How to make use of a exploit that is not available in metasploit?

I want to exploit a Microsoft IIS HTTPD 10.0 server open which is open in PORT 80. However there is no available exploits in Metasploit but there are few vulnerabilities in this site. Is it possible to make use of these vulnerabilities?