsightCloudSec, not Nexpose core
Mobile (MAST)~ Ingests mobile scanner output; no native mobile engine
License complianceSPDX, copyleft/AGPL/SSPL policy
SBOM generationCycloneDX 1.7 + SPDX 2.3, cosign-signable
Malware / supply-chainDe-duplicated corpus + install-time firewall (25+ registries)
Network / infra vuln~ Ingests network scanner output; no native network scannerCore: authenticated host/network scanning identifies CVEs, open ports and vulnerable services (docs.rapid7.com/nexpose)
FuzzingIngests fuzzing crashes; no native fuzzer
Pentest / bug bountyIngests pentest/bug-bounty findings; not a testing service
The Vulnetix orchestration layer
Cross-scanner dedup & one queue (ASPM)Correlates every scanner into one prioritised queue with ownership routing
Exploit-intel prioritisationEPSS, CISA KEV, Coalition ESS, CWSS, Vulnetix LEV~ Active Risk / RealRisk scoring blends threat intel and (in InsightVM) EPSS to rank exploit likelihood
Reachability analysisTree-sitter + CVEAffected; direct/transitive/semantic
Versioned VEX + audit trailImmutable OpenVEX/CycloneDX, cosign-signable
Safe Harbour autofixResolves + applies the nearest safe version
End-of-life policyFlags/blocks past-EOL runtimes & packages
SSVC / risk-based policySSVC v2 + CISA/FedRAMP/Essential-8 presets

✓ full · ~ partial · ✗ not covered

What Nexpose does well

Where Vulnetix adds to it: Vulnetix ingests Nexpose XML 2.0 / API 3 output and folds its host and network CVE findings into the single prioritised, deduplicated queue, then layers EPSS/KEV/ESS exploit-intel, reachability, versioned VEX and SSVC on top. Vulnetix does not run network scans itself, so Nexpose remains the authenticated-scan engine and Vulnetix is the ASPM orchestration layer above it.

No migration, no rip-and-replace. Nexpose keeps doing what it does best; Vulnetix adds the orchestration, exploit-intelligence prioritisation and remediation layer built for the way AppSec works today.

Centralise Nexpose results in Vulnetix

Upload Nexpose XML output to the Vulnetix platform to deduplicate findings, prioritise them with EPSS, CISA KEV and Coalition ESS exploit intelligence, and track remediation across every scanner in a single queue.

Nexpose documentation ↗

Wire Nexpose into your CI/CD pipeline →