Rapid7 is excited to announce the general availability of our Kubernetes integration in InsightVM, our vulnerability management tool.This represents a step forward in Rapid7’s ability to provide vulnerability and remediation management capabilities for container environments.
Kubernetes is the most popular container orchestration tool by a wide margin and is a powerful tool for scaling and reducing unneeded scale from a container deployment. This provides the ability to adapt an organization’s environment on-demand and in an automated fashion. However, container images comprise software packages that represent opportunities to introduce risk via vulnerabilities present in those packages. Moreover, because a single container image may be instantiated multiple times, an organization’s attack surface is increased.
Rapid7 provides the ability to assess risk in containers via our container registry scanning capabilities and our integration with popular Continuous Integration/Continuous Deployment (CI/CD) tools such as Jenkins. The release of our Kubernetes integration to general ability adds upon this and allows customers to quantify the exposure of risks identified via our vulnerability assessments.
Deploying the Rapid7 Kubernetes Monitor
Integrating your Kubernetes environment with InsightVM can be accomplished by pulling the Rapid7 Kubernetes Monitor from DockerHub, deploy this to each cluster, and performing a few configuration steps. Once configured, data will appear in the Container Security section of InsightVM.
Viewing Kubernetes data
After the monitor is deployed and configured, users will see Kubernetes data in the following areas of the ..