Try our new research platform with insights from 80,000+ expert users
Rapid7 Metasploit Logo

Rapid7 Metasploit pros and cons

Vendor: Rapid7
3.8 out of 5
1,588 followers
Post review

Pros & Cons summary

Rapid7 Metasploit is vital for penetration testing, featuring extensive exploit and payload libraries, phishing tools, and specialized testing options for systems like Oracle databases and Apache servers. It provides automation by integrating Nessus reports. Despite its scalability, the open-source version's initial setup is complex, and automation and integration capabilities need improvement. The exploit database requires frequent updates, and training materials could be better for beginners.

Buyer's Guide

Get pricing advice, tips, use cases and valuable features from real users of this product.
Get the report

Prominent pros & cons

PROS

Metasploit is essential for proficient penetration testing and includes a comprehensive range of exploits and payloads.
It offers valuable features like phishing email generation and automated penetration testing capabilities, enhancing the understanding of user behavior and efficiency in identifying vulnerabilities.
Rapid7 Metasploit supports Linux-based web server components and offers versatile testing options including targeted tests for different systems like Oracle databases and Apache servers.
The framework is open source, constantly enriched by community-contributed targeted penetration tests, and provides useful modules and scripts for extensive testing.
Technical support for Rapid7 Metasploit is responsive and helpful, and the platform is recognized for its stability and scalability, meeting diverse enterprise needs.

CONS

Initial setup is challenging for the open-source version.
Metasploit cannot be installed alongside antivirus software.
There is a lack of training materials and tutorials for beginners.
Better integration and automation capabilities are needed.
More up-to-date exploits and better coverage of vulnerabilities are required.
 

Rapid7 Metasploit Pros review quotes

AdeelAgha - PeerSpot reviewer
Mar 3, 2023
The greatest advantage of Rapid7 Metasploit is that it is the only system that can directly exploit vulnerabilities on the Metasploit platform.
Read full review
reviewer1088721 - PeerSpot reviewer
Jun 4, 2020
The most valuable feature for us is the support for testing Linux-based web server components.
Read full review
reviewer1432815 - PeerSpot reviewer
Oct 20, 2020
All of the features are great.
Read full review
Buyer's Guide
Rapid7 Metasploit
November 2024
Free Report: Rapid7 Metasploit Reviews and More
Learn what your peers think about Rapid7 Metasploit. Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.
DOWNLOAD NOW
816,406 professionals have used our research since 2012.
Md. Shahriar Hussain - PeerSpot reviewer
Feb 23, 2024
The tool's most useful feature for penetration testing is its automation capabilities. With the professional edition, you can upload the results from Nessus in the Rapid7 Metasploit solution portal.
Read full review
Andrei Bigdan - PeerSpot reviewer
Nov 7, 2023
It allows us to concentrate solely on identified vulnerabilities without the hassle of additional setup.
Read full review
reviewer1369920 - PeerSpot reviewer
Jun 25, 2020
The reporting on the solution is good.
Read full review
Agustinus DWIJOKO - PeerSpot reviewer
May 12, 2022
Technical support has been helpful and responsive.
Read full review
reviewer1674711 - PeerSpot reviewer
Oct 5, 2021
Rapid7 Metasploit is a useful product.
Read full review
Rostum Tampor - PeerSpot reviewer
Jun 6, 2023
Stability-wise, I rate the solution a nine out of ten...Scalability-wise, I rate the solution a nine out of ten.
Read full review
Aqeel Junaid - PeerSpot reviewer
Mar 14, 2024
The most valuable features of the solution are the scripts, the modules, and the tools that the Rapid7 Metasploit framework has.
Read full review
Show 7 more reviews (out of 17)
 

Rapid7 Metasploit Cons review quotes

AdeelAgha - PeerSpot reviewer
Mar 3, 2023
The solution is not user-friendly and has room for improvement.
Read full review
reviewer1088721 - PeerSpot reviewer
Jun 4, 2020
Better automation capabilities would be an improvement.
Read full review
reviewer1432815 - PeerSpot reviewer
Oct 20, 2020
At the time I was using it, the graphical user interface needed some improvements.
Read full review
Buyer's Guide
Rapid7 Metasploit
November 2024
Free Report: Rapid7 Metasploit Reviews and More
Learn what your peers think about Rapid7 Metasploit. Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.
DOWNLOAD NOW
816,406 professionals have used our research since 2012.
Md. Shahriar Hussain - PeerSpot reviewer
Feb 23, 2024
If your company's patch is not up to date, but you have other detection or defense solutions such as endpoint detection and response and antivirus software, the product exploit may not work effectively. This is because its exploit database update process is slow and not real-time. For zero-day vulnerabilities or new security threats, relying on Rapid7 Metasploit alone may not be effective.
Read full review
Andrei Bigdan - PeerSpot reviewer
Nov 7, 2023
There are numerous outdated exploits in their database that should be updated.
Read full review
reviewer1369920 - PeerSpot reviewer
Jun 25, 2020
The solution should improve the responsiveness of its live technical support.
Read full review
Agustinus DWIJOKO - PeerSpot reviewer
May 12, 2022
We'd like them to offer better coverage of malware.
Read full review
reviewer1674711 - PeerSpot reviewer
Oct 5, 2021
Rapid7 Metasploit can add a GUI feature because it is only available online.
Read full review
Rostum Tampor - PeerSpot reviewer
Jun 6, 2023
I think areas with shortcomings that need improvement are more integration and automation.
Read full review
it_user172239 - PeerSpot reviewer
Oct 24, 2018
The initial setup was a bit "tweaky" for the open-source version.
Read full review
Show 6 more reviews (out of 16)

Product Categories

Product Categories
Vulnerability Management

Popular Comparisons

Popular Comparisons
Qualys VMDR vs Rapid7 Metasploit Logo
Qualys VMDR vs Rapid7 Metasploit
Tenable Nessus vs Rapid7 Metasploit Logo
Tenable Nessus vs Rapid7 Metasploit
Tenable Security Center vs Rapid7 Metasploit Logo
Tenable Security Center vs Rapid7 Metasploit
Tenable Vulnerability Management vs Rapid7 Metasploit Logo
Tenable Vulnerability Management vs Rapid7 Metasploit
Orca Security vs Rapid7 Metasploit Logo
Orca Security vs Rapid7 Metasploit
Pentera vs Rapid7 Metasploit Logo
Pentera vs Rapid7 Metasploit
Acunetix vs Rapid7 Metasploit Logo
Acunetix vs Rapid7 Metasploit
Skybox Security Suite vs Rapid7 Metasploit Logo
Skybox Security Suite vs Rapid7 Metasploit
Check Point CloudGuard CNAPP vs Rapid7 Metasploit Logo
Check Point CloudGuard CNAPP vs Rapid7 Metasploit
Microsoft Defender Vulnerability Management vs Rapid7 Metasploit Logo
Microsoft Defender Vulnerability Management vs Rapid7 Metasploit
The NodeZero Platform vs Rapid7 Metasploit Logo
The NodeZero Platform vs Rapid7 Metasploit
Amazon Inspector vs Rapid7 Metasploit Logo
Amazon Inspector vs Rapid7 Metasploit
PortSwigger Burp Suite Enterprise Edition vs Rapid7 Metasploit Logo
PortSwigger Burp Suite Enterprise Edition vs Rapid7 Metasploit
Nucleus vs Rapid7 Metasploit Logo
Nucleus vs Rapid7 Metasploit
Arctic Wolf Managed Risk vs Rapid7 Metasploit Logo
Arctic Wolf Managed Risk vs Rapid7 Metasploit
See all alternatives

Product Categories

Product Categories
Vulnerability Management

Popular Comparisons

Popular Comparisons
Qualys VMDR vs Rapid7 Metasploit Logo
Qualys VMDR vs Rapid7 Metasploit
Tenable Nessus vs Rapid7 Metasploit Logo
Tenable Nessus vs Rapid7 Metasploit
Tenable Security Center vs Rapid7 Metasploit Logo
Tenable Security Center vs Rapid7 Metasploit
Tenable Vulnerability Management vs Rapid7 Metasploit Logo
Tenable Vulnerability Management vs Rapid7 Metasploit
Orca Security vs Rapid7 Metasploit Logo
Orca Security vs Rapid7 Metasploit
Pentera vs Rapid7 Metasploit Logo
Pentera vs Rapid7 Metasploit
Acunetix vs Rapid7 Metasploit Logo
Acunetix vs Rapid7 Metasploit
Skybox Security Suite vs Rapid7 Metasploit Logo
Skybox Security Suite vs Rapid7 Metasploit
Check Point CloudGuard CNAPP vs Rapid7 Metasploit Logo
Check Point CloudGuard CNAPP vs Rapid7 Metasploit
Microsoft Defender Vulnerability Management vs Rapid7 Metasploit Logo
Microsoft Defender Vulnerability Management vs Rapid7 Metasploit
The NodeZero Platform vs Rapid7 Metasploit Logo
The NodeZero Platform vs Rapid7 Metasploit
Amazon Inspector vs Rapid7 Metasploit Logo
Amazon Inspector vs Rapid7 Metasploit
PortSwigger Burp Suite Enterprise Edition vs Rapid7 Metasploit Logo
PortSwigger Burp Suite Enterprise Edition vs Rapid7 Metasploit
Nucleus vs Rapid7 Metasploit Logo
Nucleus vs Rapid7 Metasploit
Arctic Wolf Managed Risk vs Rapid7 Metasploit Logo
Arctic Wolf Managed Risk vs Rapid7 Metasploit
See all alternatives
Related questions
  • 63
How inadvisable is it to use a single vulnerability analysis tool?
  • 58
What are the benefits of continuous scanning for vulnerability management?
  • 29
When evaluating Vulnerability Management, what aspect do you think is the most important to look for?
  • 24
What is a more effective approach to cyber defense: risk-based vulnerability management or vulnerability assessment?
  • 86
What are the main KPIs that need to be implemented to have better posture in vulnerability projects?
  • 86
Which is the best vulnerability scanner tool?
  • 69
What are your recommended automated penetration testing tools?
  • 138
How do you use the MITRE ATT&CK framework for improving enterprise security?
  • 164
Can you recommend API for Tenable Connector into ServiceNow
  • 28
What penetration testing tool (or tools) do you recommend for SMB/SME?