A client designed to retrieve vulnerability-related information from the modules available in Metasploit. It monitors changes to the file db/modules_metadata_base.json.
The collected data is then transmitted to the Vulnerability-Lookup API as sightings.
pipx is an easy way to install and run Python applications in isolated environments.
$ pipx install MetasploitSight
$ export METASPLOITSIGHT_CONFIG=~/.MetasploitSight/conf.py
$ git clone https://github.com/rapid7/metasploit-framework/ metasploit-repositoryThe configuration for MetasploitSight should be defined in a Python file (e.g., ~/.MetasploitSight/conf.py).
You must then set an environment variable (METASPLOITSIGHT_CONFIG) with the full path to this file.
Run the client:
$ MetasploitSight
Starts the MetasploitSight client. It fetches updates from the official Metasploit repository and checks db/modules_metadata_base.json for changes.
Show available commands and options:
$ MetasploitSight --help
MetasploitSight is licensed under GNU General Public License version 3
Copyright (c) 2025 Computer Incident Response Center Luxembourg (CIRCL)
Copyright (C) 2025 Cédric Bonhomme - https://github.com/cedricbonhomme