This site uses cookies for anonymized analytics. For more information or to change your cookie settings, view our Cookie Policy.

The world’s most used penetration testing framework

Knowledge is power, especially when it’s shared. A collaboration between the open source community and Rapid7, Metasploit helps security teams do more than just verify vulnerabilities, manage security assessments, and improve security awareness; it empowers and arms defenders to always stay one step (or two) ahead of the game.

Star
32,722

Get Metasploit

Open Source

Metasploit
Framework

Download

Latest

Commercial Support

Metasploit
Pro

Download

Latest

Get visibility into your network with Rapid7's InsightVM
30-Day Trial

Compare Features
View More Projects
View All Modules

Latest Metasploit Modules

Title Date Author
Land #18962, rancher audit logs information leak new post module: rancher audit logs sensitive information leak (CVE-2023-22649) Apr 10, 2024 smcintyre-r7
Land #19064, SNMP TCP support Apr 10, 2024 smcintyre-r7
Land #19022, Add MySQL Arch & Platform detection by query Apr 10, 2024 cgranleese-r7
Land #19069, Update create session default values Apr 09, 2024 zgoldman-r7
Land #19051, Add the Shadow Credentials module Apr 09, 2024 smcintyre-r7
Land #19056, Don't close sockets that we're using for sessions Apr 08, 2024 cgranleese-r7
Contribute a Module
View All Pull Requests

Latest Pull Requests

Name Labels Author
Update README.md Cachiman
Update create session default values library , bug , rn-fix adfoster-r7
remove db_create mention rn-no-release-notes jalvarezz13
SNMP TCP support module , enhancement , rn-enhancement nrathaus
Fix empty banner (never set) issue module , bug , rn-fix nrathaus
Don't close sockets that we're using for sessions rn-fix dwelch-r7
Create a Pull Request

Recent Blog Posts

Fri Apr 12 2024

Metasploit Weekly Wrap-Up 04/12/24

Account Takeover using Shadow Credentials The new release of Metasploit Framework includes a Shadow Credentials module added by smashery used for reliably taking over an Active Directory user account or computer, and letting ...

Fri Apr 05 2024

Metasploit Weekly Wrap-Up 04/05/2024

New ESC4 Templates for AD CS Metasploit added capabilities for exploiting the ESC family of flaws in AD CS in Metasploit 6.3. The ESC4 technique in particular has been supported for some time now thanks to the ad_cs_cert_temp...

Fri Mar 29 2024

Metasploit Weekly Wrap-Up 03/29/2024

Metasploit adds three new exploit modules including an RCE for SharePoint....

View More Metasploit Blog Posts

Metasploit in Action

Featured Video


View More Metasploit Videos
View All Contributors

Top Contributors

Last 12 Months

All Time

Contribute to Metasploit
View All

Related Products & Projects

InsightVM

Rapid7’s solution for advanced vulnerability management analytics and reporting.

Free Trial

InsightIDR

Rapid7’s incident detection and response solution unifying SIEM, EDR, and UBA capabilities.

Free Trial

Metasploitable

Virtual machines full of intentional security vulnerabilities. Exploit at will!

Download Now