Among them is Rapid7's commercial offerings, which boast features and functionality you can't get in the free versions of Metasploit. Immunity Canvas is, and has always been, a top vulnerability testing tool. Dave Aitel, Immunity's founder and hacker extraordinaire, and the DailyDave community will always keep Canvas on the top of every penetration tester's wish list.
I recently spent several weeks with the Core Security Technologies Impact tool, which I looked at many years ago for InfoWorld. I was blown away by how much it has improved since the simple days of firing off remote exploits. Today it is a thoroughly interactive tool capable of launching soup-to-nuts attacks against almost any target. What impressed me the most was how well it automated client-side attacks. A typical free tool might create the crucial exploit needed and maybe even a simulated Web link for the "unsuspecting" victim to download from, but Impact does it all with a user-friendly wizard.
The main screen automates every step a manual attacker would make, from information gathering, attacking, and privilege escalation to cleanup. The process takes you almost literally step by step. But if you just want to break in, you begin by choosing the Client Side RPT feature. Clicking on the Client-side Attack and Penetration option starts the wizard.
Impact prompts you for the email addresses to which to send the "malicious" email. You can choose to send a single-exploit attack, a multi-exploit attack, or a phishing email to harvest credentials or information. You can then opt to send your exploit using a Web link or as a file attachment; you can also decide to exploit the email client itself. Using a file attachment often works better in getting by network defense tools.
Next, you select which exploit to send. Impact offers a range of hundreds of premade exploit modules.