All integrations
Network

Metasploit Pro integration

Export the Metasploit Pro project as XML and upload it against the Metasploit Pro source. Each vuln entry becomes a finding on the host address it was validated against.

Scan types imported

  • Validated vulnerability findings from exploitation runs

File import

XML

Standard Metasploit Pro XML export.

What Centraleyezer expects in the file

  • Per finding: vulnerability name and info text, attached to the host address element.
  • Assets are matched by IP address.

How imported findings are risk-scored

Every Metasploit Pro finding is normalised into Centraleyezer’s risk model on import: the scanner’s native severity scale maps to a configurable DREAD vector (Damage, Reproducibility, Exploitability, Affected users, Discoverability), which combines with asset criticality, network exposure, exploitability intelligence and the platform’s other risk factors to produce one comparable risk score across every scanner you run. CVE, CVSS and CWE metadata are preserved on the finding for reference and reporting, and duplicate findings from repeated imports are automatically correlated instead of creating noise.

See the Metasploit Pro integration live

Book a demo and we’ll connect your Metasploit Pro data and walk through risk-based prioritisation on your own findings.

Metasploit Pro Integration — Setup & Imported Scan Types