Rapid7 Metasploit Overview

Rapid7 Metasploit is the #8 ranked solution in our list of top Vulnerability Management tools. It is most often compared to Tenable Nessus: Rapid7 Metasploit vs Tenable Nessus

What is Rapid7 Metasploit?

Attackers are always developing new exploits and attack methods—Metasploit penetration testing software helps you use their own weapons against them. Utilizing an ever-growing database of exploits, you can safely simulate real-world attacks on your network to train your security team to spot and stop the real thing.

Rapid7 Metasploit is also known as Metasploit.

Rapid7 Metasploit Buyer's Guide

Download the Rapid7 Metasploit Buyer's Guide including reviews and more. Updated: January 2021

Rapid7 Metasploit Customers

City of Corpus Christi, Diebold, Lumenate, Nebraska Public Power District, Prairie North Regional Health, Apptio, Automation Direct, Bob's Stores, Cardinal Innovations Healthcare Solutions, Carnegie Mellon University

Rapid7 Metasploit Video

Pricing Advice

What users are saying about Rapid7 Metasploit pricing:
  • "The great advantage with Rapid7 Metasploit, of course, is that it's free."

Rapid7 Metasploit Reviews

Filter by:
Filter Reviews
Filter Unavailable
Company Size
Filter Unavailable
Job Level
Filter Unavailable
Filter Unavailable
Filter Unavailable
Order by:
  • Date
  • Highest Rating
  • Lowest Rating
  • Review Length
Showingreviews based on the current filters. Reset all filters
Principal security consultant at a computer software company with 201-500 employees
Jun 8, 2020
Straightforward to set up, and helpful for moving from development to production

What is our primary use case?

We are a solution provider and we offer a variety of services that include security and vulnerability management. Rapid7 Metasploit is one of the products that we use to identify vulnerabilities. Specifically, Metasploit is for penetration testing. It uses models to check for exploitable vulnerabilities, and if one is detected then we would raise the importance of solving the problem. We normally operate Metasploit at the client site, which helps us to explore and assess the vulnerabilities directly in the environment.

Pros and Cons

  • "The most valuable feature for us is the support for testing Linux-based web server components."
  • "Better automation capabilities would be an improvement."

What other advice do I have?

For our needs, which is usually a dedicated environment for our customers, I cannot envision any significant improvements that need to be made. My advice for anybody who is considering this solution is that it works well as a component in a vulnerability testing platform. We use a combination of tools with a certain level of automation and integration, which gives us the flexibility that we need to accommodate customers with differing needs. There is no one tool in the market that covers everything and ultimately, Metasploit helps to produce the reports that we need. The biggest lesson that I…
Project Director at a tech services company with 1,001-5,000 employees
Real User
Top 5
Oct 21, 2020
A free and impactful penetration testing solution

What is our primary use case?

I used the community edition. It's a very handy and powerful product. For a free product, the capabilities are absolutely astonishing. I used Rapid7 Metasploit as a marketing solution. I was working as a security expert and whenever I would meet a client as a consultant or a freelancer, I would open my laptop and start using the software. Rapid7 Metasploit is a standalone solution, intended to be used by one person, but it can be used by a few people in a team — maybe 10 people or less.

Pros and Cons

  • "All of the features are great."
  • "At the time I was using it, the graphical user interface needed some improvements."

What other advice do I have?

The great advantage with Rapid7 Metasploit, of course, is that it's free. You can download it and start using it for free, right away. The features are satisfactory, and you can do your job strictly with the free edition. Of course, you could do your job even better with the commercial edition. There are better products available, like Core Impact, but they are much more expensive. On a scale from one to ten, I would give Rapid7 Metasploit a rating of eight.
Find out what your peers are saying about Rapid7, Tenable Network Security, Qualys and others in Vulnerability Management. Updated: January 2021.
457,209 professionals have used our research since 2012.
Senior Information Technology Security Officer at a financial services firm with 501-1,000 employees
Real User
Jun 25, 2020
Good reporting; very good at detecting vulnerabilities, and quite stable

What is our primary use case?

We're using the solution in conjunction with some governmental agencies.

Pros and Cons

  • "The reporting on the solution is good."
  • "The solution should improve the responsiveness of its live technical support."

What other advice do I have?

I used the product previously. Now, I am more of a consultant. I'm not sure what version of the solution I'm currently using is. This product is fantastic. I prefer using it. I'd rate it seven out of ten. If it wasn't for the unpredictable support, I would rate it a bit higher. If it added just a few more advancements, it would be even better still.