We performed a comparison between Rapid7 Metasploit and Wireshark based on real PeerSpot user reviews.
Find out what your peers are saying about Tenable, Wiz, SentinelOne and others in Vulnerability Management."It's not possible to do penetration testing without being very proficient in Metasploit."
"The greatest advantage of Rapid7 Metasploit is that it is the only system that can directly exploit vulnerabilities on the Metasploit platform."
"The tool's most useful feature for penetration testing is its automation capabilities. With the professional edition, you can upload the results from Nessus in the Rapid7 Metasploit solution portal."
"Rapid7 Metasploit is a useful product."
"It is scalable. It's in line with our needs."
"The solution is open source and has many small targetted penetration tests that have been written by many people that are useful. You can choose different subjects for the test, such as Oracle databases or Apache servers."
"Stability-wise, I rate the solution a nine out of ten...Scalability-wise, I rate the solution a nine out of ten."
"All of the features are great."
"Packet-capture files can be hard to use due to their size. Wireshark has a tool called tshark that can parse the files with out opening them so that you can take large captures, say 2-10GB, and return only relevant information."
"The best part about Wireshark, in my opinion, is its ability to analyze packet capture files."
"Setup is very easy. It's also possible to change source code and compile if you want to change something in the code, because it's free."
"The ability to decrypt traffic and the abundance of filters available are both valuable features."
"The initial setup is simple."
"Wireshark is very user-friendly; even someone with basic IT knowledge can use it."
"The GUI is easy to use."
"It gives us the ability to pinpoint problems and to communicate network problems with software and hardware vendors."
"At the time I was using it, the graphical user interface needed some improvements."
"Better automation capabilities would be an improvement."
"It is necessary to add some training materials and a tutorial for beginners."
"Rapid7 Metasploit can add a GUI feature because it is only available online."
"If your company's patch is not up to date, but you have other detection or defense solutions such as endpoint detection and response and antivirus software, the product exploit may not work effectively. This is because its exploit database update process is slow and not real-time. For zero-day vulnerabilities or new security threats, relying on Rapid7 Metasploit alone may not be effective."
"The solution is not user-friendly and has room for improvement."
"The open-source version has reporting limitations. You need to develop these capabilities yourself. Built-in reporting is an excellent feature for penetration testing, but it isn't a must-have. The solution could also cover more vulnerabilities. Metasploit has around 10,000 exploits in its library, but more is always better."
"I would like to see more capabilities, more functions, and more features. More types of attack vectors."
"Wireshark gets stuck when it is a larger file."
"The system could be improved upon by adding a better and more powerful data processing engine."
"The initial setup depends upon the basics. You need to have a clear understanding of the basics."
"Its user interface was a little less friendly. They can make its user interface a little bit more friendly. It is for technical people, and most of the technical people would be able to figure it out, but it would be good to improve its user interface. They can maybe build artificial intelligence into it. Currently, it takes a lot of manpower to analyze and dissect all the data."
"Wireshark could make the filtering rules easier to apply and offer a drag-and-drop option as opposed to type and text."
"The Wireshark search function shows green for a correct search and red for an incorrect search. If there were a way to provide a description about what a search - and the similar ones which are available - can do, while a person is typing it, it would make the product easier to use and simultaneously decrease the learning curve."
"The only thing that I don't like is sometimes there is an update, and something that I was using is either no longer there or it has changed."
"In the future, it would be nice to see color coding. It is just black and white."
Rapid7 Metasploit is ranked 12th in Vulnerability Management with 18 reviews while Wireshark is ranked 4th in Network Troubleshooting with 61 reviews. Rapid7 Metasploit is rated 7.6, while Wireshark is rated 9.0. The top reviewer of Rapid7 Metasploit writes "Helps find vulnerabilities in a system to determine whether the system needs to be upgraded". On the other hand, the top reviewer of Wireshark writes "User-friendly with an easy setup and a nice interface". Rapid7 Metasploit is most compared with Tenable Nessus, Pentera, Rapid7 InsightVM, Acunetix and Amazon Inspector, whereas Wireshark is most compared with Nagios XI, Zabbix, SolarWinds NPM, Colasoft Capsa and Observer GigaStor.
We monitor all Vulnerability Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
