Exploit Pack is an open source project security that will help you adapt exploit codes on-the-fly.

Metasploit is described as 'Community Edition simplifies network discovery and vulnerability verification for specific exploits, increasing the effectiveness of vulnerability scanners such as Nexpose - for free. This helps prioritize remediation and eliminate false positives, providing true' and is a vulnerability scanner in the security & privacy category. There are more than 10 alternatives to Metasploit for a variety of platforms, including Linux, Windows, Mac, Web-based and Self-Hosted apps. The best Metasploit alternative is Exploit Pack. It's not free, so if you're looking for a free alternative, you could try mimikatz or PhoneSploit Pro. Other great apps like Metasploit are Sn1per Professional, Social-Engineer Toolkit, Nessus and Immunity CANVAS.
Exploit Pack is an open source project security that will help you adapt exploit codes on-the-fly.

It's well known to extract plaintexts passwords, hash, PIN code and kerberos tickets from memory. mimikatz can also perform pass-the-hash, pass-the-ticket, build Golden tickets, play with certificates or private keys, vault... maybe make coffee?.

An all-in-one hacking tool to remotely exploit Android devices using ADB and Metasploit-Framework to get a Meterpreter session.



Sn1per Professional is an all-in-one offensive security platform that provides a comprehensive view of your internal and external attack surface and offers an asset risk scoring system to prioritize, reduce, and manage risk.

The Social-Engineer Toolkit is an open source penetration testing framework designed for social engineering. SET has a number of custom attack vectors that allow you to make a believable attack quickly.

Automated point-in-time assessments across various platforms discover vulnerabilities, detecting defects, malware, and misconfigurations while employing scoring systems to help prioritize remediation efforts and providing tools for both experienced users and newcomers.




Immunity's CANVAS makes available hundreds of exploits, an automated exploitation system, and a comprehensive, reliable exploit development framework to penetration testers and security professionals worldwide.
Censys is a search engine that allows computer scientists to ask questions about the devices and networks that compose the internet.


Core Impact Pro is the most comprehensive software solution assessing and testing security vulnerabilities throughout your organization. Core Impact Pro tests across a broad spectrum of risk areas including:
Cobalt Strike is threat emulation software. Red teams and penetration testers use Cobalt Strike to demonstrate the risk of a breach and evaluate mature security programs. Cobalt Strike exploits network vulnerabilities, launches spear phishing campaigns, hosts web drive-by...




We facilitate quick discovery and reporting of vulnerabilities in websites and network infrastructures, providing a set of powerful and tightly integrated pentesting tools that enable you to perform easier, faster, and more effective pentests.






Nessus scans for vulnerabilities, Metasploit exploits upon the vulnerabilities. I guess the prices are similar though...