Rapid7 InsightVM Integration
Integration with Rapid7 InsightVM (Nexpose) for vulnerability data ingestion and validated risk enrichment. Piscium consumes InsightVM scan data and asset metadata, validates exploitability with autonomous AI agents, and writes validated exposure status back to InsightVM tags and custom attributes for unified dashboarding.
What You Get
Integration with Rapid7 InsightVM (Nexpose) for vulnerability data ingestion and validated risk enrichment. Piscium consumes InsightVM scan data and asset metadata, validates exploitability with autonomous AI agents, and writes validated exposure status back to InsightVM tags and custom attributes for unified dashboarding.
Why Rapid7 InsightVM?
InsightVM's Real Risk scoring accounts for exploitability and malware exposure, but it cannot confirm exploitation in your specific environment. Piscium closes this gap by running actual validation — proving which InsightVM findings can be chained into real attack paths and which are blocked by existing controls.
Example Scenario
InsightVM identifies 950 vulnerabilities in a utility company's SCADA network segment. Piscium ingests the findings and deploys AI agents that respect the passive scanning constraints required for OT. Validation confirms 29 exploitable findings, including a path from an exposed OPC UA server through a default-credential HMI to a Level 1 PLC. Piscium tags the validated assets in InsightVM and creates a remediation plan with the exact network segmentation changes needed to break the chain.
Implementation Notes
Requires InsightVM API key with asset read and tag write permissions. Supports InsightVM cloud console and on-premises Security Console 6.6+. Asset correlation uses IP, hostname, and InsightVM asset ID. Piscium can trigger targeted InsightVM scans post-remediation for independent verification. Supports InsightVM Scan Engine distribution for segmented networks.
Webhook Payload Example
{
"event": "exposure.validated",
"timestamp": "2026-03-08T07:48:00Z",
"exposure_id": "EXP-2026-00298",
"severity": "critical",
"cvss_score": 9.4,
"cve": "CVE-2025-21589",
"affected_asset": "opc-srv-02.scada.corp.local",
"rapid7_asset_id": 1042587,
"rapid7_vulnerability_id": "rapid7-cve-2025-21589",
"attack_path_id": "AG-0791",
"blast_radius": 18,
"remediation_status": "pending"
}Ready to Connect Rapid7 InsightVM?
See the integration running live in your environment.