29 January 2008 | 45,613 views

Metasploit Framework v3.1 Released for Download

Check Your Web Security with Acunetix

Ah Metasploit development cycle seems to be picking up, I guess with greater community support the bugs get ironed out and the new features introduced faster.

Good to see an update so soon after Metasploit Framework v3.0 was released.

I keep closely up to date with Metasploit as it’s pretty much the best free tool out there right now, and certainly the most exciting along with Nmap.

The latest version features a graphical user interface, full support for the Windows platform, and over 450 modules, including 265 remote exploits. Metasploit 3.1 consolidates a year of research and development, integrating ideas and code from some of the sharpest and most innovative folks in the security research community.

The graphical user interface is a major step forward for Metasploit users on the Windows platform. Development of this interface was driven by Fabrice Mourron and provides a wizard-based exploitation system, a graphical file and process browser for the Meterpreter payloads, and a multi-tab console interface. “The Metasploit GUI puts Windows users on the same footing as those running Unix by giving them access to a console interface to the framework” said H D Moore, who worked with Fabrice on the GUI project.

The latest incarnation of the framework includes a bristling arsenal of exploit modules that are sure to put a smile on the face of every information warrior. Notable exploits in the 3.1 release include a remote, unpatched kernel-land exploit for Novell Netware, written by toto, a series of 802.11 fuzzing modules that can spray the local airspace with malformed frames, taking out a wide swath of wireless-enabled devices, and a battery of exploits targeted at Borland’s InterBase product line. “I found so many holes that I just gave up releasing all of them”, said Ramon de Carvalho, founder of RISE Security, and Metasploit contributor.

Metasploit runs on all modern operating systems, including Linux, Windows, Mac OS X, and most flavors of BSD. Metasploit has been used on a wide range of hardware platforms, from massive Unix mainframes to the tiny Nokia n800 handheld. Users can access Metasploit using the tab-completing console interface, the Gtk GUI, the command line scripting interface, or the AJAX-enabled web interface. The Windows version of Metasploit includes all software dependencies and a selection of useful networking tools.

You can download Metasploit v3.1 here:

Metasploit v3.1 tar.gz
Metasploit v3.1 exe

Or read more here.



Recent in Exploits/Vulnerabilities:
- XML Quadratic Blowup Attack Blows Up WordPress & Drupal
- Password Manager Security – LastPass, RoboForm Etc Are Not That Safe
- Hacking Your Fridge – Internet of Things Security

Related Posts:
- Metasploit 2.7 Released – Automated Hacking
- Metasploit Framework 3.4.1 Released – 16 New Exploits, 22 Modules & 11 Meterpreter Scripts
- Metasploit 3.3 Released! Exploitation Framework

Most Read in Exploits/Vulnerabilities:
- Learn to use Metasploit – Tutorials, Docs & Videos - 227,333 views
- AJAX: Is your application secure enough? - 119,089 views
- eEye Launches 0-Day Exploit Tracker - 85,051 views

Low-cost VPS Hosting

14 Responses to “Metasploit Framework v3.1 Released for Download”

  1. goodpeople 29 January 2008 at 10:29 am Permalink

    Metasploit rulez!

  2. dirty 29 January 2008 at 9:31 pm Permalink

    Wasn’t the web interface kinda like a gui for the last version? Havn’t downloaded this yet but will tonight. Interested to see how the 2 compare. Seems like Metasploit is getting into ease of use, I hope it doesnt replace functionality.

  3. goodpeople 29 January 2008 at 10:12 pm Permalink

    I like the gui. But the web interface and commandline are still available.

  4. Pantagruel 30 January 2008 at 10:53 pm Permalink

    With goodpeople, the GUI looks pretty slick but I guess avid Metasploit users preffer either the webinterface or the CLI

  5. Dornez 1 February 2008 at 10:32 pm Permalink

    Has the autopwn feature been folded into the official release for this version?

  6. eM3rC 7 February 2008 at 8:00 am Permalink

    I vote for the GUI personally.

    Great program with even more punch!

  7. J. Lion 11 February 2008 at 10:46 pm Permalink

    How does this compare to Core Impact (without considering the cost factor)? Is this better?

  8. eM3rC 12 February 2008 at 2:24 am Permalink

    Metasploit is an excellent disto and seriously recommend you use it. Isn’t core impact like a $4000 program?

  9. J. Lion 12 February 2008 at 6:00 pm Permalink

    @eM3rC

    Probably more – as from what I heard it was a less steep learning curve vs metasploit

  10. eM3rC 13 February 2008 at 2:28 am Permalink

    I would say metasploit because
    1) its not illegally obtained
    2) you can get help really easily
    3) will be a lot more information on it because it is a free and readily available distro.

  11. fever 8 April 2008 at 7:33 pm Permalink

    got this and it is lots of well made tools.

  12. xuan_anhhh 7 June 2008 at 5:27 pm Permalink

    why i can’t download metasploit v3.1

  13. Bogwitch 9 June 2008 at 8:13 am Permalink

    Sheesh.

    The Metasploit servers have an intelligence filter. They ascertain the ability of the proposed downloader to execute their software in a safe manner and, based on some astonishingly clever heuristics, allow or disallow the download. You failed the test.

  14. Navin 9 June 2008 at 1:49 pm Permalink

    HAhahahahahahahahahahahaha

    ROFLMAO man!!