Axonius Documentation
Start typing to search…

Rapid7 Threat Command

Rapid7 Threat Command is an external threat intelligence tool that helps users find and mitigate threats targeting organizations.

Types of Assets Fetched

This adapter fetches the following types of assets:

  • Users

Parameters

  1. Host Name or IP Address (required) - The hostname or IP address of the Rapid7 Threat Command server.

  2. Account ID and API Key (required) - Account ID and API Key associated with a user account that has permissions to fetch assets.

  3. Verify SSL - Select whether to verify the SSL certificate of the server against the CA database inside of Axonius. For more details, see SSL Trust & CA Settings.

  4. HTTPS Proxy (optional) - Connect the adapter to a proxy instead of directly connecting it to the domain.

  5. HTTPS Proxy User Name (optional) - The user name to use when connecting to the value supplied in Host Name or IP Address via the value supplied in HTTPS Proxy.

  6. HTTPS Proxy Password (optional) - The password to use when connecting to the server using the HTTPS Proxy.

To learn more about common adapter connection parameters and buttons, see Adding a New Adapter Connection.

Rapid7ThreatCommand

Advanced Settings

📘

Note

Advanced settings can either apply for all connections for this adapter, or you can set different advanced settings and/or different scheduling for a specific connection, refer to ​Advanced Configuration for Adapters.

Endpoints Config

  1. Fetch Devices from CVEs - Enable this to fetch Devices from the CVEs endpoint, which adds Threat Command vulnerability data to Vulnerable Software data.
📘

Note

For details on general advanced settings under the Adapter Configuration tab, see Adapter Advanced Settings.

Supported From Version

Supported from Axonius version 5.0

Updated 4 days ago