Legion Logo

Legion

0
Free
Visit Website

Legion is an open source, easy-to-use, super-extensible, and semi-automated network penetration testing framework that aids in discovery, reconnaissance, and exploitation of information systems. It features automatic recon and scanning with tools like NMAP, whataweb, nikto, Vulners, Hydra, SMBenum, dirbuster, sslyzer, webslayer, and more, along with a graphical interface and modular functionality for customization.

FEATURES

ALTERNATIVES

A set of commands for exploit developers and reverse-engineers to enhance GDB functionality.

RTA provides a framework of scripts for blue teams to test detection capabilities against malicious tradecraft, modeled after MITRE ATT&CK.

A tool for detecting and taking over subdomains with dead DNS records

An exploration of a new method to abuse DCOM for remote payload execution and lateral movement.

TikiTorch offers advanced process injection capabilities to execute code stealthily in another process's space.

A tool that simplifies the installation of tools and configuration for Kali Linux

PwnAuth is an open-source tool for generating and managing authentication tokens for penetration testing and red teaming exercises.

A CRLF and open redirect fuzzer