Rapid7 announces Community Edition of Metasploit
US security company Rapid7 has announced the launch of a Community Edition of the popular Metasploit exploit framework. According to Rapid7 Chief Security Officer and Metasploit Creator HD Moore, "The best way to tackle the increasing information security challenge is to share knowledge between practitioners, open source projects and commercial vendors."
The Community Edition is free for personal and professional use, combining the open source version of the framework with several of the features found in Metasploit Pro, to provide "an entry-level response to the evolving threat landscape". It includes "a basic version" of the commercial graphical user interface which is aimed at making it easier for users to get started with vulnerability verification and security assessments.
Network discovery features allow users to map networks to identify hosts, find open ports, and fingerprint their operating systems and services. Other features include better integration with vulnerability scanners such as Nexpose or Nmap, support for basic exploitation and a module browser for accessing "the world's largest database" of exploits.
More details about the Community Edition can be found in a post on the Rapid7 Community blog. Metasploit Community Edition is available to download from the Rapid7 web site. The open source version of Metasploit is released under a three-clause BSD licence.
- Rapid7 Launches New Metasploit Community Edition for Free and Simple Vulnerability Verification, press release from Rapid7.
- Metasploit attack framework reaches version 4, a report from The H.
- Rapid7 acquires the Metasploit project, a report from The H.