carlospolop / legion Goto Github PK
View Code? Open in Web Editor NEWAutomatic Enumeration Tool based in Open Source tools
Home Page: https://book.hacktricks.xyz/pentesting-methodology
License: MIT License
Automatic Enumeration Tool based in Open Source tools
Home Page: https://book.hacktricks.xyz/pentesting-methodology
License: MIT License
I think could be really comfortable create a Dockerfile
for legion to have a ready-to-run container out of the box.
If you want, I can take care of it.
Hello there,
I've been trying to run legion without getting into the console.
So far, I managed to set the host but not able to run it, I don't know if it's possible.
My attempt:
legion --host host.domain -i 2 -r startGeneral
That's my idea of how to run it, but it doesn't work. I also tried:
legion --host host.domain -i 2 -r
Gives me the error
TypeError: main_run() missing 1 required positional argument: 'exec'
Hey mate,
Is it possible to add support to Subnet scanning or a target list from file?
Thanks again,
Dvir
This sounds good, but I don't dedicate much time to legion as I support other programs more. Could you submit a PR?
Originally posted by @carlospolop in #12 (comment)
Hi @carlospolop,
I noticed you mentioned that you don't dedicate much time to Legion as you support other programs more. It's important to prioritize your efforts where they are needed most. I understand that contributing to open-source projects can be a balancing act.
Hey mate,
Will it possible to select the specific feature per scan and to do a "test run" to make sure that all the dependencies are working?
Thanks
Dvir
Using the Dockerfile results in a container that is missing:
Example:
# cat https_cmsmap_443.err
/bin/sh: 1: cmsmap: not found
It also seems like a wordlist is missing:
# cat http_medium_dirsearch_80.out
The wordlist file does not exist
In docker file used apt command and it is not available on MAC
> [4/6] RUN apt-get install -y cewl curl davtest dirb dnsrecon dnsutils enum4linux exploitdb finger git hydra ike-scan metasploit-framework nbtscan netcat nfs-common nikto nmap ntp oscanner python2 python3 python3-ldapdomaindump python3-pip smbclient smbmap snmp sqlmap sslscan sslyze wafw00f whatweb:
#8 0.210 Reading package lists...
#8 0.919 Building dependency tree...
#8 1.051 Reading state information...
#8 1.055 Package netcat is a virtual package provided by:
#8 1.055 netcat-traditional 1.10-47
#8 1.055 netcat-openbsd 1.218-5
#8 1.055
#8 1.061 E: Package 'netcat' has no installation candidate
Hi!
As the original enum4linus is dead and not being updated at all (including errors), I think Legion should utilize the Python based version of it, that supports much more actions:
https://github.com/0v3rride/Enum4LinuxPy
Thanks for this great tool!
Dviros
A declarative, efficient, and flexible JavaScript library for building user interfaces.
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. ๐๐๐
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google โค๏ธ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.