Sn1per Professional v7.0 Released!

Sn1per Professional v7.0

Sn1per Professional v7.0 is now available from the XeroSecurity website!

Receive a $20 discount  from our customer loyalty program if you own an existing Sn1per Professional license (click here for more details).

Buy Now

Features

  • New workspace navigator with sortable/searchable tables and usage stats
Sn1per Professional v7.0 Workspace Navigator

Sn1per Professional v7.0 Workspace Navigator

  • Added quick links to view scan tasks, unique IP’s, live hosts, like web hosts, subnets and discovered IP’s to top menu
Sn1per Professional v7.0 Workspace Dashboard

Sn1per Professional v7.0 Workspace Dashboard

  • New sortable/searchable Bootstrap 4 host list table with pagination, screenshots and full web and network meta data
Sn1per Professional v7.0 Host Table

Sn1per Professional v7.0 Host Table

  • New scan tags added for “Vulnerable”, “Takeover”, “New”, “Shelled”, “Cracked”, “Updated”, “Live”
  • Added collapsible functional sections to main report for more streamlined viewing (ie. Quick Commands, Scan Tasks, Scheduled Scans, OSINT, Takeovers, etc.)
Sn1per Professional v7.0 Accordion1

Sn1per Professional v7.0 Accordion

  • New “Quick Commands” section for quick copy/paste Sn1per commands
Sn1per Professional v7.0 Quick Commands

Sn1per Professional v7.0 Quick Commands

  • New “Scan Tasks” section to view all Sn1per scan times/dates
Sn1per Professional v7.0 Scan Tasks

Sn1per Professional v7.0 Scan Tasks

  • New “Scheduled Tasks” section to view all Sn1per scheduled scan tasks
Sn1per Professional v7.0 Scheduled Tasks

Sn1per Professional v7.0 Scheduled Tasks

  • New “OSINT” section to view OSINT data for the workspace
Sn1per Professional v7.0 OSINT1

Sn1per Professional v7.0 OSINT

  • New “Credentials” section to view all successful brute force credentials
Sn1per Professional v7.0 Credentials1

Sn1per Professional v7.0 Credentials

  • New “Vulnerabilities” section to view all vulnerabilities from various tools for the entire workspace
Sn1per Professional v7.0 Vulnerabilities1

Sn1per Professional v7.0 Vulnerabilities

  • Improved wide-screen visibility of reports
  • Added quick links to view loot folders and files
  • Added command to regenerate all detailed host reports in a workspace ‘sniper –reimportall’ command
  • Improved report generation performance via ‘sniper –reimport’ command for differential report generation
  • 100% responsive web UI resizes to fit any resolution or device.
  • Scan progress bar indicates overall scan status to ensure 100% scan coverage of the entire workspace.
  • Scan dashboard gives high level overview of workspace, including downloadable lists to all domains, scanned targets and unscanned targets. These can be easily referenced and used to scan the entire attack surface using Sn1per.
  • Reports menu includes links to all Sn1per console reports which can be downloaded and viewed from the main report.
  • Sidebar shortcuts added to both the main Sn1per report and all detailed host reports to quickly jump to each section of the report.
  • Slideshow for all gathered screenshots
  • Improved host table allows searching for scan mode tags, IP/DNS, HTTP titles, status codes, HTTP headers, WAF detection and open ports.
  • Quick links for both the HTTP and HTTPS versions for each host in the host table.
  • Scan tags to indicate which hosts has been scanned and which mode (ie. Stealth, Web, Portscan, Bruteforce, etc.) and which are new in the host table section of the report.
  • Email security section indicates any email spoofing vulnerabilities for the workspace.
  • Improved takeovers security section indicates any potential domain takeovers or hijacking vulnerabilities.
Sn1per Professional v7.0 Email Takeovers1

Sn1per Professional v7.0 Email Takeovers

  • HTML5 notepad saves automatically to the main report elevating the need to save your work (keep in mind, it uses the local browser cache, so switching browsers or clearing your browser cache will remove your notes!).
  • Detailed host reports are now separate from the main report and include the following features:
    • Updated recon and google dork links
    • 34 customized recon links.
    • 26 customized Google dork links.
    • HTTP/HTTPS quick links.
    • Reports menu to download the full HTML console reports for each host.
    • Added Arachni HTML report imports for all “webscan” mode scans
    • Sn1per Professional v7.0 Arachni Report1

      Sn1per Professional v7.0 Arachni Report

    • Sidebar quick links to jump to each section of the report.
    • HTTP/HTTPS screenshots
    • DNS
    • Sub-domains
    • Open ports
      • Links to full NMap HTML host reports.
      • Sn1per Professional v7.0 NMap HTML Report1

        Sn1per Professional v7.0 NMap HTML Report

    • Fingerprint info
    • HTTP headers
    • Web files
      • Links to download all discovered web files for each host
    • Web URL’s
      • Links to download all discovered URL’s for each host
    • SSL/TLS info
    • New Web Application Scans
    • Sn1per Professional v7.0 Web Application Scans1

      Sn1per Professional v7.0 Web Application Scans

    • New Credentials
    • New Vulnerabilities
  • Single user license
  • Professional technical support

Documentation

https://xerosecurity.com/wordpress/documentation/

Legal Agreement and Disclaimer

By purchasing and/or using Sn1per, you are agreeing to the following end user license agreement referenced here:

https://xerosecurity.com/wordpress/legal/

Sn1per Community Edition v7.0 Released!


We’re excited to announce the release of Sn1per Community Edition v7.0. Version 7 features brand new scan modes and command switches to help make life easier and offers more versatility to get the results you’re after.

New Scan Modes:

For started, we’ve introduced a new “webscan” mode which can be initiated from the command line via ‘sniper -t <target> -m webscan’ to initiate an automated Burpsuite 2.x and Arachni web application spider and full audit for OWASP Top 10 vulnerabilities. This is now separate from the traditional ‘web’ mode scans which is now focused more on web recon than scanning for actual OWASP vulnerabilities.

Slack API Integration:

The next major change you’ll notice is the addition of a new Slack API integration which can be enabled via the ~/.sniper.conf file by setting the “SLACK_NOTIFICATIONS” setting to “1” and editing the /usr/share/sniper/bin/slack.py script with your Slack API token (https://api.slack.com/custom-integrations/legacy-tokens). This allows notification via your own private Slack channel of new scan tasks and scan completion.

Scheduled Scans:

In addition to the new scan modes and integrations, we’ve also added the ability to easily schedule Sn1per scans direct from the command line. To initialize scheduled scans, you first need to edit your crontab via the ‘crontab -e’ command as ‘root’ and add the following to your crontab:

# m h dom mon dow command
0 0 * * * find /usr/share/sniper/loot/workspace/ -type f -name “daily.sh” -exec bash {} \;
0 0 * * 0 find /usr/share/sniper/loot/workspace/ -type f -name “weekly.sh” -exec bash {} \;
0 0 1 * * find /usr/share/sniper/loot/workspace/ -type f -name “monthly.sh” -exec bash {} \;

After your crontab is setup properly, you can simply run the ‘sniper -w <workspace_alias> -s daily|weekly|monthly’ command to edit the workspace’s scheduled commands. Just add the full sniper commands you want to run on a schedule (ie. ‘sniper -t 127.0.0.1 -w 127.0.0.1’) and save. That’s it!

New Exploits:

Sn1per v7.0 also features new exploits and auxiliary modules for Apache Axis web servers which may land a full automatic Meterpreter shell if you’re lucky!

Subnet Retrieval:

We also added automatic subnet retrieval based on the targets existing IP space and known/registered ASN’s. This can help automate reverse IP lookups and virtual hosts or simply to scan a targets existing/known IP space.

As a quick tip, you can easily scan each subnet using sniper via the ‘sniper -m discover -t <subnet> -w <workspace>’ command 😉

There are many more changes that were added, but these are the main ones. Keep an eye out for the next release of Sn1per Professional which will leverage of the latest improvements in the Community Edition later this month!

Change Log:

  • v7.0 – Added “webscan” mode for automated Burpsuite 2.x and Arachni web application scans only
  • v7.0 – Added Slack API notifications (Disabled by default..check ~/.sniper.conf)
  • v7.0 – Added new command switch to add daily, weekly or monthly sniper scheduled scans… check README
  • v7.0 – Added scheduled scan tasks command switch (Needs additional configuration to setup… check README)
  • v7.0 – Added Axis2 authenticated deployer MSF exploit
  • v7.0 – Added Axis2 login brute force module
  • v7.0 – Added subjack tool to check for subdomain hijacking
  • v7.0 – Added sorted IP lists under $LOOT_DIR/ips/ips-all-sorted.txt
  • v7.0 – Added subnet retrieval for all ‘recon’ mode scans under $LOOT_DIR/nmap/subnets-$TARGET.txt
  • v7.0 – Added Webscreenshot.py and disabled cutycapt from default config
  • v7.0 – Added Gobuster (Disabled by default..check ~/.sniper.conf)
  • v7.0 – Fixed issue with SubOver not working due to bad path
  • v7.0 – Fixed issue with flyover mode running twice per scan

Update Instructions:

To update to version 7.0, simply run the ‘sniper -u’ command or clone the github repo (git clone https://github.com/1N3/Sn1per) and run the install.sh file.