Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/evilsocket/legba

A multiprotocol credentials bruteforcer / password sprayer and enumerator. 🥷
https://github.com/evilsocket/legba

Last synced: 19 days ago
JSON representation

A multiprotocol credentials bruteforcer / password sprayer and enumerator. 🥷

Host: GitHub
URL: https://github.com/evilsocket/legba
Owner: evilsocket
License: other
Created: 2023-10-23T15:44:06.000Z (about 1 year ago)
Default Branch: main
Last Pushed: 2024-03-12T12:39:48.000Z (8 months ago)
Last Synced: 2024-05-02T00:07:29.159Z (6 months ago)
Language: Rust
Homepage:
Size: 834 KB
Stars: 1,248
Watchers: 11
Forks: 64
Open Issues: 6
Metadata Files:
- Readme: README.md
- Funding: .github/FUNDING.yml
- License: LICENSE

Awesome Lists containing this project

awesome-offensive-rust - Legba - A multiprotocol credentials bruteforcer / password sprayer and enumerator. (Projects)
awesome-repositories - evilsocket/legba - A multiprotocol credentials bruteforcer / password sprayer and enumerator. 🥷 (Rust)

README

        


  Join the project community on our server!

  



  

    

  







  

  

  

  

  



`Legba` is a multiprotocol credentials bruteforcer / password sprayer and enumerator built with Rust and the Tokio asynchronous runtime in order to achieve

better performances and stability while consuming less resources than similar tools (see the benchmark below).

For the building instructions, usage and the complete list of options [check the project Wiki](https://github.com/evilsocket/legba/wiki). For a list of [recipes](https://github.com/evilsocket/legba/wiki/Recipes) you can check the [legba cookbook repository](https://github.com/evilsocket/legba-cookbook).

## Supported Protocols/Features:

AMQP (ActiveMQ, RabbitMQ, Qpid, JORAM and Solace), Cassandra/ScyllaDB, DNS subdomain enumeration, FTP, HTTP (basic authentication, NTLMv1, NTLMv2, multipart form, custom requests with CSRF support, files/folders enumeration, virtual host enumeration), IMAP, Kerberos pre-authentication and user enumeration, LDAP, MongoDB, MQTT, Microsoft SQL, MySQL, Oracle, PostgreSQL, POP3, RDP, Redis, Samba, SSH / SFTP, SMTP, Socks5, STOMP (ActiveMQ, RabbitMQ, HornetQ and OpenMQ), TCP and UDP port scanning with banner grabbing, Telnet, VNC.

## Benchmark

Here's a benchmark of `legba` versus `thc-hydra` running some common plugins, both targeting the same test servers on localhost. The benchmark has been executed on a macOS laptop with an M1 Max CPU, using a wordlist of 1000 passwords with the correct one being on the last line. Legba was compiled in release mode, Hydra compiled and installed via [brew formula](https://formulae.brew.sh/formula/hydra).

Far from being an exhaustive benchmark (some legba features are simply not supported by hydra, such as CSRF token grabbing), this table still gives a clear idea of how using an asynchronous runtime can drastically improve performances.

| Test Name | Hydra Tasks | Hydra Time | Legba Tasks | Legba Time |

| --------- | ----------- | ---------- | ----------- | ---------- |

| HTTP basic auth | 16 | 7.100s | 10 | 1.560s **(🚀 4.5x faster)** |

| HTTP POST login (wordpress) | 16 | 14.854s | 10 | 5.045s **(🚀 2.9x faster)** |

| SSH | 16 | 7m29.85s * | 10 | 8.150s **(🚀 55.1x faster)** |

| MySQL | 4 ** | 9.819s | 4 ** | 2.542s **(🚀 3.8x faster)** |

| Microsoft SQL | 16 | 7.609s | 10 | 4.789s **(🚀 1.5x faster)** |

^{* While this result would suggest a default delay between connection attempts used by Hydra. I've tried to study the source code to find such delay but to my knowledge there's none. For some reason it's simply very slow.}


^{** For MySQL hydra automatically reduces the amount of tasks to 4, therefore legba's concurrency level has been adjusted to 4 as well.}

## License

Legba is released under the GPL 3 license. To see the licenses of the project dependencies, install cargo license with `cargo install cargo-license` and then run `cargo license`.