Open Source framework for exploit development and penetration testing

The Metasploit Framework is both a penetration testing system and a development platform for creating security tools and exploits. The framework is used by network security professionals to perform penetration tests, system administrators to verify patch installations, product vendors to perform regression testing, and security researchers world-wide. The framework is written in the Ruby programming language and includes components written in C, many flavors of assembler, python, powershell, PHP, and other languages.

The framework consists of tools, libraries, modules, and user interfaces. The basic function of the framework is a module launcher, allowing the user to configure an exploit module and launch it at a target system. If the exploit succeeds, the payload is executed on the target and the user is provided with a shell to interact with the payload. Hundreds of exploits and dozens of payload options are available.

lightbulb_outline View ideas list


  • ruby
  • c
  • asm


comment IRC Channel
email Mailing list
mail_outline Contact email

Metasploit 2017 Projects

  • Badshah
    Add vulnerabilities to Metasploitable3, reduce Bugs, work on enhancements and customisation feature
    Not everyone could setup Metasploitable 3 with ease (as mentioned in Github issues: This is...
  • tkmru
    Improving stager payloads especially on non-Windows platforms
    Hi, I’m a computer science university student from Japan. I’m interested in binary exploitation and reverse engineering. I like software...