Metasploit's scope for scanning and exploiting capabilities is staggering, and with the open extensions through plugins and modules, it's obtained a well-earned reputation for versatility and power. Sometimes, however, you are looking for a web application focus, and this is where a similar open-source framework called Websploit (https://sourceforge.net/p/websploit/wiki/Home/) comes into play. Just like Metasploit, it offers a command-line focused approach to calling and loading modules. It also shares the extensibility through plugins and modules that has helped Metasploit stay at the forefront of pen testing tools, but instead of being an all-inclusive suite, it focuses on many of the vulnerabilities ...
Metasploit's web-focused cousin – Websploit
Get Mastering Kali Linux for Web Penetration Testing now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.