Metasploit Framework
Featured💥 Exploitation · Ruby
The Metasploit Framework is the world's most widely used penetration testing software. It helps security teams verify vulnerabilities, manage security assessments, and improve security awareness. Metasploit provides a comprehensive environment for writing, testing, and executing exploit code against remote targets. It includes over 2,300 exploits, 1,100 auxiliary modules, 400 post-exploitation modules, and 600 payloads including Meterpreter. The framework supports every phase of a penetration test from reconnaissance to post-exploitation.
Installation
installer (recommended)
$ curl https://raw.githubusercontent.com/rapid7/metasploit-omnibus/master/config/templates/metasploit-framework-wrappers/msfupdate.erb > msfinstall && chmod 755 msfinstall && ./msfinstallapt (Kali)
$ sudo apt install metasploit-frameworkdocker
$ docker pull metasploitframework/metasploit-frameworkUse Cases
- Exploit development and testing
- Penetration testing and security assessments
- Post-exploitation and lateral movement
- Payload generation with msfvenom
- Vulnerability verification and validation
- Red team operations and adversary simulation
Tags
Details
- Category
- 💥 Exploitation
- Language
- Ruby
- Repository
- rapid7/metasploit-framework
Platforms
Alternatives & Comparisons
More in Exploitation
BloodHound
GoActive Directory attack path mapping. Visualizes privilege escalation paths using graph theory.
Impacket
PythonCollection of Python classes for working with network protocols. Essential for Windows/AD pentesting.
CrackMapExec
PythonSwiss army knife for pentesting Active Directory. SMB, LDAP, MSSQL, WinRM enumeration and exploitation.
Evil-WinRM
RubyUltimate WinRM shell for pentesting. Upload/download, in-memory PowerShell, DLL injection, pass-the-hash.
Covenant
C#.NET C2 framework. Collaborative, web-based interface for red team operations and implant management.
Sliver
GoOpen-source C2 framework by BishopFox. mTLS, HTTP(S), DNS, WireGuard implants with multi-operator support.