Rumble 2.0 Automation, Subnet Discovery, ServiceNow, and More!

|
Updated

Rumble Network Discovery 2.0 #

Rumble 2.0 is now live with alert and asset automation via the Rules Engine, ridiculously fast scans with subnet discovery, cross-organization management via the Account API, support for ServiceNow CMDB integration, an automated query dashboard, self-hosting support, and much more!

Read on for the full details.

Proactively respond to events and network changes #

The Rules Engine in Rumble 2.0 allows you to monitor events and query results and trigger alerts or asset modifications as a result. Rules can be created to detect offline runZero Explorers, create alerts for failed logins, notify you of assets matching a specific query, and automatically tag assets that meet specific criteria, like out-of-policy configurations. The Rules Engine is available for both Rumble Professional and Rumble Enterprise users.

Rules Engine

Find all networks in use, fast #

Two new discovery options, subnet ping and host ping, enable fast discovery of massive IP ranges. The subnet ping option optimizes the discovery to only scan /24 segments with at least one responsive host. The host ping option uses a smaller set of probes to identify active systems before running the full discovery scan. Together these options can help quickly identify all reachable private IP space within an organization. Sparsely populated /16s can be scanned in as little as 5 minutes. This feature is available for Rumble Enterprise users.

Discovery prescan modes

Track critical query results on the dashboard #

Looking for end-of-life operating systems? Policy variances? Service exposure? Automated queries help you keep track of critical issues. To try this feature, turn on the Automatic option in the Query Editor, and the query will run after every scan with the latest match count shown on the dashboard. This feature is available for Rumble Enterprise users.

Automated queries

Get runZero data into ServiceNow CMDB #

IT programs rely on CMDBs for accurate and reliable data. That data is only as good as the systems it comes from. With Rumble, your inventory is comprehensive and always accurate. Our ServiceNow integration means you can bring our trusted data into your CMDB, giving you better and more complete visibility into your environment. The 2.0 release includes both a CSV and JSON API designed to export your Rumble data into ServiceNow's CMDB through the Integration Hub ETL. This feature is available for Rumble Enterprise users.

Total automation via the Account API #

Streamline and automate your cross-organization management tasks. Rumble 2.0 introduces an Account API that lets you manage organizations, users, scans, and deployed runZero Explorers. Superusers can provision an account API key from the account settings page in the Rumble Console. This feature is available for Rumble Enterprise users.

Rumble Agents are now runZero Explorers #

If you've been using Rumble for a while, you're probably loving the ease of deployment of our lightweight scan agents. Some of our new users got confused with this name, thinking that agents had to be installed on every machine (it's just one per network). To ensure that Rumble's capabilities were clear to users, we wanted to rename the agent to something that more accurately described what it does. They're not host-based agents, but more like network explorers – hence the new name: runZero Explorers.

For the most part, we've renamed agents to explorers across the UI and website, and we've moved the agent-related capabilities to the Deploy menu in the Rumble Console, including access to the CLI runZero Scanner. However, product APIs and search syntaxes continue to support the "agents" name for keywords and parameters, but these will migrate to the new name in a future release. Keep an eye out for these changes.

Rumble Cloud or self-hosted deployment #

Whether you need a fully hosted, SaaS platform or a self-hosted option, we've got you covered. Most of our customers are on our fully hosted option, but the self-hosted version of the Rumble platform is now available for beta testing for customers who have an enterprise license. If you're interested in trying this option out, reach out to your account manager or support representative.

Release Notes #

Read the release notes to view all the updates and improvements in Rumble 2.0.

Don't have access to Rumble yet? Sign up for a free trial to try out these new capabilities.

Written by HD Moore

HD Moore is the founder and CEO of runZero. Previously, he founded the Metasploit Project and served as the main developer of the Metasploit Framework, which is the world's most widely used penetration testing framework.

More about HD Moore
Subscribe Now

Get the latest news and expert insights delivered in your inbox.

Welcome to the club! Your subscription to our newsletter is successful.


Related Articles

runZero Insights
Taming the Typhoons: How runZero Keeps You Ahead of State-Sponsored Cyber Threats
China's Typhoon cyber attacks are evolving, but runZero helps you stay one step ahead with unmatched visibility and proactive defense.
runZero Insights
Ensure compliance with DORA’s ICT risk framework using runZero
Learn how to uncover unmanaged and unknown assets— including IT, OT, and IoT— to meet DORA's hidden risk requirements using runZero.
Life at runZero
Employee Spotlight: Doug Markiewicz
Doug Markiewicz is a strategic Customer Success Engineer with a passion for solving complex cybersecurity problems. Learn more about his journey as...
runZero Insights
Evolving from IT to IoT: Flax Typhoon preyed on the lesser knowns
A look at Flax Typhoon's latest operations, and how runZero’s unknown and IoT asset visibility can help calm the storm for security teams.

See Results in Minutes

Get complete visibility into IT, OT, & IoT — without agents, credentials, or hardware.

© Copyright 2024 runZero, Inc. All Rights Reserved