Home page logo
/

Metasploit

Metasploit took the security world by storm when it was released in 2004. It is an advanced open-source platform for developing, testing, and using exploit code. The extensible model through which payloads, encoders, no-op generators, and exploits can be integrated has made it possible to use the Metasploit Framework as an outlet for cutting-edge exploitation research. It ships with hundreds of exploits, as you can see in their list of modules. This makes writing your own exploits easier, and it certainly beats scouring the darkest corners of the Internet for illicit shellcode of dubious quality. One free extra is Metasploitable, an intentionally insecure Linux virtual machine you can use for testing Metasploit and other exploitation tools without hitting live servers.

Metasploit was completely free, but the project was acquired by Rapid7 in 2009 and it soon sprouted commercial variants. The Framework itself is still free and open source, but they now also offer a free-but-limited Community edition, a more advanced Express edition ($3,000 per year per user), and a full-featured Pro edition ($15,000 per user per year). Other paid exploitation tools to consider are Core Impact (more expensive) and Canvas (less).

The Metasploit Framework now includes an official Java-based GUI and also Raphael Mudge's excellent Armitage. The Community, Express, and Pro editions have web-based GUIs. For downloads and more information, visit the Metasploit homepage.

Popularity #2, 3
Rating ★★★★ (5)
Latest release 4.8.2
Dec. 12, 2013
(4 months ago)
Homepage/Download
Wikipedia
Outdated/incomplete?
★★★★★ 
 80%
★★★★ 
 0%
★★★ 
 0%
★★ 
 0%
★ 
 20%
Screenshots

Comments

no rating eternalnewbie

Macuser you can use whith Kali linux, install in your Mac or use Virualbox.

no rating a000

How could it be sold for money yet still depend on free community contribution?

Couldn't figure out.

Ray Dios Haque

This was once a thin and useful product. It has been become a bloated, commercialized, and over-priced pile of cow dung. Thank you @stake for ruining *yet another* formerly useful product!

no rating MacUser

There is no longer a download for MAC? Did they stop supporting it or is it just hidden?

no rating Joomla Blog

I've heard a lot about Metasploit but didn't use. It sounds interesting and will want to use it.

★★★★★ brk

the most powerful! hope to develop more free module ! more free module!

★★★★★ ritesh singh

Metasploit Change the way of exploiting.i want to say something about metasploit "Metasploit Team Work So Hard for Upgrading this to make it More Effective and useful ."

★★★★★ Jason Hellenthal

Certainly a Top 5 Component.

★★★★★ Palgye9

This is it, the one tools that I place more faith in than some of the commercial products out there.

Your comment

Along with your rating, you can use the comment form to post a review, tutorial, tips and tricks, or anything else others will find useful. If you develop this software (or work for the company), please don't rate it. You may leave a clarifying comment as long as you state your affiliation and don't specify a star rating (just leave it as “No rating”).

 
 
  (will not be shown, will not be spammed)
  (web site, Twitter, Facebook, etc.)
(At least 50 characters. No markup is allowed. URLs will be made into links.)
 What is the answer to the ultimate question of life the universe and everything? (antispam)

Feed for updates.

Home

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]