Infoblox’s global team of threat hunters uncovers a DNS operation with the ability to bypass traditional security measures and control the Great Firewall of China. Read about “Muddling Meerkat” and the many other threat actors discovered by Infoblox Threat Intel here.


This is an open group. Sign in and click the "Join Group" button to become a group member and start posting.
[ Edited ]
New Member
Posts: 10
Registered: ‎06-24-2019
New Member
Posts: 12



The Infoblox and Rapid7 Nexpose/InsightVM integration enables security operations teams to automate site management and perform scans as a response to DNS security events (such as malicious DNS requests and/or DNS Exfiltration detection) and/or when new devices connect to a network.


These updated templates accomodate for recent changes to the Rapid7 API that cause previous templates to no longer work with newer versions of Rapid7, starting with v6.5. Login and Logout templates are no longer required. 


All other functionality, requirements, deployment instructions and Extensible Attributes found in the original post remain the same. There you can also find an overview of the integration, deployment guide, demo video, EA requirements and older versions of the templates that work with older versions of Rapid7.

Showing results for 
Search instead for 
Did you mean: