This site uses cookies for anonymized analytics. For more information or to change your cookie settings, view our Cookie Policy.

The world’s most used penetration testing framework

Knowledge is power, especially when it’s shared. A collaboration between the open source community and Rapid7, Metasploit helps security teams do more than just verify vulnerabilities, manage security assessments, and improve security awareness; it empowers and arms defenders to always stay one step (or two) ahead of the game.

Star
17,060

Get Metasploit

Open Source

Metasploit
Framework

Download

Latest

Commercial Support

Metasploit
Pro

Free Trial

Latest

Compare Features
View More Projects
View All Modules

Latest Metasploit Modules

Title Date Author
Land #12011, Add module for cve-2018-8453 Jul 15, 2019 wchen-r7
Land #12070, Add module for CVE-2019-0841 Jul 15, 2019 jrobles-r7
Land #12086, joomla_registration_privesc check fix Jul 13, 2019 wvu-r7
Land #12062, Add Laravel PHP RCE CVE-2018-15133 Jul 12, 2019 jrobles-r7
Land #12041, Add Xymon useradm Command Execution module Jul 11, 2019 asoto-r7
Land #12072, cmd_psh_payload arch string fixes Jul 10, 2019 wvu-r7
Contribute a Module
View All Pull Requests

Latest Pull Requests

Name Labels Author
Backport `search -u`,`use` and `alias` to 4.x jmartin-r7
Exploit Ahsay backup 7.x - 8.1.1.50 file upload Wietsman
Restore unknown_command passthrough to the shell bug , library , msfconsole wvu-r7
Minor fix for aux joomla_registration_privesc enhancement , module aushack
Fix is_payload_compatible? for nil payloads bug , easy , library wvu-r7
Gracefully handle passthrough commands bug , easy , msfconsole acammack-r7
Create a Pull Request

Recent Blog Posts

Mon Jul 15 2019

Metasploit Open Source Office Hours: Vegas 2019

The Metasploit crew at Rapid7 is headed out to Las Vegas for DEF CON 27, bringing a new incarnation of the Open Source Security Meetup (OSSM) with us! We will have a Metasploit Suite at Bally’s this year, where we’ll be host...

Fri Jul 12 2019

Metasploit Wrap-Up

We hope our American friends had a wonderful Fourth of July weekend! There are no new modules this week, so instead we're featuring two enhancements that fix some long outstanding Framework bugs. Check out last week’s holiday...

Fri Jul 05 2019

Metasploit Wrap-Up

Injecting the Time Machine From contributor timwr comes a new module targeting Time Machine on macOS 10.14.3 and earlier. Specifically, the tmdiagnose binary for these vulnerable versions suffers from a command injection vul...

View More Metasploit Blog Posts

Metasploit in Action

Featured Video


View More Metasploit Videos
View All Contributors

Top Contributors

Last 12 Months

All Time

Contribute to Metasploit
View All

Related Products & Projects

InsightVM

Rapid7’s solution for advanced vulnerability management analytics and reporting.

Free Trial

InsightIDR

Rapid7’s incident detection and response solution unifying SIEM, EDR, and UBA capabilities.

Free Trial

Metasploitable

Virtual machines full of intentional security vulnerabilities. Exploit at will!

Download Now