• This repository has been archived on 25/Jan/2019
  • Stars
    star
    964
  • Rank 47,452 (Top 1.0 %)
  • Language
    Python
  • License
    GNU General Publi...
  • Created over 7 years ago
  • Updated about 6 years ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

wide range mass audit toolkit

Leviathan is a mass audit toolkit which has wide range service discovery, brute force, SQL injection detection and running custom exploit capabilities. It consists open source tools such masscan, ncrack, dsss and gives you the flexibility of using them with a combination.

The main goal of this project is auditing as many system as possible in country-wide or in a wide IP range.

Main Features

Discovery: Discover FTP, SSH, Telnet, RDP, MYSQL services running inside a specific country or in an IP range via Shodan, Censys. It's also possible to manually discover running services on a IP range by integrated “masscan” tool.

Short Demo: https://asciinema.org/a/617bsxl1y84bav9f5bcwllx7r

Brute Force: You can brute force the discovered services with integrated “ncrack” tool. It has wordlists which includes most popular combinations and default passwords for specific services.

Short Demo: https://asciinema.org/a/43y2j38zu7hbnuahrj233d5r0

Remote Command Execution: You can run system commands remotely on compromised devices.

Short Demo: https://asciinema.org/a/0xcrhd12f2lpkbktjldwtab16

SQL Injection Scanner: Discover SQL injection vulnerabilities on websites with specific country extension or with your custom Google Dork.

Short Demo: https://asciinema.org/a/2mwfmd9afsuyg5p0vzcq5e6si

Exploit Specific Vulnerabilities: Discover vulnerable targets with Shodan, Censys or masscan and mass exploit them by providing your own exploit or using preincluded exploits.

Short Demo: https://asciinema.org/a/9uqsjvnru780h0ue6ok9j9ktb

Integrated Tools

Masscan: It’s a very fast TCP port scanner by Robert David Graham. Leviathan uses masscan for detecting services on a huge IP range. https://github.com/robertdavidgraham/masscan

Ncrack: Ncrack is a high-speed network authentication cracking tool. Leviathan uses ncrack to brute force services such as FTP, SSH, RDP, Telnet, MYSQL etc. https://github.com/nmap/ncrack

DSSS (Damn Small SQLi Scanner): DSSS is a fully functional and minimal SQL injection vulnerability scanner by Miroslav Stampar. Leviathan uses DSSS to identify SQL Injection vulnerabilities on specific URLs. https://github.com/stamparm/DSSS

Installation

For detailed installiation, please visit our wiki page.

Kali Linux:

Download leviathan by cloning the Git repository:

git clone https://github.com/leviathan-framework/leviathan.git

Go inside the folder

cd leviathan

Install Python libraries:

pip install -r requirements.txt

It's done!

Debian/Ubuntu:

Download leviathan by cloning the Git repository:

git clone https://github.com/leviathan-framework/leviathan.git

Go inside the folder

cd leviathan

Run installiation script. It will setup required tools (ncrack, masscan) and python libraries.

bash scripts/debian_install.sh

It's done!

macOS:

If homebrew is not installed on your system, please install it first:

/usr/bin/ruby -e "$(curl -fsSL https://raw.githubusercontent.com/Homebrew/install/master/install)"

Download leviathan by cloning the Git repository:

git clone https://github.com/leviathan-framework/leviathan.git

Go inside the folder

cd leviathan

Run installiation script. It will setup required tools (ncrack, masscan) and python libraries.

bash scripts/macos_install.sh

It's done!

Requirements

Python version 2.7.x is required for running this program.

Supported platforms: Linux (Kali Linux, Debian, Ubuntu), macOS

Usage

Run the program with following command:

python leviathan.py

You can get basic usage information inside the menus. For detailed usage manual, visit our wiki page.

Screenshots

Authors

This project is written by Utku Sen and Ozge Barbaros

Legal Warning

While this may be helpful for some, there are significant risks. You could go to jail on obstruction of justice charges just for running leviathan, even though you are innocent. Your are on notice, that using this tool outside your "own" environment is considered malicious and is against the law. Use with caution.

More Repositories

1

urlhunter

a recon tool that allows searching on URLs that are exposed via shortener services
Go
1,426
star
2

wholeaked

a file-sharing tool that allows you to find the responsible person in case of a leakage
Go
969
star
3

hidden-tear

an open source ransomware honeypot
892
star
4

turkce-wordlist

Türk kullanıcıların parola seçimlerinin analizi için yapılmış bir çalışmadır
Python
734
star
5

shotlooter

a recon tool that finds sensitive data inside the screenshots uploaded to prnt.sc
Python
595
star
6

socialhunter

crawls the website and finds broken social media links that can be hijacked
Go
590
star
7

promptmap

automatically tests prompt injection attacks on ChatGPT instances
Python
378
star
8

reqstress

a benchmarking&stressing tool that can send raw HTTP requests
Go
162
star
9

jeopardize

a low(zero) cost threat intelligence&response tool against phishing domains
Python
152
star
10

rhodiola

Personalized wordlist generator with NLP, by analyzing tweets. (A.K.A crunch2049)
Python
132
star
11

eda2

a more complex ransomware honeypot
122
star
12

firstorder

A traffic analyzer to evade Empire's communication from Anomaly-Based IDS
Python
108
star
13

romtu

automated poetry generator in Turkish
Python
95
star
14

house-party-protocol

an ultimate evidence wiper
C#
61
star
15

hash-olimpiyatlari

Python
33
star
16

house-party-py

python version of "house party protocol" program
Python
26
star
17

floodtrooper

an ancient http botnet
Visual Basic
16
star
18

janibot

an ancient irc botnet
Visual Basic
13
star
19

Jani-Blackjack-Analyser

a simple blackjack game supported by card counting and basic strategy
C#
10
star
20

dining-philosophers

yet another solution for dining philosophers problem
C
7
star
21

promptmapdev

Python
4
star
22

utkusen

2
star