Metasploit is described as 'Community Edition simplifies network discovery and vulnerability verification for specific exploits, increasing the effectiveness of vulnerability scanners such as Nexpose - for free. This helps prioritize remediation and eliminate false positives, providing true' and is a vulnerability scanner in the security & privacy category. There are more than 10 alternatives to Metasploit for a variety of platforms, including Linux, Windows, Mac, Web-based and Self-Hosted apps. The best Metasploit alternative is mimikatz, which is both free and Open Source. Other great apps like Metasploit are Exploit Pack, Sn1per Professional, Social-Engineer Toolkit and PhoneSploit Pro.
It's well known to extract plaintexts passwords, hash, PIN code and kerberos tickets from memory. mimikatz can also perform pass-the-hash, pass-the-ticket, build Golden tickets, play with certificates or private keys, vault... maybe make coffee?.
Exploit Pack is an open source project security that will help you adapt exploit codes on-the-fly.
Sn1per Professional is an all-in-one offensive security platform that provides a comprehensive view of your internal and external attack surface and offers an asset risk scoring system to prioritize, reduce, and manage risk.
The Social-Engineer Toolkit is an open source penetration testing framework designed for social engineering. SET has a number of custom attack vectors that allow you to make a believable attack quickly.
An all-in-one hacking tool to remotely exploit Android devices using ADB and Metasploit-Framework to get a Meterpreter session.
Censys is a search engine that allows computer scientists to ask questions about the devices and networks that compose the internet.
Automated point-in-time assessments across various platforms discover vulnerabilities, detecting defects, malware, and misconfigurations while employing scoring systems to help prioritize remediation efforts and providing tools for both experienced users and newcomers.
Some users think Nessus is a great Metasploit alternative, some don't.
Immunity's CANVAS makes available hundreds of exploits, an automated exploitation system, and a comprehensive, reliable exploit development framework to penetration testers and security professionals worldwide.
Core Impact Pro is the most comprehensive software solution assessing and testing security vulnerabilities throughout your organization. Core Impact Pro tests across a broad spectrum of risk areas including:
Cobalt Strike is threat emulation software. Red teams and penetration testers use Cobalt Strike to demonstrate the risk of a breach and evaluate mature security programs. Cobalt Strike exploits network vulnerabilities, launches spear phishing campaigns, hosts web drive-by...
We facilitate quick discovery and reporting of vulnerabilities in websites and network infrastructures, providing a set of powerful and tightly integrated pentesting tools that enable you to perform easier, faster, and more effective pentests.
France
EU
Argentina
United States
India
Romania
China
Nessus scans for vulnerabilities, Metasploit exploits upon the vulnerabilities. I guess the prices are similar though...