Metasploit - Penetration Testing Resources
Metasploit provides useful information and tools for penetration testers, security researchers, and IDS signature developers. This project was created to provide information on exploit techniques and to create a functional knowledgebase for exploit developers and security professionals. The tools and information on this site are provided for legal security research and testing purposes only. Metasploit is an open source project managed by Rapid7.
Version 3.5.0 of the Metasploit penetration testing framework has been released, including 613 exploits, 306 auxiliary modules, and 215 payloads. This release includes major improvements to the database backend, session handling, pivoting, and the Meterpreter. While the old Web and GTK GUIs have been officially deprecated, this build includes scriptjunkie's brand new Java GUI, which uses the XMLRPC protocol in the same fashion as the commercial products. Zate Berg's Nessus plugin and importer has been integrated, as has support for importing Retina and NetSparker XML output files. The Windows installer no longer uses Cygwin, supports a tabbed native console, and includes PostgreSQL and Java. The Windows user experience has been vastly improved, as the Metasploit Console is now preconfigured with a local database, allowing access to commands like db_import, db_export, and db_nmap right out of the box.