Metasploit
Metasploit is a widely used platform for pentesting (penetration testing) + vulnerability search. In other words today we are talking about a powerful framework with an elaborate architecture and good functionality.
The tool is interesting for many reasons, but we are interested in the practical side of its use. It can be useful for system administrators, cyber-security specialists and novice hackers (but we won't mention it here).
The frameworks include Metasploit and their commercial versions: Metasploit Pro, Express, Community, Nexpose Ultimate. We are interested in the first one because it is quite widespread and of course convenient for creating ∕-testing ∕-debugging exploits.
The core of the tool is Rex library (for working with protocols). It has MSF Core integrated with it and then MSF Base, which is used to provide the API for the user interface (graphical ∕ console), as well as modules which are divided into categories:
For your reference: it works on Windows, on all Linux distributions.
To install on Linux:
To install on Windows link is at the end of the article.
The platform itself consists of 4 working environments:
Download Metasploit for free from the official site - just click the direct link below.
The tool is interesting for many reasons, but we are interested in the practical side of its use. It can be useful for system administrators, cyber-security specialists and novice hackers (but we won't mention it here).
The frameworks include Metasploit and their commercial versions: Metasploit Pro, Express, Community, Nexpose Ultimate. We are interested in the first one because it is quite widespread and of course convenient for creating ∕-testing ∕-debugging exploits.
Metasploit Framework
The framework has a smart and intuitive interface, open source code, a large number of services and modules that are constantly being added and improved, as well as a number of features:- fast plugin development + qualitatively optimized multiplatform;
- wide support for multiple network options and protocols;
- work with extensible utilities and libraries;
- full development and product support by the developer community.
The core of the tool is Rex library (for working with protocols). It has MSF Core integrated with it and then MSF Base, which is used to provide the API for the user interface (graphical ∕ console), as well as modules which are divided into categories:
- Exploit - the code of the particular vulnerability;
- Payload;
- Post;
- Encoder - obfuscation tools;
- NOP - generators of NOP.
Install Metasploit
It does not take long to install because it is pretty standard and easy to understand.For your reference: it works on Windows, on all Linux distributions.
To install on Linux:
curl https://raw.githubusercontent.com/rapid7/metasploit-omnibus/master/config/templates/metasploit-framework-wrappers/msfupdate.erb > msfinstall && \
chmod 755 msfinstall && \
./msfinstall
chmod 755 msfinstall && \
./msfinstall
To install on Windows link is at the end of the article.
The platform itself consists of 4 working environments:
- msfconsole - the console interface, the main working environment in which various commands are used (here are examples of basic and some network commands);
![]()
- msfcli - console with the ability to create resource scripts;
- msfgui - not so popular, so skip it;
- msfweb.
Download Metasploit for free from the official site - just click the direct link below.
Program information
Title: Metasploit
Size: 255 mb
Operating system: Windows
Latest version: 6.2.7
Developer: Rapid7
