# Metasploit Reviews **Vendor:** Rapid7 **Category:** [Penetration Testing Tools](https://www.g2.com/categories/penetration-testing-tools) **Average Rating:** 4.6/5.0 **Total Reviews:** 55 ## About Metasploit Metasploit is a comprehensive penetration testing platform developed by Rapid7, designed to help security professionals identify, exploit, and validate vulnerabilities within their networks. By simulating real-world attacks, Metasploit enables organizations to assess their security posture and enhance their defenses against potential threats. Key Features and Functionality: - Extensive Exploit Library: Access to a vast, regularly updated database of over 1,500 exploits and 3,300 modules, allowing users to simulate a wide range of attack scenarios. - Automated Exploitation: Features like Smart Exploitation and automated credential brute-forcing streamline the penetration testing process, increasing efficiency and accuracy. - Post-Exploitation Modules: Over 330 post-exploitation modules enable testers to assess the impact of a successful breach and gather critical information from compromised systems. - Credential Testing: Ability to run brute-force attacks against more than 20 account types, including databases, web servers, and remote administration tools, to uncover weak or reused passwords. - Integration Capabilities: Seamless integration with other Rapid7 products, such as InsightVM and Nexpose, facilitates closed-loop vulnerability validation and remediation prioritization. Primary Value and Problem Solving: Metasploit empowers organizations to proactively identify and address security weaknesses before malicious actors can exploit them. By simulating real-world attacks, it provides valuable insights into potential vulnerabilities, enabling security teams to prioritize remediation efforts effectively. This proactive approach enhances overall security awareness, reduces the risk of breaches, and ensures compliance with industry standards and regulations. ## Metasploit Pros & Cons **What users like:** - Users value the **wide-ranging pentesting efficiency** of Metasploit, benefiting from its diverse payload creation capabilities. (2 reviews) - Users highlight the **expertise** of Metasploit for creating diverse payloads and exploiting systems effectively. (1 reviews) **What users dislike:** - Users find the **complex setup** of Metasploit challenging, suggesting that an automation feature could improve usability. (1 reviews) ## Metasploit Reviews ### 1. Metasploit: the master blaster **Rating:** 5.0/5.0 stars **Reviewed by:** Anamta Z. | Security professional, Small-Business (50 or fewer emp.) **Reviewed Date:** February 09, 2025 **What do you like best about Metasploit?** It is not just a tool but a toolkit with all the required and extra penetration testing suites. **What do you dislike about Metasploit?** I can't hate this tool. This is just a wow. **What problems is Metasploit solving and how is that benefiting you?** So basically it provides you a lot of exploits and payloads which you can use on the target. And all this is coming up with a single installation. ### 2. The Best Exploitation framework **Rating:** 5.0/5.0 stars **Reviewed by:** Abhinav N. | Cyber Security Analyst, Computer & Network Security, Small-Business (50 or fewer emp.) **Reviewed Date:** December 29, 2024 **What do you like best about Metasploit?** metasploit is the best tool for creating payloads and exploitating systems it is the best tool for hackers. we can create different types of payloads with this framework ,like apk,exe,pdf etc.. **What do you dislike about Metasploit?** its hard to install and if it has a automation feature it will be better **What problems is Metasploit solving and how is that benefiting you?** it hepls me to build payloads and exploit systems to find weakness ### 3. Not Just For Script Kiddies **Rating:** 4.0/5.0 stars **Reviewed by:** Scott H. | Information Security Engineer, Small-Business (50 or fewer emp.) **Reviewed Date:** August 10, 2023 **What do you like best about Metasploit?** I personally enjoy using Metasploit for the easy-to-use interface. This is critical when I require a demonstration of the actual vulnerability being exploited to a less-technical professional audience. **What do you dislike about Metasploit?** Nothing, personally. But for some Offensive Security professionals using/discussing Metasploit in a penetration testing setting can be polarizing. From both a custom tool/developer perspective and practical standpoint. **What problems is Metasploit solving and how is that benefiting you?** Importing and regular updating of recent vulnerabilities, bridging the "visual gap" for executives and professionals with command line attack scenarios, and coding a LOT that I don't have to 😁 ### 4. One of the best tool for VAPT/WAPT **Rating:** 5.0/5.0 stars **Reviewed by:** Yasir D. | Security Consultant, Small-Business (50 or fewer emp.) **Reviewed Date:** February 22, 2023 **What do you like best about Metasploit?** What I enjoy best about Metasploit is that it contains an extensive database of exploits that can be tailored to match the individual needs of the user. Metasploit can also be readily connected with other security tools such as vulnerability scanners, network analyzers, and IDS/IPS systems. **What do you dislike about Metasploit?** One aspect of Metasploit that I dislike is its complexity and false positives for Complexity: For beginners, Metasploit might be complex and difficult to use, Metasploit, like any other security testing tool, can generate false positives, resulting in lost time and effort exploring non-existent vulnerabilities. **What problems is Metasploit solving and how is that benefiting you?** Security professionals can use Metasploit to discover vulnerabilities in target systems, analyze the efficiency of their defenses, and build effective countermeasures to future threats. This adds to a better overall security posture and reduces the risk of cyber attacks. ### 5. Metasploit review **Rating:** 5.0/5.0 stars **Reviewed by:** Abhishikt V. | Security Engineer 2, Mid-Market (51-1000 emp.) **Reviewed Date:** December 06, 2022 **What do you like best about Metasploit?** As a Pen-tester, metasploit is the handy tool for any post exploitation lateral movement. The modules available are perfect and easy to use. only requires LHS & RHS. **What do you dislike about Metasploit?** User interface is not as good & the enhancement to GUI needs to be done. The CLI is good but when it comes to standalone GUI execution, its not an easy and is cumbersome. **What problems is Metasploit solving and how is that benefiting you?** Its aiding in exploitation setup, and gaining access to the systems. User can search for the available modules & the required parameters passing is enough for exploit. ### 6. Think about Penetration Testing, Metasploit is the best thing **Rating:** 5.0/5.0 stars **Reviewed by:** Manish K. | Operations Manager, Mid-Market (51-1000 emp.) **Reviewed Date:** December 06, 2022 **What do you like best about Metasploit?** Easy UI interface, reports are well elaborative and easy to understand, Tests are well advanced as per the latest vulnerabilities in the market and very handy to use the platform. **What do you dislike about Metasploit?** The tests run for a long period, description of the vulnerabilities can be more elaborative, the reporting dashboard can be more descriptive along with good colour combinations **What problems is Metasploit solving and how is that benefiting you?** For internal VAPT, Metasploit is the best tool to identify vulnerabilities in our product and our tech team efficiently patches the discovered bugs. This helps to maintain our ISO 27001 certification ### 7. Good but for beginners **Rating:** 3.5/5.0 stars **Reviewed by:** Priyanshu K. | Software Engineer, Small-Business (50 or fewer emp.) **Reviewed Date:** December 07, 2022 **What do you like best about Metasploit?** Ease of access of exploits, if you know about a cve of vuln name, it is effortless to use exploits. **What do you dislike about Metasploit?** Metasploit does not explain what it is doing and what is going on with the exploit. **What problems is Metasploit solving and how is that benefiting you?** Exploits are scattered all over the internet sometimes it is easy to find, sometimes it is not, Metasploit gathers it all in one software. ### 8. Best Open source and Pentation Testing Tool **Rating:** 5.0/5.0 stars **Reviewed by:** Adeel S. | Bug hunter, Mid-Market (51-1000 emp.) **Reviewed Date:** March 16, 2022 **What do you like best about Metasploit?** Metasploit pre-installed in kali Linux and made by rapid7, this is most of the time produce surprized results, which is helpful for penetration. A lot of exploits are available for exploitation and timely update by rapid7. This is very useful, especially in large engagements and Metasploit is a solid tool for exploiting and automating your work with more accuracy. **What do you dislike about Metasploit?** Sometimes searching for the right module and exploit is a very difficult and time-taking activity. Sometimes not updating the database for exploit the need to find out exploit from other sources. **Recommendations to others considering Metasploit:** One of the best tools, to perform Penetration Testing, gives you a full view from exploitation to target vulnerability. I'll recommend this tool for those who want to start a career in Ethical Hacking. My next recommendation please visit the Offensive security official web to learn different techniques and hands-on experience. Please use this product with extra care because of your wrong and mismatch exploit, which accidentally cause a service/website/application to be unavailable. **What problems is Metasploit solving and how is that benefiting you?** In starting days, I'm using Metasploit for ethical hacking practice on different forms like trackmen, HTB and solve many CTF. Now I'm using Metasploit Penetration Testing engagements and exploitation. The best tool for Pentesting ever made, integrated with Kali Linux. ### 9. Best software **Rating:** 4.5/5.0 stars **Reviewed by:** Vamsi Krishna G. | Senior software Engineer, Small-Business (50 or fewer emp.) **Reviewed Date:** December 08, 2022 **What do you like best about Metasploit?** The way security vulnerabilities are shown up **What do you dislike about Metasploit?** There aren't any features which I didn't like **What problems is Metasploit solving and how is that benefiting you?** It checks for vulnerability in our systems and gives recommendation if possible. This is benefiting many ### 10. Excellent experience with Metasploit framework. **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Mid-Market (51-1000 emp.) **Reviewed Date:** December 09, 2022 **What do you like best about Metasploit?** Exploits, Payloads and Auxilliary portions plays a vital role in Metasploit and it keeps my work easy during PT **What do you dislike about Metasploit?** Mapping the framework with Attack Mitre and allowing an attacker to automate the attack path can be implemented. There is no such specific dislikes so far **What problems is Metasploit solving and how is that benefiting you?** Metsploits solves information gathering, nmap results and other gathered data handling and it saves lot of time. ### 11. The most used exploitation platform **Rating:** 3.5/5.0 stars **Reviewed by:** Verified User in Computer & Network Security | Mid-Market (51-1000 emp.) **Reviewed Date:** October 31, 2022 **What do you like best about Metasploit?** Metasploit makes exploitation fairly easy to use. The Meterpreter module makes windows post-exploitation way easier. You can develop your own payloads and exploits using Ruby. **What do you dislike about Metasploit?** The exploit database is not as update as it should, a lot of the good new exploits are not yet available on Metasploit. Also, the tool can be very noisy sometimes, so if you're trying to be stealthy that might be an issue **What problems is Metasploit solving and how is that benefiting you?** Performing internal/external penetration testing. ### 12. Useful Open Source Pentest Tool **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Computer & Network Security | Mid-Market (51-1000 emp.) **Reviewed Date:** April 26, 2022 **What do you like best about Metasploit?** Metasploit is widely used pentesting tool which is free and it can be used on every platform. Basically it's product of Rapid7 which is used for vulnerability exploitation purpose. It's very helpful tool for people practicing the security exploitation and pentesting. **What do you dislike about Metasploit?** Most of the time its dabtabase is not updating with latest vulnerabilities, so we need to search it from another platform for its usage. Also finding right module for practice is time consuming task. User interface should be improved for metasploit. **What problems is Metasploit solving and how is that benefiting you?** We are facing issue to find proper vulnerability module as it's time consuming. Metasploit provide various modules and payloads for exploitation which can improve the pentesting skills. ### 13. It's very capable and easy to use **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Airlines/Aviation | Small-Business (50 or fewer emp.) **Reviewed Date:** December 07, 2022 **What do you like best about Metasploit?** Gui is simple and it's vast amount of payloads are tremendous **What do you dislike about Metasploit?** Sometime scripting can be complex and difficult **What problems is Metasploit solving and how is that benefiting you?** It's helping to do Penetration testing ### 14. Corner stone for all Pentesting **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Small-Business (50 or fewer emp.) **Reviewed Date:** June 30, 2022 **What do you like best about Metasploit?** Its a corner stone for pentesting career. Its absolutely a must know framework when entering the security field. Alot of the things are still used and practiced today **What do you dislike about Metasploit?** There is nothing to dislike about the framework. It's functional and updated, very easy to use. The learning curve for this framework isnt steep compared to more modern C2 Frameworks **What problems is Metasploit solving and how is that benefiting you?** It makes pentesting easier and feasible without doing everything manually. It is always updated with the most uptodate exploit database which aids in everyday pentesting work ### 15. Best Penetration Testing Software For Finding Security Vulnerability.! **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Computer & Network Security | Small-Business (50 or fewer emp.) **Reviewed Date:** September 15, 2022 **What do you like best about Metasploit?** Metasploit has a huge count of exploits over multiple platforms like android, python, java and more. **What do you dislike about Metasploit?** There is no point in disliking such a best tool. **What problems is Metasploit solving and how is that benefiting you?** It contains multiple payloads and exploits that we can use at our disposal anytime. ### 16. Security Architect advise to use it ;) **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Computer Games | Enterprise (> 1000 emp.) **Reviewed Date:** August 31, 2022 **What do you like best about Metasploit?** Great tool, helped me a lot when I worked as a pentester :) **What do you dislike about Metasploit?** Great job was done! You are doing the right way! **What problems is Metasploit solving and how is that benefiting you?** There was a problem when Metasploit didn't have a docker, but right now the fixed the problem ;) ### 17. Perfect for finding vulnerabilities **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Logistics and Supply Chain | Mid-Market (51-1000 emp.) **Reviewed Date:** December 17, 2021 **What do you like best about Metasploit?** Literally find what you are looking for, specific by issue. Rapid 7 was instrumental in finding all the missed requirements in an older Administration software we needed to retool. **What do you dislike about Metasploit?** If you didn't know what you were looking for, there could be more tool tips, guidance for a user that was new to looking at Pen Test data. **What problems is Metasploit solving and how is that benefiting you?** Re-tooling an older Administration Utility for internal stakeholders. So many things that needed mitigation that having a "list" of vulnerabilities to go through was so helpful. ### 18. Simply amazing and very useful. **Rating:** 4.5/5.0 stars **Reviewed by:** PAWAN G. | Lead, Information Security, Small-Business (50 or fewer emp.) **Reviewed Date:** January 23, 2021 **What do you like best about Metasploit?** Its capability to provide security vulnerabilities and support penetration testing in appreciated and useful. Considering it is an open source community, it is quite impressive. Even Rapid7 is helpful to security teams do more things apart from verifying vulnerabilities, doing security assessments, and improve security awareness and hence training. **What do you dislike about Metasploit?** The GUI just disappoints me, not that much though considering open source tool (free). Sometimes I feel vulnerabilities are not up to date. I am not sure if there is any descriptive documentation around how to use it self train on commands and exploits. It's update are less frequent, which is good and bad. **Recommendations to others considering Metasploit:** Knowledge is power, especially when it’s shared. A collaboration between the open source community and Rapid7, Metasploit helps security teams do more than just verify vulnerabilities, manage security assessments, and improve security awareness; it empowers and arms defenders to always stay one step (or two) ahead of the game. **What problems is Metasploit solving and how is that benefiting you?** As of part of security operations and security enthusiast, I am trying to explore Metasploit in finding security vulnerabilities and support penetration testing, which is appreciated and useful. Considering it is an open source community, it is quite impressive. Even Rapid7 is helpful to security teams do more things apart from verifying vulnerabilities, doing security assessments, and improve security awareness and hence training. It is much better than its other competitors in terms information shown which helps to remediate security vulnerabilities. ### 19. Metasploit Review **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Security and Investigations | Small-Business (50 or fewer emp.) **Reviewed Date:** January 13, 2021 **What do you like best about Metasploit?** This tool is useful to learn and understand vulnerabilities that exist within a system. You are able to learn what exploits and payloads can be used on the vulnerability. I like that it is an automated tool that carries out the exploitation on the system and we are able to see what information is disclosed based on the payload and vulnerability exploited. Great penetration testing tool. I also like that you can perform a vulnerability and discovery scans. **What do you dislike about Metasploit?** One downside to exploit is that the list of exploits may not be up to date. Although Metasploit provides extremely useful documentation, sometimes the explanations are extremely brief and not easy to follow. **Recommendations to others considering Metasploit:** Read the documentation that is provided on the Metasploit webpage. They have extremely useful information from how to set up the tool to how you can choose which exploits and payload to use. There are so many things that you can do with Metasploit so definitely take time to understand all of the features it consists of. This is definitely a tool to consider if you are doing penetration testing. It is customizable and can be used in most operating systems. **What problems is Metasploit solving and how is that benefiting you?** I first learned and used this tool at University. We learned how to find what vulnerabilities exist within the system and what exploits and payloads are available for said vulnerabilities. The benefits of using this tool is that it can tell you the vulnerabilities that exist within the system which can then help you understand ### 20. Metasploit is an excellent pentesting tool! **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Mid-Market (51-1000 emp.) **Reviewed Date:** January 12, 2021 **What do you like best about Metasploit?** I love how its open source and freely available and that it includes an extensive toolset of pentesting tools. Its included freely with Kali Linux on their platforms. **What do you dislike about Metasploit?** I feel that there should be proper documentation for using the exploits and as well as more user friendly CLI commands to run the exploits. Also maybe an auto-update feature would be nice to update the framework. **Recommendations to others considering Metasploit:** Our companys infrastructe has been pentested using Metasploit. Metasploit is one of the top pentesting tools to simulate the attack. Even if you have other vulnerability scanners you can integrate the scanning data it with Metasploit. Its the perfect tool to validate vulnerabilities in your infrastructure. You can also use differeet payloads as per your needs. **What problems is Metasploit solving and how is that benefiting you?** I am currently using Metasploit to run exploits on my current infrastructure machines where I find vulnerabilities and trying to see if the machines are exploitable or not and securing them in case they are exploitable. ### 21. Kris Bowen **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Mid-Market (51-1000 emp.) **Reviewed Date:** January 19, 2021 **What do you like best about Metasploit?** Ease of use when public exploit scripts are not working due to changes from python 2 to python 3 or I run into compiling issues where MSF has a similar exploit. **What do you dislike about Metasploit?** the need to be able to read and understand ruby to the extent that I can change it to python. Overall MSF is a great tool **What problems is Metasploit solving and how is that benefiting you?** Mostly MS17-010 and anything to do with SMB. Impacket and Kali are not playing well together since Kali 2020.1. For instance finding named pipes using python3 is quite difficult but msf does it in seconds. ### 22. Metasploit more than just a exploitation tool **Rating:** 4.5/5.0 stars **Reviewed by:** Shayan M. | Penetration Tester | Red Teamer | CPTE | Hack The Box Player, Mid-Market (51-1000 emp.) **Reviewed Date:** January 14, 2021 **What do you like best about Metasploit?** Definitely it's a all in one tool, I have used metasploit to pivot into different networks did lateral movements etc. Everything is available on it. **What do you dislike about Metasploit?** Searching modules, couldn't find the right module for a particular task. **What problems is Metasploit solving and how is that benefiting you?** The biggest problem that I was facing before was pivoting and session handling but with metasploit I can handle sessions perform privilege escalation, easy pivoting and a lot more ### 23. asdf **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Computer & Network Security | Enterprise (> 1000 emp.) **Reviewed Date:** February 24, 2021 **What do you like best about Metasploit?** <>?:"{}!@#$%^&*()_+ I like that Rapid7 provides the required number of characters. **What do you dislike about Metasploit?** <>?:"{}!@#$%^&*()_+ I like that Rapid7 provides the required number of characters. **Recommendations to others considering Metasploit:** <>?:"{}!@#$%^&*()_+ I like that Rapid7 provides the required number of characters. **What problems is Metasploit solving and how is that benefiting you?** <>?:"{}!@#$%^&*()_+ I like that Rapid7 provides the required number of characters. ### 24. It is usually easy to use if you are familiar with the terminology. **Rating:** 4.0/5.0 stars **Reviewed by:** Ştefan B. | A, Small-Business (50 or fewer emp.) **Reviewed Date:** January 16, 2021 **What do you like best about Metasploit?** I like that I can use multiple sessions at the same time. **What do you dislike about Metasploit?** Maybe there is a possibility to make the default metasploit payload more complex, not so easy to be detected by each AV. To put there more encoding iterations **What problems is Metasploit solving and how is that benefiting you?** I was using it for the OSCP certification preparation. I was earlier to find exploits for Windows hosts ### 25. Best open source collection of exploits **Rating:** 5.0/5.0 stars **Reviewed by:** Akash C. | Research Software Engineer (Reverse Engineering Team Lead), Mid-Market (51-1000 emp.) **Reviewed Date:** January 21, 2021 **What do you like best about Metasploit?** Collection of cross plateform exploit in a single place. **What do you dislike about Metasploit?** It should provide some easy change interface for concern exploit. **Recommendations to others considering Metasploit:** Please provide some easy interface to change program for exploits. **What problems is Metasploit solving and how is that benefiting you?** They do provide some network tutorials to newbie who don't about the routing of data. ### 26. The best open source tool ever used in till now **Rating:** 5.0/5.0 stars **Reviewed by:** Akash C. | Research Software Engineer, Mid-Market (51-1000 emp.) **Reviewed Date:** January 26, 2021 **What do you like best about Metasploit?** Collection of cross platform vulnerabilities and exploits. **What do you dislike about Metasploit?** Sometimes I feel like it has missed some new exploit which is available in opensource. **What problems is Metasploit solving and how is that benefiting you?** I used to pen-testing my own server. ### 27. Metasploit for penetration testing **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Mid-Market (51-1000 emp.) **Reviewed Date:** January 12, 2021 **What do you like best about Metasploit?** The best thing I like about it is that its tutorials and help are widely available on the forums and Youtube also. **What do you dislike about Metasploit?** Sometimes some stuff is outdated :( But that's is rare and can be updated easily. **What problems is Metasploit solving and how is that benefiting you?** It's a huge collection of vulnerabilities needed to perform penetration testing. Almost most of the scenarios out there can be covered with it. ### 28. Amazing Product **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Computer & Network Security | Small-Business (50 or fewer emp.) **Reviewed Date:** January 12, 2021 **What do you like best about Metasploit?** Using the exploits. I love typing exploit and feeling like a real "hacker" **What do you dislike about Metasploit?** Sometimes Metasploit is not as quick as it is supposed to be. **What problems is Metasploit solving and how is that benefiting you?** I work as a pentester and it really helps me in my day to day job. Finding vulns and exploiting them with Metasploit is a lot easier and more friendly and insightful. ### 29. best of the best any *ix can offer, havn't tried the windows one **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Computer Networking | Mid-Market (51-1000 emp.) **Reviewed Date:** January 18, 2021 **What do you like best about Metasploit?** it's functionality, ease of use for beginners **What do you dislike about Metasploit?** heard the windows version is not that compatible and does not run most of the time, i'd say more support for windows **What problems is Metasploit solving and how is that benefiting you?** Quick encrypting payloads, quickly using updated and newly released 0-day methods and attacks ### 30. Not really user friendly but it contains various tools that can be beneficial **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Accounting | Small-Business (50 or fewer emp.) **Reviewed Date:** January 15, 2021 **What do you like best about Metasploit?** It contains various tools that can be taken advantage of when you have learn how to navigate **What do you dislike about Metasploit?** Not user friendly. Need more knowledge in this field **What problems is Metasploit solving and how is that benefiting you?** I have used it for hacking of wifi ### 31. Modern Methodology for Pen-testing **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Financial Services | Small-Business (50 or fewer emp.) **Reviewed Date:** January 13, 2021 **What do you like best about Metasploit?** Under one Roof, a great platform for Pentesting **What do you dislike about Metasploit?** Must add New modern Features to analysis advance Malware & Viruses **What problems is Metasploit solving and how is that benefiting you?** I am testing currently Windows OS Environment and getting perfect results as per requirements. ### 32. Metasploit review **Rating:** 5.0/5.0 stars **Reviewed by:** Ucha G. | Security Officer, Mid-Market (51-1000 emp.) **Reviewed Date:** April 21, 2020 **What do you like best about Metasploit?** new modules that are updated on daily bases. **What do you dislike about Metasploit?** its hard to dont like something in metasploit, i highly recommend it **Recommendations to others considering Metasploit:** One of the best tool, in order to do quality pentest, it gives you full view from exploitation to target vulnerability. **What problems is Metasploit solving and how is that benefiting you?** Metasploit can be used in many case, i use it while do pentest and exploit development. It saves my time, because i can automate pentest process. ### 33. They test real good **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Computer & Network Security | Small-Business (50 or fewer emp.) **Reviewed Date:** March 24, 2020 **What do you like best about Metasploit?** Their web pentesters. I can't get enough of them! **What do you dislike about Metasploit?** They always find da vulnerabilities! I try to obscure my vulnerable code, but they are like bloodhounds sniffin it out. **Recommendations to others considering Metasploit:** do it, don think just do **What problems is Metasploit solving and how is that benefiting you?** I am trying and trying to solve da issue but I doesn't. Rapid7 do. ### 34. Review on Metasploit **Rating:** 3.5/5.0 stars **Reviewed by:** Lathosh R. | Network Engineer, Enterprise (> 1000 emp.) **Reviewed Date:** November 07, 2019 **What do you like best about Metasploit?** It is really straightforward. Its platform made me understand a bunch once I emerged throughout the area of technology. Metasploit, I believe daily has the biggest vulnerability database including recent additions and it's so quick deploying. **What do you dislike about Metasploit?** Metasploit Tool gets a little sluggish rarely, but this is a common occurrence. **What problems is Metasploit solving and how is that benefiting you?** Manual verification enables the analyzer to understand better but also protect against the hack. ### 35. pentester package **Rating:** 3.5/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Small-Business (50 or fewer emp.) **Reviewed Date:** July 26, 2019 **What do you like best about Metasploit?** Metasploit exploits are verified which is really nice. You dont have to check every exploit You want to use (but You should, as always). Free metasploit meets my requirements, so I do not need to pay for Metasploit Pro. **What do you dislike about Metasploit?** "Script kiddie tool" Metasploit is very easy to use without any infosec knowlegde. User will just search for an exploit and after that is it very simple to use it. Most of the time you just need to add Target, Port maybe payload type. **Recommendations to others considering Metasploit:** take a look at exploit db :) **What problems is Metasploit solving and how is that benefiting you?** Exploiting systems using verified modules. ### 36. A great help for any penetration tester **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Education Management | Mid-Market (51-1000 emp.) **Reviewed Date:** November 13, 2019 **What do you like best about Metasploit?** Although most of the penetration testing can be done manually, I like to use Metasploit to organize the data and organize my findings. This is very useful specially in large engagements **What do you dislike about Metasploit?** Sometimes is hard to debug exploitation errors on metasploit. Sometimes the amount of information provided is not enough (even with debug logs). **What problems is Metasploit solving and how is that benefiting you?** Penetration testing. The MSF helps me to organize my findings for later reporting ### 37. Metasploit scans **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Warehousing | Mid-Market (51-1000 emp.) **Reviewed Date:** May 28, 2019 **What do you like best about Metasploit?** I used Metaspolit with Kali to perform some scans prior to Rapid7 coming in and doing an external pen test for a client. I was surprised how accurate it was in finding vulnerabilities within the environment that I had staged. I left the vulnerability for the vendors scan and it was right on. Great software, lots of online help and forums. I took a couple ethical hacking course and they also used Metaspolit. This just confirmed that Metasploit is a solid tool. **What do you dislike about Metasploit?** The typical scares anti virus false reports etc... Nothing that Metasploit didn't warn you about before running. **What problems is Metasploit solving and how is that benefiting you?** Proactive scans and identifying weakness in network and environment. ### 38. Packed Functionality **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Computer & Network Security | Mid-Market (51-1000 emp.) **Reviewed Date:** July 05, 2019 **What do you like best about Metasploit?** It comes with packed functionalities which allows all level of users to really get started with PT. **What do you dislike about Metasploit?** Post upgardtion of either underlying OS or Metasploit the modules would not work as expected because of some issues with postgresql. **What problems is Metasploit solving and how is that benefiting you?** Mainly focusing on identifying the vulnerabilities and trying to address this. As per of the complaince it is mandatory to perform PT every quarter. However as an info sec enthusiast there are more reasons to use PT tools. ### 39. It offers the best simulation on possible attacks and take the contudentes actions in defense. **Rating:** 4.0/5.0 stars **Reviewed by:** Ramon M. | Gerente DSI división Ayacucho, Enterprise (> 1000 emp.) **Reviewed Date:** September 24, 2018 **What do you like best about Metasploit?** Many times security, especially computer science, is one of the highest priority nowadays, which with the simulation allows the personnel in charge of security to take the best actions to protect the integrity of the company, thanks to the efficient simulation and functions can be established the best plan of action of computer security. **What do you dislike about Metasploit?** Since I implemented a good service, I have nothing to say about it as well as the staff in charge, so I do not have any negative comments about the software. Rather I can say that I find a very simple interface, saves time in implementing software with similar features, which require complicated installations, with this product makes this process much easier by doing the fastest and most reliable. **Recommendations to others considering Metasploit:** Good product that promotes the best in simulation and take the best actions, as well as a way to empower staff and innovate by offering a resource to improve security management, and evaluate their own security systems as well as the vulnerabilities that are available to them. same, all based through a simple, adaptable and easy to manage interface for the personnel in charge. **What problems is Metasploit solving and how is that benefiting you?** The innovation and improvement of computer security offer the best solutions in terms of simulation as well as vulnerabilities in the system of the organization, without a doubt it is a tool that allows time in the implementation, as well as the analysis of the risk that allows to perform better management with the highest possible quality for the good of the organization. ### 40. Best penetration testing software **Rating:** 5.0/5.0 stars **Reviewed by:** Alex P. | Small-Business (50 or fewer emp.) **Reviewed Date:** September 17, 2018 **What do you like best about Metasploit?** Its very complete Comes with handy number of exploitable vulnerability scripts Ruby coded and custom script support Very handy API **What do you dislike about Metasploit?** Its difficulty can be little bit bad if you dont know how to use it but you can study and there are lots of videos available on the web **Recommendations to others considering Metasploit:** Its a very good tool and does its job very nicely **What problems is Metasploit solving and how is that benefiting you?** We first had a cybersecurity company payed a lot each month for doing scans and lots of thing. After we realised a tool like this was available, we contacted our IT team and started learning about it . Finally we have a cybersecurity team on our company and we dont have to pay someone else to do this. ### 41. The best tool for pentesting. **Rating:** 4.0/5.0 stars **Reviewed by:** Unai V. | Small-Business (50 or fewer emp.) **Reviewed Date:** July 23, 2018 **What do you like best about Metasploit?** It is one of the best tools for pentesting, included with Kali Linux and by default it is completely filled with scripts that you can use to carry out attacks. You can also download thousands more scripts from the internet or create your own scripts. **What do you dislike about Metasploit?** For me, it was very complicated at first, but after 3 years of experience using this software, it is easy to use but requires very high knowledge of computing. **Recommendations to others considering Metasploit:** Anyone who wants to integrate into the world of ethical hacking or wants to test the security of their computer system should use this tool one hundred percent. **What problems is Metasploit solving and how is that benefiting you?** The possibility of scanning all our equipment and our local network for vulnerabilities and the possibility of fixing vulnerabilities that we had in our computer system. ### 42. Excellent software **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in E-Learning | Mid-Market (51-1000 emp.) **Reviewed Date:** May 22, 2019 **What do you like best about Metasploit?** Lots of modules automate your work. And it got awesome features like setting up a socks4 proxy or enabling autoroute. **What do you dislike about Metasploit?** Searching for specific modules could be more in depth. **Recommendations to others considering Metasploit:** It makes pivoting so easy. **What problems is Metasploit solving and how is that benefiting you?** I know I can rely on the exploit modules and pivoting is very easy. ### 43. I've been using metasploit for 5 years and never dissapoints. I would recommend it. **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Computer & Network Security | Small-Business (50 or fewer emp.) **Reviewed Date:** May 29, 2019 **What do you like best about Metasploit?** The best that i like about metasploit is that it stays updated with the latest exploits and vulnerabilities and helps automate different processes **What do you dislike about Metasploit?** I don happen to know any downside of metasploit. **Recommendations to others considering Metasploit:** Very helpful tool 10/10 would recommend **What problems is Metasploit solving and how is that benefiting you?** Mostly automatization problem solver ### 44. The Go-To tool for vulnerability and exploit discovery **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Small-Business (50 or fewer emp.) **Reviewed Date:** January 08, 2019 **What do you like best about Metasploit?** Large volume of exploits and payloads. Plus it's open source. **What do you dislike about Metasploit?** Can be difficult to search for a specific category of exploits via CLI. **Recommendations to others considering Metasploit:** Go for it. You will learn a lot about exploits, and the manipulation of both IP/TCP and Computer Networking. **What problems is Metasploit solving and how is that benefiting you?** Discovering vulnerabilities, keeping up with the increasing database of exploits. Also understanding how computer networking, IP/TCP can be manipulated to undertake a cyber attack. ### 45. The powerful Metasploit **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Information Technology and Services | Mid-Market (51-1000 emp.) **Reviewed Date:** June 27, 2018 **What do you like best about Metasploit?** Metasploit is extremely powerful and versatile, from scanning to exploiting, to creating your own payloads it has everything you could possible need for a penetration test or vulnerability analysis of an environment. The pro version of metasploit is more user-friendly to people who do not prefer to use the command-line, which has everything in an easy to find area to execute. The command-line version is just as powerful, it just requires that you are familiar with the various switches and options with metasploit. **What do you dislike about Metasploit?** Theres not a lot to dislike with Metasploit, other than the cost and the potential for an exploit to cause an application to go down or restart. If you are not careful with the options running in Metasploit, you can accidentally cause a service, website, or application to go down or crash, so use with caution. The pro version has an easy to use GUI vs the free version thats on kali and other penetration operating systems. **Recommendations to others considering Metasploit:** Always make sure you understand the options that are running to ensure that you don't accidentally cause a service/website/application to be unavailable. **What problems is Metasploit solving and how is that benefiting you?** We are utilizing Metasploit for our penetration tests as one of the tools we use for uncovering vulnerabilities and exploits in organizations environments. It is an extremely powerful and useful tool that can discover weaknesses in all environments. The ease of use with the pro version allows us to quickly train someone on how to use it, and start scanning a network so other members of the team can focus on exploit and vulnerability testing. ### 46. Best Pentesting tool ever **Rating:** 5.0/5.0 stars **Reviewed by:** Alex C. | Small-Business (50 or fewer emp.) **Reviewed Date:** July 19, 2018 **What do you like best about Metasploit?** It has tons of scripts built in the software out of the box and it has millions of scripts extra available in the web. The best tool for Pentesting ever made, integrated with kali linux but you need high computer knowledge to use it **What do you dislike about Metasploit?** I started using it like 2 years ago, it was little difficult for me at start but when you study and take little courses online and you can start pentesting your own gear. **Recommendations to others considering Metasploit:** If you want to get around hacking and pentestinng you should use this library without any doubts also if you are worried about your own stuff that could be vulnerable you should use this. **What problems is Metasploit solving and how is that benefiting you?** Testing our infrastructure security in high levels and solved lots of vulnerabilities that could ruin our network. ### 47. highly technical - still **Rating:** 4.5/5.0 stars **Reviewed by:** Roger N. | Security Instructor, Information Technology and Services, Mid-Market (51-1000 emp.) **Reviewed Date:** January 11, 2019 **What do you like best about Metasploit?** depth of testing was quite good for install and use **What do you dislike about Metasploit?** way too technical and assumes you have a lot of knowledge about metasploit **Recommendations to others considering Metasploit:** make it easier to use **What problems is Metasploit solving and how is that benefiting you?** focused teting i best in class ### 48. The best application to exploit vulnerabilities **Rating:** 4.5/5.0 stars **Reviewed by:** iker F. | Small-Business (50 or fewer emp.) **Reviewed Date:** August 30, 2018 **What do you like best about Metasploit?** It has a wide variety of pre-installed scripts and supports adding your own scripts and community scripts. **What do you dislike about Metasploit?** It's a bit complicated to use, but little by little you can master it. **Recommendations to others considering Metasploit:** If you like to investigate vulnerabilities on your team, this is a good option. **What problems is Metasploit solving and how is that benefiting you?** The vulnerabilities that your computer equipment has ### 49. A must security system **Rating:** 3.5/5.0 stars **Reviewed by:** Dong Gun (Eric) A. | Web Developer Internship, Marketing and Advertising, Small-Business (50 or fewer emp.) **Reviewed Date:** September 20, 2018 **What do you like best about Metasploit?** I love the idea of what it does. It is a real time simulation of attackers which is so necessary in any company that is growing/ established. **What do you dislike about Metasploit?** It is HARD. the learning curve is really big and not many employees will be able to successfully use it easily. **What problems is Metasploit solving and how is that benefiting you?** Making sure our database is safe and clear of attackers and figuring out how we can better secure it if else. ### 50. The best software to exploit vulnerabilities **Rating:** 5.0/5.0 stars **Reviewed by:** jaime l. | Small-Business (50 or fewer emp.) **Reviewed Date:** August 30, 2018 **What do you like best about Metasploit?** It has a lot of pre-installed scripts. You can add your scripts and add those from the community. **What do you dislike about Metasploit?** It's complicated but little by little you can master it well. **Recommendations to others considering Metasploit:** If you like to investigate vulnerabilities on your equipment **What problems is Metasploit solving and how is that benefiting you?** Know what vulnerabilities your computer system has ## Metasploit Discussions - [<>?:"{}!@#$%^&*()_+ I like that Rapid7 provides the required number of characters.](https://www.g2.com/discussions/40702-_-i-like-that-rapid7-provides-the-required-number-of-characters) - 1 comment, 2 upvotes - [How do I get Premium License for free to make tests for local FinTech & Universities and education?](https://www.g2.com/discussions/35953-how-do-i-get-premium-license-for-free-to-make-tests-for-local-fintech-universities-and-education) - 2 comments, 1 upvote - [View Metasploit pricing details and edition comparison](https://www.g2.com/products/metasploit/reviews?section=pricing&secure%5Bexpires_at%5D=2026-06-14+05%3A00%3A34+-0500&secure%5Bsession_id%5D=ae7b2711-433f-4246-956b-0c676025eda5&secure%5Btoken%5D=aac13b21418baeae2e2f6a1774363a3bfd6fe8c96bd1fd93bddc3e45c8c8333c&format=llm_user) ## Metasploit Features **Administration** - API / Integrations - Extensibility - Reporting and Analytics **Analysis** - Issue Tracking - Reconnaissance - Vulnerability Scan **Testing** - Command-Line Tools - Manual Testing - Test Automation - Performance and Reliability ## Top Metasploit Alternatives - [Burp Suite](https://www.g2.com/products/burp-suite/reviews) - 4.8/5.0 (126 reviews) - [Acunetix by Invicti](https://www.g2.com/products/acunetix-by-invicti/reviews) - 4.1/5.0 (100 reviews) - [Core Impact](https://www.g2.com/products/core-impact/reviews) - 4.2/5.0 (24 reviews)