Olivia
Online
Metasploit Project
@metasploit
Official account of the Metasploit Project, part of the @rapid7 family.
Mastodon: @[email protected]
Slack:
Distributed
Joined January 2009
182 Following
253.2K Followers
2.6K Posts
Pinned Tweet
Metasploit Framework 6.4 is out now! 🆕🎉
Features include:
🔹More Kerberos goodness, like support for diamond and sapphire tickets and extract tickets from compromised windows hosts to leverage unconstrained delegation
🔹DNS configuration 1/4
Checkout the War Room segment on the latest Hacktics and Telemetry episode where @stephenfewer and @_CryptoCat discuss a Cisco Catalyst SD-WAN 0-day that @rapid7 discovered and added to Metasploit https://t.co/3VxmlEsLhU
This week's release has a whooping 5 new modules including LPE 'sploits for dirty frag and a info leak scanner for Citrix NetScaler. Check it out at https://t.co/AckuaNy8WA
Found an unpatched RCE in Gogs 👀 Any authenticated user can get code execution on the server through argument injection into git rebase. Full @rapid7 writeup + @metasploit module available now!
🔗https://t.co/VAYLxZ6o1b
Who to follow
OffSec
@offsectraining
Empowering the world to fight cyber threats with indispensable cybersecurity skills and resources.
Support queries: https://t.co/HtFpqjjlRZ
OWASP® Foundation
@owasp
We improve the security of apps with community-led open source projects, 260 local chapters, and tens of thousands of members worldwide. Famous for OWASP Top 10
HackerSploit
@HackerSploit
Leading Provider of Free Cybersecurity Training: https://t.co/x91kxo5yck
Writeups: https://t.co/5xOk0uqsWc | Academy: https://t.co/GHqvlqpmd9
Episode 6 of Hacktics and Telemetry is Live!
Cisco SD-WAN Zero-Days, Mythos AI Evaluations, and Pwn2Own Drama
Get it here:
https://t.co/zI00iNh9QE
The ultimate persistence mechanism is here: Vim plugin persistence! Seriously, who can close Vim anyway?
Catch up on the latest Metasploit Wrap-up, also featuring Unauthenticated Marvell QConvergeConsole Path Traversal (CVE-2025-6793), Authenticated RCE in GestioIP 3.5.7 (CVE-2024-48760), and a classic PHP filter bypass in Dolibarr ERP/CRM (CVE-2023-30253).
As always, check it out the blog: https://t.co/FWswDbvN9j
This weeks' release is themed "Spring Cleanup" and brings some improvements to Metasploit! Key updates include payload fixes for Copy Fail on x64 and new support for ARMLE Linux, enhancements to the shiro_rememberme_v124_deserialize module for broader targeting, and general fixes for FTP utility modules. Checkout the details at https://t.co/2SmvQHgWUM
Catch this episode of Hacktics and Telemetry on Youtube, featuring our very own @zeroSteiner talking about the Metasploit MCP!
https://t.co/Sq8azNqWJD
This weeks wrap up is packed with new stuff including an MCP server, and new modules for relaying NTLM from HTTP to LDAP and a Copy Fail exploit with x64 and AARCH64 support https://t.co/ymF91y5pxA
Modern attacks move in minutes, so resilience depends on acting earlier.
At Rapid7’s Global Cybersecurity Summit, see how security teams are prioritizing real risk and moving beyond reactive operations.
Save your spot: https://t.co/FvsN3WNdn7
The latest Metasploit Weekly Wrapup is here! Highlights include a new RCE exploit for Langflow (CVE-2026-27966), improved check method visibility with detailed reasoning, and updates for legacy SMB targets. Plus 3 other new modules!
Read more: https://t.co/8vzImJC1it
Reactive workflows can’t keep up with AI-driven attacks and expanding attack surfaces.
⏳ In under a month, Rapid7’s Global Cybersecurity Summit will show how teams are aligning exposure, MDR, and AI to anticipate and act on risk earlier.
Save your spot: https://t.co/oYJVDRuvRP
Episode 4 of Hacktics and Telemetry is Live!
Bug Bounties, AI Superpowers, and Breach Impersonations
https://t.co/x6LOrvabva
The goodness contains:
02:13 - The Situation Room: Vercel breach, Shiny Hunter impersonators, and Anthropic’s Opus 4.7.
16:00 - The War Room: Bug bounty strategies and the Arson Framework with Harrison Richardson.
43:07 - The Mitigation Minute: Defending against supply chain attacks and identity compromise.
Happy Friday, Metasploit users! 🎉 The weekly wrapup is here with a massive update: 7 new modules, including 4 fresh RCE exploits (targeting AVideo, openDCIM, ChurchCRM, & Selenium Grid/Selenoid) and 3 new Windows persistence techniques. Get the details and happy hacking!
https://t.co/roIAfLzQkT
This week's release features a 2x faster msfvenom bootup time and new modules, including exploits for the Cisco Catalyst SD-WAN Controller Authentication Bypass (CVE-2026-20127) and osTicket Arbitrary File Read (CVE-2026-22200). https://t.co/BXkFhct8bd
Check out Episode 3 of Hacktics and Telemetry! https://t.co/G4FlCwAgjz
Inside you'll find 🔍:
00:00 - Welcome to Hacktics and Telemetry & The WordPress Dongle April Fool's Joke
02:56 - The Situation Room: LightLLM Hacks, Claude Source Code Leaks, & Chrome Zero-Days
23:10 - The War Room: Weaponizing Cellular IoT with Deral Heiland
41:59 - The Mitigation Minute: Supply Chain Defenses & Hardware Protections
Metasploit Framework is here with 5 new modules! Exploits for FreeScout (CVE-2026-28289) and Grav CMS (CVE-2025-50286) RCEs, plus a generic HTTP command execution module and a new Windows persistence technique. We also have a slew of bug fixes and enhancements including SOCKS proxy performance improvements #Metasploit https://t.co/j1z0041Cai
The latest #Metasploit Wrapup is here! 🎉 This week brings enhanced SMB NTLM relaying for better client compatibility (including smbclient), plus new modules for RCE in Eclipse Che (CVE-2025-12548), Barracuda ESG command injection (CVE-2023-2868), and an ESC/POS printer injector.
Check it out at https://t.co/7IQw0HJjoi
Get the latest Metasploit Framework update! It includes 2 new exploit modules targeting AVideo Encoder (Unauthenticated Command Injection) and FreePBX, along with LDAP query enhancements and 7 bug fixes. https://t.co/nJpFGMjhGx
No bad luck here! 🍀 The Metasploit weekly wrapup is live with 3 new modules: LeakIX Search, Linux RC4 payload packer, and an unauthenticated RCE for SPIP Saisies (CVE-2025-71243). Plus, check out Metasploit Pro 5.0.0!
Read the full details: https://t.co/TxoVyZhSiU #Metasploit
Last Seen Users on Sotwe
Most Popular Users
Elon Musk
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.8M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.2M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.7M followers
Taylor Swift
@taylorswift13
80.5M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.3M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.4M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
60.9M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers