rapid7 logo


Metasploit Framework (by rapid7)


Basic Metasploit repo stats
3 days ago

rapid7/metasploit-framework is an open source project licensed under GNU General Public License v3.0 or later which is an OSI approved license.

Metasploit Alternatives

Similar projects and alternatives to Metasploit

  • GitHub repo exploits

  • GitHub repo html

    HTML Standard

  • GitHub repo wrangler

    🤠 wrangle your cloudflare workers

  • GitHub repo CSS-Exchange

    Exchange Server support tools and scripts

  • GitHub repo php-reverse-shell

  • GitHub repo GadgetToJScript

    A tool for generating .NET serialized gadgets that can trigger .NET assembly load/execution when deserialized using BinaryFormatter from JS/VBS/VBA based scripts.

  • GitHub repo dgit

    dgit adds decentralized ownership to git - powered by Tupelo DLT and Skynet

  • GitHub repo disable-webassembly

    Browser hacks to disable WebAssembly (WASM)

  • GitHub repo printfify

    printf(1)-based encoder

NOTE: The number of mentions on this list indicates mentions on common posts. Hence, a higher number means a better Metasploit alternative or higher similarity.


Posts where Metasploit has been mentioned. We have used some of these posts to build our list of alternatives and similar projects - the last one was on 2021-04-12.
  • Does anyone have a walk through for using CVE-2021-3156?
    reddit.com/r/hacking | 2021-04-13
    Always worth checking for metasploit plugins: https://github.com/rapid7/metasploit-framework/blob/master/data/exploits/CVE-2021-3156/exploit.c
  • Chrome zero-day released on GitHub (fixed on V8 but still works on latest)
    news.ycombinator.com | 2021-04-12
    Couldn't find the PR you're referring to, unless it was this one https://github.com/rapid7/metasploit-framework/pull/15007 which was added by the same author as the OP, but looks like a different exploit as far as I can tell?
    news.ycombinator.com | 2021-04-12
    I believe it's the same exploit, check out this reference here [0], and you should see the JS snippet


  • Need better sources online to understand the type of malwares detected by antiviruses
    -- www.metasploit.com
  • What have I done
    Lol okay skiddo
  • I need help - Insufficient Permissions in Metasploit even after becoming Root
    reddit.com/r/oscp | 2021-04-01
    Proxy the exploit through Burp to see what it's doing that triggered that response. Going by the code here https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/webapp/wp_slideshowgallery_upload.rb
  • Ubuntu 20.10 and postgresql (metasploit)
    reddit.com/r/Ubuntu | 2021-03-16
    nstalling Metasploit on Linux / macOS:
  • Bypassing Windows Defender help!
    reddit.com/r/HowToHack | 2021-03-12
    You can find some Ruby code by Rapid7 here, it should be possible, albeit nontrivial, to adapt it for a standalone encryption for an executable.
  • Microsoft's GitHub under fire after disappearing proof-of-concept exploit for critical Microsoft Exchange vuln - Funny how code that targets Redmond vanishes while tons of others menacing other vendors remain
    Metasploit says hi: (https://github.com/rapid7/metasploit-framework)
  • You've been hit by / You've been struck by / An Exchange Exploit - So now what?
    reddit.com/r/sysadmin | 2021-03-07
    If you're looking for a place to start in offensive security, I'd recommend playing with some tools like Metasploit, Empire, Responder, Impacket, and Mimikatz in your home lab. This blog is also a great resource for understanding Active Directory security from both an offensive and defensive perspective.
  • wp_admin_shell_upload
    reddit.com/r/HowToHack | 2021-02-14
  • Taken from Mr. Robot.
  • Treba mi pomoć oko metasploita
    probaj ovo https://github.com/rapid7/metasploit-framework/issues/11139#issuecomment-448197519
  • Hi fellas! I’m learning Metasploit with Kali Linux and I’m looking for a guide for Mestasploit6. I’ve found several for Metasploit5. If I use those, what differences should I expect between 5 and 6?
    It's hard to say without knowing what modules you're referring to. There was an issue with the [MS08-067](https://github.com/rapid7/metasploit-framework/pull/14177) exploit and [MS17-010](https://github.com/rapid7/metasploit-framework/pull/14290), but both have been fixed for quite a while now. If you're still having issues you should open a ticket.
  • Help: Academy: Linux Buffer Overflows - Stuck at Determine the Length for Shellcode
    Check pattern_create.rb and pattern_offset.rb