HomeToolsDocsPricingGalleryExtensionContact Get the App
86
Real tools: 69 offensive, 17 defensive
in minutes
Recon to validated findings, agent-driven
Local-first
by default
// why legion

Skip the cheat sheet.

Pentest tooling is powerful but it all runs in the command line. You keep a cheat sheet in another tab or re-Google the same metasploit commands for the fifth time this week. Legion makes it easy by adding a GUI for every tool. Or you can hand the whole objective to the agent: it drives the same tools, reads the output, and chains the next step until it's done.

Every tool, GUI and CLI

Each tool is in a GUI, but still runnable from the command line at the same time.

Do it yourself. Or don't.

Drive every step by hand for full control. Or hand the engagement to the agent and watch it work. Or start manual, take the interesting part, and hand back the cleanup. The tools don't care.

Everything lands in the graph

Hosts, services, vulns, credentials, web paths, screenshots: however they're found, they land in one typed engagement. Quit at midnight, reopen at 9am, it's all still there.

// how it works

An objective in. A report out.

Type a goal in plain English, or pick a tool and fill the form. The agent runs real commands through the exact scope that you control, reads the output, and keeps going, with every finding backed by the evidence it finds.

01

You set a plain-English objective, or pick a tool

02

Legion runs real binaries, with optional approval first

03

Validated findings populate the engagement graph

04

One click drafts the report, HTML or PDF

// see it in action

A look inside Legion.

ThreatStrike engagement overview ThreatStrike findings ThreatStrike Metasploit workspace
Browse the full gallery →

Authorized work only. Get to it faster.

macOS or Linux. Free 3-day trial, then pick the license that fits your work.

3-day trial, no card. All plans annual: Personal $99.99/yr, Consultant $499.99/yr, Team $1,999/yr. Card or crypto.