Mirror of metasploit
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
Brent Cook 856b3358de
Land #12416, add tftpbrute docs
12 hours ago
.github update PR template to ask for unique branch 9 months ago
app Move shared example from pro into framework 3 years ago
config move bigdecimal fix to separate file, include for specs 1 month ago
data Update honk.txt to MSF substitution sequences 1 week ago
db automatic module_metadata_base.json update 1 day ago
docker remove debug output 1 year ago
documentation md format update 2 days ago
external Land #12011, Add module for cve-2018-8453 3 months ago
lib Remove unnecessary requirement 1 day ago
modules Use a larger payload size to include the UUID 5 days ago
plugins Land #11603, Fail nicely when load aggregator. 6 months ago
script kill cucumber in framework 2 years ago
scripts replace trivial usage of expand_path with getenv 4 months ago
spec Get rid of RSpec implicit block expectation syntax 1 week ago
test add automation tests for bluekeep server targets 3 months ago
tools add links 1 week ago
.dockerignore change docker root exec 1 year ago
.gitignore Land #9220, Module cache improvements 1 year ago
.gitmodules Add RDI submodule, port Kitrap0d 5 years ago
.mailmap update current employees 1 month ago
.rspec Add modern --require to .rspec 5 years ago
.rubocop.yml remove Ruby 2.2 constraint 7 months ago
.ruby-gemset Remove gitignore, change to metasploit-framework 6 years ago
.ruby-version bump ruby version for latest goodies 1 week ago
.simplecov Remove fastlib 5 years ago
.travis.yml bump 2.5.7 as well 1 week ago
.yardopts remove HACKING from yardopts 2 years ago
CODE_OF_CONDUCT.md Change individual contacts 10 months ago
CONTRIBUTING.md Fix typo 5 days ago
COPYING Update COPYING 1 year ago
CURRENT.md add CURRENT.md to track major changes and how to migrate with them 1 year ago
Dockerfile bump Dockerfile to Ruby 2.6.5 1 week ago
Gemfile Get rid of RSpec implicit block expectation syntax 1 week ago
Gemfile.local.example update Gemfile.local example, use Gemfile.local if it exists when bundling 2 years ago
Gemfile.lock Bump version of framework to 5.0.54 6 days ago
LICENSE add jtr license 8 months ago
LICENSE_GEMS Bump version of framework to 5.0.54 6 days ago
README.md Added the link for 'COPYING' file 1 week ago
Rakefile trying rspec-retry 2 years ago
Vagrantfile neither Dockerfile nor Vagrant should actually install bundler these days 7 months ago
docker-compose.override.yml change docker root exec 1 year ago
docker-compose.yml change docker root exec 1 year ago
metasploit-framework.gemspec Update metasploit Payloads to 1.3.78 to bring in Java keyevent API 1 week ago
msf-json-rpc.ru Move under Msf::WebServices namespace 10 months ago
msf-ws.ru Add Metasploit data web service rackup file 9 months ago
msfconsole Improved CTRL-C edge case, Invalid Options edge case, help output, version output 1 year ago
msfd Removing unnecessary spaces 2 years ago
msfdb Don't delete ssl key and cert if a user asked not to 7 months ago
msfrpc Removing unnecessary spaces 2 years ago
msfrpcd Add background process ID output 9 months ago
msfupdate remove "require 'os'", not needed or available 1 year ago
msfvenom Changes to venom to handle pingbacks and really delete extra files, this time. 2 months ago


Metasploit Build Status Maintainability Test Coverage Docker Pulls

The Metasploit Framework is released under a BSD-style license. See COPYING for more details.

The latest version of this software is available from: https://metasploit.com

Bug tracking and development information can be found at: https://github.com/rapid7/metasploit-framework

New bugs and feature requests should be directed to: https://r-7.co/MSF-BUGv1

API documentation for writing modules can be found at: https://rapid7.github.io/metasploit-framework/api

Questions and suggestions can be sent to: Freenode IRC channel or e-mail the metasploit-hackers mailing list


Generally, you should use the free installer, which contains all of the dependencies and will get you up and running with a few clicks. See the Dev Environment Setup if you’d like to deal with dependencies on your own.

Using Metasploit

Metasploit can do all sorts of things. The first thing you’ll want to do is start msfconsole, but after that, you’ll probably be best served by reading Metasploit Unleashed, the great community resources, or the wiki.


See the Dev Environment Setup guide on GitHub, which will walk you through the whole process from installing all the dependencies, to cloning the repository, and finally to submitting a pull request. For slightly more information, see Contributing.