Metasploit 2024 Annual Wrap-Up | Rapid7 Blog

Metasploit added support for ESC8, an AD CS attack that relays SMB authentication to generate valid certificates. The framework also improved Windows Meterpreter stealth with PoolParty injection and enhanced LDAP support for data gathering. Additionally, Metasploit 6.4 released with new features like the dns command and support for multiple session types, including PostgreSQL, MSSQL, MySQL, and SMB.