Testing and Inspection

Leviathan

Leviathan is a cybersecurity tool and framework developed by the U.S. National Security Agency (NSA) for network exploitation and penetration testing. It is designed to automate the process of identifying vulnerabilities, conducting reconnaissance, and executing attacks on target systems, often used in red team exercises and security assessments. The tool leverages advanced techniques to simulate real-world adversary tactics, helping organizations test and improve their defensive capabilities.

Also known as: NSA Leviathan, Leviathan Framework, Leviathan Tool, Leviathan Exploitation Framework, Leviathan Penetration Tool
🧊Why learn Leviathan?

Developers and security professionals should learn Leviathan when involved in offensive security roles, such as penetration testing, red teaming, or vulnerability research, to understand and mitigate advanced persistent threats. It is particularly useful for simulating sophisticated cyber attacks in controlled environments, enabling teams to assess network resilience and security postures effectively. Mastery of Leviathan can enhance skills in automation, exploit development, and threat modeling, making it valuable for careers in cybersecurity.

See how it ranks →

Compare Leviathan

Leviathan vs Metasploit→Leviathan vs Cobalt Strike→Leviathan vs Empire→

Learning Resources

📄
NSA GitHub Repository for Leviathan
docs
→
📄
Leviathan Framework Documentation
docs
→
🎬
Introduction to Leviathan - Cybersecurity Tool Tutorial
video
→
🎓
Penetration Testing with Leviathan - Online Course
course
→
📚
Mastering Leviathan: A Guide to Advanced Network Exploitation
book
→

Related Tools

CybersecurityPenetration TestingNetwork ExploitationRed TeamingVulnerability Assessment

Alternatives to Leviathan

MetasploitCobalt StrikeEmpire

Other Testing and Inspection

View all →
.env
.env is a file format and tool used to store environment variables, which are key-value pairs that configure application settings like API keys, database URLs, and other sensitive or environment-specific data. It allows developers to separate configuration from code, making applications more secure and portable across different environments (e.g., development, testing, production). Tools like dotenv in Node.js or python-dotenv in Python parse .env files to load these variables into the application's environment at runtime.
.htaccess
.htaccess (Hypertext Access) is a configuration file used on Apache web servers to control directory-level settings, such as URL redirection, access control, and performance optimizations. It allows developers to override global server configurations for specific directories without modifying the main server configuration files. This file is commonly used for tasks like password protection, custom error pages, and enabling features like mod_rewrite for URL manipulation.
.htaccess
.htaccess (Hypertext Access) is a configuration file used on Apache web servers to control directory-level settings, such as URL redirection, access control, and performance optimizations. It allows developers to override global server configurations for specific directories without modifying the main server configuration files. This file is commonly used for tasks like enabling HTTPS, blocking IP addresses, or setting custom error pages.
.htaccess Redirect
.htaccess redirect is a server-side configuration technique using the .htaccess file on Apache web servers to manage URL redirections, such as redirecting old URLs to new ones, enforcing HTTPS, or handling errors like 404 pages. It operates through directives like Redirect, RedirectMatch, and RewriteRule, allowing developers to control traffic flow without modifying server-wide settings. This method is essential for SEO, user experience, and maintaining link integrity during website migrations or updates.
.NET Interactive
.NET Interactive is an open-source tool that enables interactive programming experiences across multiple languages (C#, F#, PowerShell, SQL, HTML, JavaScript) within notebooks like Jupyter, Visual Studio Code, and Azure Data Studio. It allows developers to create and share executable documents that combine code, visualizations, and narrative text, facilitating data exploration, documentation, and teaching. The tool integrates with the .NET ecosystem, providing rich output capabilities and extensions for data science and machine learning workflows.
.NET Profiling Tools
.NET profiling tools are software utilities used to analyze the performance, memory usage, and behavior of .NET applications during execution. They help developers identify bottlenecks, memory leaks, and inefficiencies by collecting data on CPU usage, garbage collection, thread activity, and method execution times. These tools are essential for optimizing .NET applications to ensure they run efficiently and reliably in production environments.