About Rapid7
Rapid7 is a comprehensive cybersecurity platform that provides vulnerability management, incident detection and response, application security testing, and log management. Connecting Rapid7 to Serval enables automated security operations, incident response workflows, and real-time threat detection directly from chat.
What the Rapid7 integration enables
| Capability | Description |
|---|
| Security Operations | Access vulnerability data, manage security incidents, and automate threat response |
| Automation workflows | Streamline vulnerability scanning, incident investigation, log analysis, and security orchestration |
- InsightAppSec: Application Security API
- InsightIDR: Incident Detection and Response API
- InsightOps: Log Management API
- InsightConnect: Automation and Orchestration API
- Insight Account: Account Management API
Rapid7 Configuration
Create an API Key
- Log into your Rapid7 Insight Platform
- Click the Gear Icon in the top right corner
- Click API keys in the dropdown menu
- Select either User API keys or Organization API keys
- Click Generate new key
- Provide a descriptive name for your API key
- Copy and save the API key securely - you won’t be able to view it again
The same API key works across all Rapid7 services in your region.
Determine Your API Domain
Your API domain depends on your Rapid7 region:
| Region | API Domain |
|---|
| United States | us.api.insight.rapid7.com |
| Europe | eu.api.insight.rapid7.com |
| Canada | ca.api.insight.rapid7.com |
| Australia | au.api.insight.rapid7.com |
| Asia Pacific | ap.api.insight.rapid7.com |
Serval Configuration
- In Serval go to Apps → Available → Rapid7 → Connect
- Enter your configuration:
- API Domain: Your regional domain from the table above (e.g.,
us.api.insight.rapid7.com)
- API Key: The API key you generated in the previous steps
- Click Save
You can rotate the API key at any time—just reconnect the app to update the value in Serval to keep workflows running.
