Access Management , Application Security , Cloud Security

Rapid7 Acquires Open-Source Community Project Velociraptor

In Other M&A Activity, Zscaler to Boost Cloud Capabilities by Buying Trustdome
Rapid7 Acquires Open-Source Community Project Velociraptor

Rapid7 has acquired Velociraptor, an open-source, endpoint-monitoring, digital forensics and incident response organization and professional community that it will continue to operate as a stand-alone entity while Rapid7 adopts some of its technology.

See Also: The State of Organizations' Security Posture as of Q1 2018

The security analytics and automation company, which reported the deal on Wednesday, said it will use Velociraptor's technology to enhance its incident response capabilities. Rapid7 says it will continue to help support and build the Velociraptor open-source community.

"We strongly believe that partnership with the open-source community is one of the most important ways to move the security industry forward and make the digital world a safer place for everyone," says Richard Perkett, senior vice president of detection and response at Rapid7.

Rapid7 has acquired the rights to the Velociraptor IP, which is made available under an open-source license. Velociraptor is responsible for supporting the community of developers and analysts who use and contribute to the project. Rapid7 is taking that over and will work to support the growth of the community, the company says.

Neither party indicated how many participants are currently involved in Velociraptor's open-source community.

Rapid7 says it has no plan to monetize Velociraptor, but Sam Adams, vice president of engineering at Rapid7, says the company will utilize Velociraptor's technology.

"We also plan to embed the Velociraptor Project into the Rapid7 Insight platform, allowing our customers to benefit from this amazing technology and community," he says.

The companies did not reveal the financial details, but Rapid7 notes the acquisition is unlikely to affect the company's financial results for 2021.

Velociraptor Capabilities

The Velociraptor open-source project was created in 2020 and is operated by its founder, Mike Cohen, formerly of Google's incident response team. He will move over to Rapid7 and join its detection and rapid response team, where he will continue his work to build Velociraptor's community, Rapid7 says.

Cohen says he created the site to give cybersecurity practitioners a way to hunt and monitor activities across fleets of endpoints for specific artifacts as they respond to cyber incidents.

Adams notes the tools Velociraptor provides help incident response teams rapidly collect and examine artifacts from across a network and deliver forensic detail following a security incident. In the event of an incident, he says, an investigator can use Velociraptor agents to hunt for malicious activity, run targeted collections, perform file analysis and pull large data samples.

"As a first step to integrating Velociraptor into the Rapid7 Insight platform, we've already embedded Velociraptor's endpoint data collection capabilities into our Insight agent, saving critical time as our MDR team pivots from monitoring their environment to responding to an incident," he says.

Zscaler and Trustdome

In other recent M&A activity, the cloud security firm Zscaler on April 15 agreed to acquire the cloud infrastructure entitlement management firm Trustdome.

Zscaler says it will use the Trustdome acquisition to strengthen the company's cloud protection capabilities by bringing on technology that will enable its customers to enforce least privilege principles across multi-cloud environments.

In addition, Zscaler says acquiring an Israel-based firm will increase the company's global footprint.

The deal is expected to close before Zscaler's third fiscal quarter ends on April 30. Financial details of the acquisition were not released.


About the Author

Doug Olenick

Doug Olenick

Former News Editor, ISMG

Olenick has covered the cybersecurity and computer technology sectors for more than 25 years. Prior to his stint as ISMG as news editor, Olenick was online editor for SC Media, where he covered every aspect of the cybersecurity industry and managed the brand's online presence. Earlier, he worked at TWICE - This Week in Consumer Electronics - for 15 years. He also has contributed to Forbes.com, TheStreet and Mainstreet.




Around the Network

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing databreachtoday.co.uk, you agree to our use of cookies.