When comparing Wireshark vs Metasploit, the Slant community recommends Wireshark for most people. In the question“What are the best penetration test tools?” Wireshark is ranked 1st while Metasploit is ranked 2nd. The most important reason people chose Wireshark is:
The included WinPcap does not allow Loopback Packet Capture, but [Npcap](https://nmap.org/npcap/) does. This way it is easy to monitor SQL commands sent to a local database e.g. from PostgreSQL or NHibernate.
Specs
Ranked in these QuestionsQuestion Ranking
Pros
Pro Npcap
The included WinPcap does not allow Loopback Packet Capture, but Npcap does.
This way it is easy to monitor SQL commands sent to a local database e.g. from PostgreSQL or NHibernate.
Pro Has a large collection of penetration testing tools
Metasploit comes with an extensive arsenal of pentesting tools designed to develop and test common security exploits.
Pro Has a large exploits database
Metasploit lets pentesters access and execute proven exploits which are stored in Metasploit's database.
Cons
Con Steep learning curve
Con USB monitoring
The experimental USB monitoring can lock up your PC.
Con Requires experience with CLI commands
To use the full extent of the tools available in Metasploit you need to be comfortable with the CLI.