Metasploit Framework

Metasploit Framework

The Metasploit® Framework is a free, open source penetration testing solution
4.0  (11 votes)
4.0 (See all)

Metasploit Framework is an open-source sub-project form the Metasploit Project. Based on its functionality, Metasploit Framework is categorized as a Pen-testing tool, an exploit writing tool, and an anti-forensic and evasion tool. As a penetration tester, it can simulate attacks from malicious programs in order to check and evaluate the level of security of any computer system.

The project started in 2003 as a portable network game using the Perl scripting language. Later, the entire Metasploit Framework was rewritten in Ruby programming language. This project was acquired by Rapid7 in October 2009. Metasploit Framework installation is not a straightforward operation when it comes to Windows, especially if you have installed any antivirus software program alongside. Most of the antivirus tools consider Metasploit Framework’s scripts and components as Trojans and other malware, which causes installation problems.

Metasploit Framework comes with both a graphical and a character-based interface. This tool is meant only for developers and for security professionals, those who are testing, developing, and executing exploits in a controlled manner. Thus, if you ever use it, you will need to be very careful, since this kind of software tools can be either used in a good and productive way, or misused in malicious ways.

Sundaram Ramanujam
Editor rating:

Review summary


  • Tests exploits against all popular Operating Systems.
  • The tool is updated often.
  • Plug-ins and additional codes are always updated.


  • Such a powerful tool can go wrong if not used in a productive and controlled manner.
Info updated on: