Powerful and Customizable Reporting

Nexpose helps security professionals clearly prioritize and report on the most critical security threats in their environment. Based on Rapid7's real risk score that goes beyond the standard CVSS scores to include the notion of contextual exploitability, malware information and weighted and temporal risk scores, Nexpose provides an efficient risk-based approach to reporting. Specific capabilities include

• Out-of-the box report templates that provide clear insight into an organization's security posture and help document compliance with regulations such as PCI, FISMA, NERC, HIPAA, Hitech Act, FDCC, USGCB, SCAP, CAG and state privacy laws.
• Executive reports summarizing risk by business area, assets, and services
• Detailed step-by-step remediation reports that bridge the gap between security and IT operations
• Trend reports to provide baseline assessments and monitor progress
• Real-time notification when threats are discovered
• True validation of real risk based on the validation of exploitability with Metasploit.
• Powerful XML capabilities for rich integration with internal and third-party systems including SIEM, GRC, network topology and other solutions
• Rich and completely customizable CSV export capabilities to give users the ultimate flexibility in manipulating and leveraging data any way they like. The CSV export comes with more than 30 variables of data field options to flexibly tailor the reports to an organization's specific requirements.

Click to enlarge image