Metasploit vs. VMware AppDefense (discontinued)

Overview
ProductRatingMost Used ByProduct SummaryStarting Price
Metasploit
Score 9.0 out of 10
N/A
Metasploit is open source network security software described by Rapid7 as the world’s most used penetration testing framework, designed to help security teams do more than just verify vulnerabilities, manage security assessments, and improve security awareness.N/A
VMware AppDefense (discontinued)
Score 4.0 out of 10
N/A
VMware AppDefense was a hypervisor-native workload protection platform for enterprise virtualization and security teams, used to deliver a secure virtual infrastructure and simplify micro-segmentation planning by providing application visibility, reputation scoring, and security. The product is discontinued, and no longer available.N/A
Pricing
MetasploitVMware AppDefense (discontinued)
Editions & Modules
No answers on this topic
No answers on this topic
Offerings
Pricing Offerings
MetasploitVMware AppDefense (discontinued)
Free Trial
NoYes
Free/Freemium Version
NoNo
Premium Consulting/Integration Services
NoNo
Entry-level Setup FeeNo setup feeOptional
Additional Details
More Pricing Information
Community Pulse
MetasploitVMware AppDefense (discontinued)
Considered Both Products
Metasploit
Chose Metasploit
Acunetix vulnerability scanner, Netsparker, SQLMap
Chose Metasploit
You can configure and develop your own versions of exploits that are suitable for your business. The free version is very useful and the Rapid7 website has a lot of info to help you understand the exploits. Nessus just lets you identify the vulnerabilities but Metasploit lets …
Chose Metasploit
Metasploit is an all around good suite of tools to test and validate potential vulnerabilites. Other tools have bits and pecies such as NMAP, Nessus, Burp Suite, etc. but Metasploit can function in the same way but more.
Chose Metasploit
Metasploit is the most well-known tool in the average pen tester's toolkit. It's hard to compare to its neighbor's due to its size and following.
Chose Metasploit
They are equal in my mind. It really just depends on a user's preference. Cobalt Strike is essential a graphical user interface (GUI) built on top of Metasploit, so it will feel very familiar to Metasploit users. The Pentestly Framework is also quite similar to Metasploit. …
VMware AppDefense (discontinued)
Chose VMware AppDefense (discontinued)
None. We selected AppDefense because our vSphere Enterprise Plus with Operation Management needed to be renewed. It also was at the End of Life and new offerings were being presented, so it made sense to upgrade to vSphere Platinum and gain AppDefense as another solution to …
Chose VMware AppDefense (discontinued)
We haven't.
Chose VMware AppDefense (discontinued)
We were advised that vShield will be retired and its functionality was being integrated with App Defense. Carbon Black is or was the only AV vendor that integrated with it. A priority for us was to use a VMware supported solution. Sophos Intercept X was creating their own …
Chose VMware AppDefense (discontinued)
The 2 biggest advantages are where the product sits in the VMWare Stack and the approach to detecting anomalous behavior. When I compare this to ExtraHop or NetScout, They sit outside and collect a ton of data and offer not much assistance in evaluating the data. We dont need …
Chose VMware AppDefense (discontinued)
We have several security applications, but none exactly like VMware AppDefense. That is one of the reasons I like it, as it seems to take a different angle on monitoring and protection. The other apps monitor different things, but one thing AppDefense seems to have over them …
Best Alternatives
MetasploitVMware AppDefense (discontinued)
Small Businesses

No answers on this topic

GitLab
GitLab
Score 8.7 out of 10
Medium-sized Companies
Veracode
Veracode
Score 8.7 out of 10
Veracode
Veracode
Score 8.7 out of 10
Enterprises
Veracode
Veracode
Score 8.7 out of 10
Veracode
Veracode
Score 8.7 out of 10
All AlternativesView all alternativesView all alternatives
User Ratings
MetasploitVMware AppDefense (discontinued)
Likelihood to Recommend
10.0
(0 ratings)
8.4
(0 ratings)
Support Rating
7.0
(0 ratings)
8.5
(0 ratings)
User Testimonials
MetasploitVMware AppDefense (discontinued)
Likelihood to Recommend
In security of information it's vital to think like a hacker and it's important to know the tools they use for attacks. So this software gives you the exploits that are already in the wild and to the access of everyone. That's very dangerous so you have to be aware of it.
Read full review
I believe that the product is priced well enough that a small business that is concerned with data center security can justify using the product. My environment hasn't scaled up very far yet, but I am a little concerned that when we get to a certain point, the management console will get full and be more difficult to track. An enterprise customer might see that as a problem.
Read full review
Pros
  • Scanning our network for new or existing vulnerable systems.
  • Automation of manual tests and exploits to allow what used to be days of effort to be squeezed into hours.
  • Metasploit has become an integral part in our validation of new systems before their inclusion in our production network.
Read full review
  • Provides detailed process and command-line information.
  • Provides visibility into what connections are being made to/from a specific server/service.
  • Ability to group multiple VMs into service groups for proper correlation.
Read full review
Cons
  • If Metasploit could support payloads written in languages other than Ruby, that would be amazing and could help draw in a larger set of contributors.
Read full review
  • Steep learning and a lot of moving pieces
  • Very new product and Carbon Black is the only 3rd party vendor that can integrate
  • Limited information and training. We've never been to VMworld but it was barely mentioned at the VMUG UserCons we've attended
Read full review
Support Rating
We don't use it.
Read full review
Their support chat system is very responsive, and if they don't resolve it quickly with that method, then they will remote in and help that way.
Read full review
Alternatives Considered
Acunetix vulnerability scanner, Netsparker, SQLMap
Read full review
We were advised that vShield will be retired and its functionality was being integrated with App Defense. Carbon Black is or was the only AV vendor that integrated with it. A priority for us was to use a VMware supported solution. Sophos Intercept X was creating their own module. Trend Micro Deep Security didn't have any plans in place to move from vShield.
Read full review
Return on Investment
  • We have been able to weed out false positives with a more manual vetting of scanned vulnerabilities.
  • Our teams have become more well versed in penetration testing with Metasploit to understand the vulnerabilities potentially present.
Read full review
  • For the cost of the upgrade to vSphere Platinum compared to the costs we were already paying for vSphere Enterprise Plus with Operations Management was comparable. It made sense to upgrade and with that, we received the added features of AppDefense.
Read full review
ScreenShots