Metasploit is used by both amateurs and professionals in the world of cybersecurity and pen-testing. With its godtier framework, it is ideal for flexibility and specific riggings/responsibilities.
Users are also able to create their own explicit tools. This provides ideal circumstances for exposing vulnerabilities in operation systems/networks/applications.
The Metasploit Framework is freeware; however there is also a premium model available for purchase at $5000/year. The Linux-based version also offers more options than the Windows version, such as raw IP packet injection, wireless driver exploitation, and SMB relaying attacks.
Metasploit’s installation is simple – download the current version, change the mode to ‘x’, and execute the installer with root privileges.
If you are running a Linux based system, the following commands will set up Metasploit Framework:
- wget http://updates.metasploit.com/data/releases/framework-4.0.0-linux-x64-full.run
- chmod +x framework-4.*-linux-full.run
- (sudo) ./framework-4.*-linux-full.run
- ?/help
- background
- irb
- exit/quit
- migrate
- run
- use
See screenshots for Metasploit examples.
