This site uses cookies for anonymized analytics. For more information or to change your cookie settings, view our Cookie Policy.

The world’s most used penetration testing framework

Knowledge is power, especially when it’s shared. A collaboration between the open source community and Rapid7, Metasploit helps security teams do more than just verify vulnerabilities, manage security assessments, and improve security awareness; it empowers and arms defenders to always stay one step (or two) ahead of the game.

Get Metasploit

Open Source




Commercial Support


Free Trial


Get visibility into your network with Rapid7's InsightVM
30-Day Trial

Recent Blog Posts

Fri May 20 2022

Metasploit Weekly Wrap-Up

Zyxel firewall unauthenticated command injection This week, our very own Jake Baines added an exploit module that leverages CVE-2022-30525, an unauthenticated remote command injection vulnerability in Zyxel firewalls with zer...

Fri May 13 2022

Metasploit Weekly Wrap-Up

Spring4Shell module Community contributor vleminator added a new module which exploits CVE-2022-22965—more commonly known as "Spring4Shell." Depending on its deployment configuration, Java Spring Framework versions ...

Fri May 06 2022

Metasploit Wrap-Up

Three new exploit modules, and an update for Windows 11 support...

View More Metasploit Blog Posts

View All

Related Products & Projects


Rapid7’s solution for advanced vulnerability management analytics and reporting.

Free Trial


Rapid7’s incident detection and response solution unifying SIEM, EDR, and UBA capabilities.

Free Trial


Virtual machines full of intentional security vulnerabilities. Exploit at will!

Download Now