2018-12-24T07:46:00Z
Miriam Tover - PeerSpot reviewer
Service Delivery Manager at PeerSpot (formerly IT Central Station)
  • 0
  • 16

What needs improvement with Rapid7 Metasploit?

Please share with the community what you think needs improvement with Rapid7 Metasploit.

What are its weaknesses? What would you like to see changed in a future version?

4
PeerSpot user
4 Answers
MM
Project Director at a tech services company with 1,001-5,000 employees
Real User
2020-10-20T04:19:00Z
Oct 20, 2020

At the time I was using it, the graphical user interface needed some improvements. It might be better now because there was a very big community behind it, and of course, newer versions are always improved. The free, community edition I was using, lacked some very specific exploits but, as I remember, under the commercial version, you could find your exploits. All the features that are available on the command line could be integrated with the graphical user interface.

Search for a product comparison
EG
Senior Information Technology Security Officer at a financial services firm with 501-1,000 employees
Real User
2020-06-25T10:49:27Z
Jun 25, 2020

The solution should be more user friendly. Right now, a user needs a certain level of technicality. The solution should improve the responsiveness of its live technical support.

AS
Principal security consultant at a computer software company with 201-500 employees
Real User
2020-06-04T09:41:24Z
Jun 4, 2020

Integration with popular vulnerability scanners would be a useful feature. Better automation capabilities would be an improvement. For example, if a project is moving from a development to a testing environment, then automation is crucial. We are using Jenkins, JIRA, and other tools for SecOps and DevOps. If somebody is storing code or a project in SVN then it needs to be fully automated. We need the ability for the scanner to run, then have Checkmarx scan them, then exploit the vulnerabilities if any are found.

AA
Information Security and Governance Lead Engineer at a comms service provider with 1,001-5,000 employees
Real User
2018-12-24T07:46:00Z
Dec 24, 2018

* The GUI version is not as effective as a command prompt. For general users, the PT using GUI could be improved. At the same, the track of a phishing emails were not accurate sometimes. Rapid7 could work on this further. * Metasploit cannot be installed on a machine with an antivirus. This could be improved. * There were times when it hung, then I had to restart the DB service. This leaves an area of improvement for them. * It is necessary to add some training materials and a tutorial for beginners.

Find out what your peers are saying about Rapid7, Tenable Network Security, Qualys and others in Vulnerability Management. Updated: November 2022.
653,584 professionals have used our research since 2012.
Related Questions
Miriam Tover - PeerSpot reviewer
Service Delivery Manager at PeerSpot (formerly IT Central Station)
May 12, 2022
Hi, We all know it's really hard to get good pricing and cost information. Please share what you can so you can help your peers.
2 out of 3 answers
EG
Senior Information Technology Security Officer at a financial services firm with 501-1,000 employees
Jun 25, 2020
The pricing of the solution is pretty good. That said, it would be good if there could be more of a discount. It would be better for us.
ME
Senior Cyber Security Specialist at a tech services company with 1,001-5,000 employees
Oct 5, 2021
There are two versions available, one of which is the Pro version, and the other is the free version. In the four years that we've been using this solution, we've only used the free version. We haven't had any reason to use the Pro Version.
Miriam Tover - PeerSpot reviewer
Service Delivery Manager at PeerSpot (formerly IT Central Station)
May 12, 2022
How do you or your organization use this solution? Please share with us so that your peers can learn from your experiences. Thank you!
2 out of 6 answers
AS
Principal security consultant at a computer software company with 201-500 employees
Jun 4, 2020
We are a solution provider and we offer a variety of services that include security and vulnerability management. Rapid7 Metasploit is one of the products that we use to identify vulnerabilities. Specifically, Metasploit is for penetration testing. It uses models to check for exploitable vulnerabilities, and if one is detected then we would raise the importance of solving the problem. We normally operate Metasploit at the client site, which helps us to explore and assess the vulnerabilities directly in the environment.
EG
Senior Information Technology Security Officer at a financial services firm with 501-1,000 employees
Jun 25, 2020
We're using the solution in conjunction with some governmental agencies.
Download Free Report
Download our free Vulnerability Management Report and find out what your peers are saying about Rapid7, Tenable Network Security, Qualys, and more! Updated: November 2022.
DOWNLOAD NOW
653,584 professionals have used our research since 2012.