REPOGEO REPORT · LITE
evilsocket/legba
Default branch main · commit 74d1178d · scanned 6/21/2026, 2:47:55 PM
GitHub: 1,899 stars · 110 forks
Score trend below includes all ready runs (older left, newer right; scroll horizontally if needed). The table is collapsed by default—expand for newest-first rows, 10 per page.
2 ready scans. Expand the table below for newest-first rows (10 per page, paginated).
Action plan is what to do next — copy-pasteable changes prioritized by impact. Category visibility is the real GEO test: when a user asks an AI a brand-free question that should surface evilsocket/legba, does the AI actually recommend you — or your competitors? Objective checks verify the metadata signals AI engines weight first. Self-mention check detects whether AI even knows you exist by name.
Action plan — copy-paste fixes
2 prioritized changes generated by gemini-2.5-flash. Mark items done after you ship the fix.
- highreadme#1Reposition the core description to the top of the README
Why:
CURRENT<div align="center"> # `legba` [](https://legba.evilsocket.net/) [](https://github.com/evilsocket/legba/releases/latest) [](https://rust-reportcard.xuri.me/report/github.com/evilsocket/legba) [](https://github.com/evilsocket/legba/actions/workflows/ci.yml) [](https://github.com/evilsocket/legba/blob/master/LICENSE.md) <small>Join the project community on our server!</small> <br/><br/> <a href="https://discord.gg/btZpkp45gQ" target="_blank" title="Join our community!"> </a> </div> Legba is a multiprotocol credentials bruteforcer / password sprayer and enumerator built with Rust and the Tokio asynchronous runtime in order to achieve better performances and stability while consuming less resources than similar tools.COPY-PASTE FIX# `legba` Legba is a multiprotocol credentials bruteforcer / password sprayer and enumerator built with Rust and the Tokio asynchronous runtime in order to achieve better performances and stability while consuming less resources than similar tools. <div align="center"> [](https://legba.evilsocket.net/) [](https://github.com/evilsocket/legba/releases/latest) [](https://rust-reportcard.xuri.me/report/github.com/evilsocket/legba) [](https://github.com/evilsocket/legba/actions/workflows/ci.yml) [](https://github.com/evilsocket/legba/blob/master/LICENSE.md) <small>Join the project community on our server!</small> <br/><br/> <a href="https://discord.gg/btZpkp45gQ" target="_blank" title="Join our community!"> </a> </div> - mediumreadme#2Clarify the project's license in the README
Why:
COPY-PASTE FIX## License This project is licensed under [SPECIFY LICENSE NAME(S) HERE, e.g., 'a custom license combining MIT and Apache-2.0 terms']. Please refer to the [LICENSE.md](LICENSE.md) file for full details.
Category GEO backends resolved for this scan: google/gemini-2.5-flash, deepseek/deepseek-v4-flash
Category visibility — the real GEO test
Brand-free queries asked to google/gemini-2.5-flash. Did AI recommend you, or someone else?
Same questions for every model — switch tabs to compare answers and rankings.
- Nmap · recommended 2×
- vanhauser-thc/thc-hydra · recommended 1×
- sensepost/medusa · recommended 1×
- rapid7/metasploit-framework · recommended 1×
- lanjelot/patator · recommended 1×
- CATEGORY QUERYLooking for a fast, multiprotocol tool to enumerate and bruteforce network service credentials.you: not recommendedAI recommended (in order):
- Nmap
- Hydra (vanhauser-thc/thc-hydra)
- Medusa (sensepost/medusa)
- Metasploit Framework (rapid7/metasploit-framework)
- Patator (lanjelot/patator)
- Crowbar (galkan/crowbar)
- THC-SSL-DOS (vanhauser-thc/thc-ssl-dos)
AI recommended 7 alternatives but never named evilsocket/legba. This is the gap to close.
Show full AI answer
- CATEGORY QUERYWhat are robust, high-performance Rust-based tools for credential spraying across various protocols?you: not recommendedAI recommended (in order):
- RustScan
- Medusa
- Hydra
- tokio
- reqwest
- ssh2-rs
- ldap3
- rust-ldap
- tokio-rustls
- smbclient-rs
- Nmap
AI recommended 11 alternatives but never named evilsocket/legba. This is the gap to close.
Show full AI answer
Objective checks
Rule-based audits of metadata signals AI engines weight most.
- Metadata completenesswarn
Suggestion:
- README presencepass
Self-mention check
Does AI even know your repo exists when asked about it directly?
- Compared to common alternatives in this category, what is the core differentiator of evilsocket/legba?passAI named evilsocket/legba explicitly
AI answers can be confidently wrong. Read for accuracy: does it match your actual tech stack, audience, and differentiator?
- If a team adopts evilsocket/legba in production, what risks or prerequisites should they evaluate first?passAI named evilsocket/legba explicitly
AI answers can be confidently wrong. Read for accuracy: does it match your actual tech stack, audience, and differentiator?
- In one sentence, what problem does the repo evilsocket/legba solve, and who is the primary audience?passAI named evilsocket/legba explicitly
AI answers can be confidently wrong. Read for accuracy: does it match your actual tech stack, audience, and differentiator?
Embed your GEO score
Drop this badge into the README of evilsocket/legba. It auto-updates whenever the report is rescanned and links back to the latest report — easy public proof that you care about AI discoverability.
Live preview[](https://repogeo.com/en/r/evilsocket/legba)<a href="https://repogeo.com/en/r/evilsocket/legba"><img src="https://repogeo.com/badge/evilsocket/legba.svg" alt="RepoGEO" /></a>Subscribe to Pro for deep diagnoses
evilsocket/legba — Lite scans stay free; this card itemizes Pro deep limits vs Lite.
- Deep reports10 / month
- Brand-free category queries5 vs 2 in Lite
- Prioritized action items8 vs 3 in Lite