Rapid7 Metasploit Reviews

Name: Rapid7 Metasploit
Brand: Rapid7
Rating: 4 (18 reviews)

3.8 out of 5

18 reviews
94% willing to recommend

1,579 followers

What is Rapid7 Metasploit?UNIXBusinessApplication
Price:

Attackers are always developing new exploits and attack methods—Metasploit penetration testing software helps you use their own weapons against them. Utilizing an ever-growing database of exploits, you can safely simulate real-world attacks on your network to train your security team to spot and stop the real thing.

Get the Rapid7 Metasploit Buyer's Guide and find out what your peers are saying about Rapid7 Metasploit, Darktrace, Snyk and more!

Rapid7 Metasploit is the #11 ranked solution in top Vulnerability Management solutions. PeerSpot users give Rapid7 Metasploit an average rating of 7.6 out of 10. Rapid7 Metasploit is most commonly compared to Darktrace: Rapid7 Metasploit vs Darktrace. Rapid7 Metasploit is popular among the large enterprise segment, accounting for 56% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a computer software company, accounting for 18% of all views.

Helped 768,415 peers since 2012

Featured reviews

Aqeel Junaid

Junior Executive - Information Security at sunshine holdings

Mar 14, 2024

I've been using Rapid7 Metasploit to create vulnerabilities and test exploits. I can create malicious Word documents through the Rapid7 Metasploit framework for testing purposes. I can create a backdoor through the solution to test a web server or a vulnerable machine The most valuable features…

Read full review

AdeelAgha

Team Lead - Cyber Security & Compliance at Al Tuwairqi Group

Mar 3, 2023

Rapid7 is able to identify vulnerabilities, but the only way to remediate them is to manually apply patches. This can be time-consuming, as evidenced by the six months it took our team to remediate vulnerabilities found in the Tenable ICS and OT security VT. To make this process easier, there should be an automated system or API to align with the PET solution, allowing systems to quickly align with it. The solution is not user-friendly and has room for improvement. I would like a feature for mobile tracking, allowing us to operate it from a mobile device or at least track it technologically, the basic functionality would be something I would like. For example, when I execute a vulnerability assessment activity, it takes around two to three days to complete all the plans. In order to track that, I would have to log into my system repeatedly. Therefore, I would like to have a feature that allows me to track it from my mobile device.

Read full review

Md. Shahriar Hussain

Cybersecurity and Compliance Lead Engineer at Banglalink

Feb 23, 2024

Penetration testing can potentially expose weaknesses in your Endpoint Detection and Response system. The effectiveness depends on how your EDR system is configured. If the policy is strong and well-configured, tools like Rapid7 Metasploit may not be successful. However, if the policy is poorly configured or not implemented, vulnerabilities could be exploited, and attacks, including those using Rapid7 Metasploit, may occur. Using the manual Rapid7 Metasploit software framework in Kali Linux requires command-line inputs. In contrast, the professional edition simplifies the process by allowing users to select IPs and upload Nessus results in dot Nessus format. This eliminates the need to write complex commands. In countries facing economic challenges, there is limited funding for security teams and professionals due to the country's economic conditions. The tool has delayed my certification. I don't recommend it since we get many better solutions in the market. I rate it a five out of ten.

Read full review

Rapid7 Metasploit market share

As of March 2024, the market share of Rapid7 Metasploit in the Vulnerability Management category stands at 4.0%, marking an increase of 5.0% compared to the previous year, according to calculations based on PeerSpot user engagement data.

Vulnerability Management

Key learnings from peers

Last updated Mar 24, 2024

Valuable Features

"I use Rapid7 Metasploit for payload generation and Post-Exploitation."
"The most valuable features of the solution are the scripts, the modules, and the tools that the Rapid7 Metasploit framework has."
"The tool's most useful feature for penetration testing is its automation capabilities. With the professional edition, you can upload the results from Nessus in the Rapid7 Metasploit solution portal."

Room for Improvement

"Rapid7 Metasploit could be made easier for new users to learn."
"If your company's patch is not up to date, but you have other detection or defense solutions such as endpoint detection and response and antivirus software, the product exploit may not work effectively. This is because its exploit database update process is slow and not real-time. For zero-day vulnerabilities or new security threats, relying on Rapid7 Metasploit alone may not be effective."
"Advanced Infrastructure should be implemented in the next release for better orchestration."

Pricing

"I have used the free version of Rapid7 Metasploit."
"Rapid7 Metasploit is an open-source solution."
"It is a reasonably priced solution. I would rate it from five out of ten."

These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.

Download our Rapid7 Metasploit Buyer's Guide for additional reliable information.

Review data by company size

By reviewers

By visitors reading reviews

Top industries

By visitors reading reviews

Computer Software Company

18%

Financial Services Firm

Manufacturing Company

Government

Comms Service Provider

University

Educational Organization

Retailer

Healthcare Company

Hospitality Company

Insurance Company

Construction Company

Media Company

Non Profit

Legal Firm

Real Estate/Law Firm

Energy/Utilities Company

Pharma/Biotech Company

Wholesaler/Distributor

Aerospace/Defense Firm

Performing Arts

Recreational Facilities/Services Company

Outsourcing Company

Logistics Company

Compare Rapid7 Metasploit with alternative products

Learn more about Rapid7 Metasploit

Rapid7 Metasploit was previously known as Metasploit.

Product Video

Rapid7 Metasploit customers

City of Corpus Christi, Diebold, Lumenate, Nebraska Public Power District, Prairie North Regional Health, Apptio, Automation Direct, Bob's Stores, Cardinal Innovations Healthcare Solutions, Carnegie Mellon University

Evgeny Belenky

Director of Community at PeerSpot (formerly IT Central Station)

Community Spotlight #19

How inadvisable is it to use a single vulnerability analysis tool?

What are the benefits of continuous scanning for vulnerability management?

What is a more effective approach to cyber defense: risk-based vulnerability management or vulnerability assessment?

When evaluating Vulnerability Management, what aspect do you think is the most important to look for?

What are the main KPIs that need to be implemented to have better posture in vulnerability projects?

How do you use the MITRE ATT&CK framework for improving enterprise security?

What are your recommended automated penetration testing tools?

Can you recommend API for Tenable Connector into ServiceNow

What penetration testing tool (or tools) do you recommend for SMB/SME?