The VolatileMinds store offers exploits for known vulnerabilities, custom tools, and packs focused on open source and enterprise software. Our custom plugin extends the open-source Metasploit Framework, allowing you to search for and purchase material directly from the console. Free or purchased items can be synced and loaded automatically. Security engineers and penetration testers can use the plugin to more efficiently find, audit, and verify software on modern and dynamic enterprise networks.

Multiple types of products are available such as exploits, scanners, and tools for bruteforcing weak credentials. All scanners are free, so simply create an account, load the volatileminds plugin, then sync all the free scanners from the store to your local Metasploit installation.

Packs are collections of products, generally focused on a particular brand or piece of software. Purchasing a pack is always cheaper than purchasing its contents separately. You can then subscribe for a small fee to any purchased packs and automatically gain access to products added to the pack in the future at no extra cost.

New Products

ManageEngine Applications Manager Scanner

This module scans for instances of ManageEngine Applications Manager on the network.

0 credits
ManageEngine Applications Manager Bruteforce

This module attempts to brute force weak credentials on a ManageEngine Applicationa Manager instance.

2 credits
Wordpress Shortcodes Ultimate RCE

This module exploits an authenticated vulnerability in certain versions of the Shortcodes Ultimate Wordpress plugin.

9 credits
CanvasLMS Scanner

This module scans for instances of CanvasLMS.

0 credits

Top Products

Discourse Forums Bruteforce

This module bruteforces Discourse Forums credentials.

2 credits
MyBB Username/Salt/Password hash/Email Enumeration via Unauthenticated SQL injection

This module enumerates MyBB usernames and password hashes on vulnerable instances.

1 credits
Joomla com_fields SQL Injection User Enumeration

This module exploits an unauthenticated SQL injection in Joomla in order to enumerate users and password hashes.

5 credits
OpenText iHub Bruteforce

This module attempts to bruteforce weak credentials on OpenText iHub instances.

2 credits

Top Packs

Wordpress Pack

This pack focuses on Wordpress products

More info
Splunk Pack

This pack focuses on Splunk products

More info
Joomla Pack

This pack focuses on Joomla products

More info
MediaWiki Pack

This pack focuses on MediaWiki modules

More info

Top Categories

Wordpress   Enterprise   SQL Injection   Command Execution  

Stay up to date!

Sign up for our regular newsletter (usually weekly), detailing new products on the store.