How to install Legion on Kali Linux using Docker?

Use the runIt.sh script in the docker directory after setting up Docker as a non-root user and configuring X11, but be aware of required fixes for Nmap segfaults as detailed in the README for Kali 2022+.

What's the difference between Legion and Sparta?

Legion is a fork of Sparta, refactored to Python 3.8+ with PyQT6 GUI upgrades, real-time auto-saving, Docker support, and active development, offering improved responsiveness and features like task completion estimates.

Can I add my own penetration testing tools to Legion?

Yes, Legion supports modular extensibility; users can integrate custom scripts by editing the legion.conf file to modify scan configurations and scheduler settings, as explained in the 'Modifying Configuration' section.

Does Legion work on macOS?

Limited support is mentioned for OSX using XQuartz, but it's not yet in the runIt.sh script and requires manual setup with socat, indicating complex and unofficial compatibility.

What security tools are included in Legion's automated scans?

Legion integrates tools like Nmap, whatweb, nikto, Vulners, Hydra, SMBenum, dirbuster, and more, with almost 100 auto-scheduled scripts for comprehensive network reconnaissance and vulnerability detection.

Is Legion good for beginners in penetration testing?

While the intuitive GUI aids beginners, the complex installation, dependency management, and platform-specific issues might pose challenges for those new to Linux or security tools.

Open-Awesome

Legion

GPL-3.0Pythonv0.4.3

Legion is a semi-automated network penetration testing framework for discovery, reconnaissance, and exploitation.

GitHub

1.1k stars186 forks0 contributors

What is Legion?

Legion is an open-source, semi-automated network penetration testing framework that assists security professionals in discovering, scanning, and exploiting vulnerabilities in information systems. It integrates multiple security tools into a unified graphical interface, automating reconnaissance tasks and correlating vulnerabilities with known exploits. The tool is designed to streamline the testing process, making it more efficient and accessible.

Target Audience

Penetration testers, security researchers, and red teamers who need an extensible, GUI-driven tool for network security assessments. It suits both beginners seeking guided automation and experts requiring customizable workflows.

Value Proposition

Developers choose Legion for its balance of automation and control, offering a user-friendly interface that reduces manual effort while allowing deep customization through modular scripts. Its active development, Docker support, and integration with tools like Nmap and Exploit-Database provide a reliable, up-to-date testing environment.

Overview

Legion is an open source, easy-to-use, super-extensible and semi-automated network penetration testing tool that aids in discovery, reconnaissance and exploitation of information systems.

Use Cases

Best For

Automating initial reconnaissance and vulnerability scanning in network penetration tests
Correlating CVEs with available exploits during security assessments
Conducting staged scanning for IPS evasion in sensitive environments
Managing penetration testing projects with real-time auto-saving
Integrating custom tools and scripts into a unified testing workflow
Deploying a consistent testing environment using Docker containers

Not Ideal For

Environments requiring fully automated, headless CLI tools for integration into CI/CD pipelines
Teams in regulated settings that mandate audited, non-containerized installations without Docker
Projects focused exclusively on web app testing without network-level reconnaissance needs

Pros & Cons

Pros

Automated Reconnaissance Integration

Integrates nearly 100 auto-scheduled scripts from tools like Nmap, Nikto, and Hydra, streamlining discovery and scanning phases as highlighted in the features list.

Intuitive Graphical Interface

Offers a PyQT6-based GUI with context menus, task completion estimates, and one-click scanning, making it accessible for both novice and experienced testers.

Modular Extensibility

Allows users to easily customize and integrate their own scripts and tools by editing configuration files, enhancing flexibility for tailored testing workflows.

Vulnerability-Exploit Correlation

Automatically detects CPEs and CVEs, linking CVEs to exploits from the Exploit-Database, which aids in efficient exploitation during assessments.

Cons

Complex Installation Process

The README details lengthy setup procedures, especially for Docker on non-standard systems, and warns that traditional installation is difficult to support across platforms, requiring specific fixes like for Nmap segfaults on Kali.

Limited Distribution Support

Officially promises correct operation only on Ubuntu 20.04 for traditional installation, with other distros like Kali needing workarounds, indicating platform-specific instability.

Repository Transition Issues

The notice about the repository moving to a new location suggests potential instability or breaking changes during the transition, which could affect updates and support.

Frequently Asked Questions

Related Projects

A tool for secrets management, encryption as a service, and privileged access management

Stars35,557

Forks4,660

Last commit1 day ago

How-to-Secure-A-Linux-Server

An evolving how-to guide for securing a Linux server.

Stars25,972

Forks1,692

Last commit1 month ago

RustScan

🤖 The Modern Port Scanner 🤖

Stars19,713

Forks1,324

Last commit3 days ago

Community-curated · Updated weekly · 100% open source

Found a gem we're missing?

Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.

Submit a project Star on GitHub