1. Introduction
Rapid7 InsightVM combines the power of Nexpose vulnerability research, Metasploit exploit insights, global attacker intelligence, internet-wide scanning, exposure analytics, and real-time reporting — all in one platform.
By integrating InsightVM with the Cye platform, you can seamlessly bring in assets and their associated findings, helping you connect vulnerability data directly to business impact and remediation priorities.
Note: This integration is installed on-premises.
How the Integration Works
An on-premises connector is installed in your environment to collect data from Rapid7 InsightVM every 24 hours. The Cye platform then processes this data and presents findings, assets, and other relevant insights directly in the platform.
2. Prerequisites
Rapid7 InsightVM server URL
User credentials (username & password) for Rapid7 InsightVM
Cye platform administrator role
A machine available to install the on-prem connector, with access to InsightVM
Docker Engine installed on the connector instance
Outbound internet access from the connector to the Cye platform (TCP/443 outbound to AWS API Gateway)
The connector user in Rapid7 InsightVM must have permission to View Site Asset Data and View Group Asset Data.
Required IP Addresses
General IPs — Europe:
18.198.79.197| America:52.1.10.176,35.171.70.87Azure/AWS Scan IPs — Europe:
18.158.77.90| America:34.206.252.13
Group Management and Integrations
Integrations are created only at the subsidiary level. Findings appear only in that subsidiary's dashboards. Parent companies can only view aggregated results. To enable Group Management, contact your CYE Technical Account Manager.
3. Configuring on the Rapid7 InsightVM Side
Step 1: Create the Integration
In the Cye platform, go to Integrations → Data Integrations and select the Rapid7 InsightVM tile.
Click Add. You must be a Cye platform administrator.
Enter a name, your Rapid7 InsightVM credentials, and the InsightVM server URL.
Click Validate to confirm.
Step 2: Install the On-Prem Connector
Component | Requirement |
CPU | 64-bit kernel, 4 CPU / 8 vCPU |
Memory | 4 GB minimum |
OS | 64-bit Ubuntu, Debian, or CentOS |
Networking | TCP/443 outbound to AWS API Gateway |
Install Docker on your chosen machine, then enable it as a system service:
sudo systemctl enable docker sudo groupadd docker sudo usermod -aG docker $USER
4. Configuring in the Cye platform
Run the Setup Script
After entering credentials and completing the on-prem connector installation, download the configuration file and run the provided commands:
Create integration directories:
mkdir -p /home/$USER/cye/integrations/
Download the onboarding script from the Cye platform (valid for 1 hour) and move it:
cp cye-integration-agent.sh /home/$USER/cye/integrations/
Make the script executable:
sudo chmod +X /home/$USER/cye/integrations/cye-integration-agent.sh
Run the onboarding script:
./home/$USER/cye/integrations/cye-integration-agent.sh
Validate the Service
cat /home/$USER/cye/integrations/integration_logs.log
If successful, you'll see a green "Running" message and log output confirming the connector is active.
5. Viewing Results
Once complete, the Cye platform automatically creates a new technology asset (type: VM, technology: Rapid7) mapped to the NIST CSF. View imported findings on the Findings page — use the Sources filter to narrow to Rapid7.
Collected Endpoints
The Cye platform collects from: assets, asset vulnerabilities, scans, and settings.
6. Types of Fetched Entities
The Cye platform ingests a wide range of findings from Rapid7 InsightVM, including: Insufficient Global Security Update Policy, Weak Password Policy, Unauthenticated Sensitive Information Disclosure, Active Default Administration Account, Weak Cryptographic Algorithms, Untrusted Server Certificates, Usage of Outdated Technologies, SQL Injection, Cross-Site Scripting, OS Command Injection, and others.
7. Deleting the Integration
Click Delete Integration and confirm. The connection terminates immediately; all previously collected data is retained.
To edit: click Edit Integration, update details, click Save.
Wrap-up
With the Rapid7 InsightVM integration in place, the Cye platform ingests vulnerability data, maps findings to business risk, and enables smarter prioritization and remediation.