carlospolop / legion Goto Github PK

I think could be really comfortable create a Dockerfile for legion to have a ready-to-run container out of the box.
If you want, I can take care of it.

Hello there,

I've been trying to run legion without getting into the console.

So far, I managed to set the host but not able to run it, I don't know if it's possible.

My attempt:

legion --host host.domain -i 2 -r startGeneral

That's my idea of how to run it, but it doesn't work. I also tried:

legion --host host.domain -i 2 -r

Gives me the error
TypeError: main_run() missing 1 required positional argument: 'exec'

Hey mate,
Is it possible to add support to Subnet scanning or a target list from file?

Thanks again,
Dvir

          This sounds good, but I don't dedicate much time to legion as I support other programs more. Could you submit a PR?

Originally posted by @carlospolop in #12 (comment)
Hi @carlospolop,

I noticed you mentioned that you don't dedicate much time to Legion as you support other programs more. It's important to prioritize your efforts where they are needed most. I understand that contributing to open-source projects can be a balancing act.

Hey mate,
Will it possible to select the specific feature per scan and to do a "test run" to make sure that all the dependencies are working?

Thanks
Dvir

Using the Dockerfile results in a container that is missing:

• nitko
• cmsmap
• wafw00f
• whatweb

Example:

# cat https_cmsmap_443.err
/bin/sh: 1: cmsmap: not found

It also seems like a wordlist is missing:

# cat http_medium_dirsearch_80.out
The wordlist file does not exist

Hey there,

This is a very good tool. I'm having a strange behavior, after the scan on a host finishes and I quit legion some output (from the scans) appears:

In docker file used apt command and it is not available on MAC

 > [4/6] RUN apt-get install -y         cewl         curl         davtest         dirb         dnsrecon         dnsutils         enum4linux         exploitdb         finger         git         hydra         ike-scan         metasploit-framework         nbtscan         netcat         nfs-common         nikto         nmap         ntp         oscanner         python2         python3         python3-ldapdomaindump         python3-pip         smbclient         smbmap         snmp         sqlmap         sslscan         sslyze         wafw00f         whatweb:
#8 0.210 Reading package lists...
#8 0.919 Building dependency tree...
#8 1.051 Reading state information...
#8 1.055 Package netcat is a virtual package provided by:
#8 1.055   netcat-traditional 1.10-47
#8 1.055   netcat-openbsd 1.218-5
#8 1.055
#8 1.061 E: Package 'netcat' has no installation candidate

Hi!
As the original enum4linus is dead and not being updated at all (including errors), I think Legion should utilize the Python based version of it, that supports much more actions:
https://github.com/0v3rride/Enum4LinuxPy

Thanks for this great tool!
Dviros