SN1PER

Multi Purpose Hacking/ Pentesting Tools


What is SN1PER
Sn1per is an automated scanner tool that is usually used during a penetration test to enumerate and scan for vulnerabilities.

Is SN1PER free?
SN1PER is free to use and is recommended to be used on a Kali Linux platform.

  1. Collecting basic recon (ie. whois, ping, DNS, etc.)
  2. Launching Google hacking queries against a target domain
  3. Enumerating open ports via NMap port scanning
  4. Brute forces sub-domains, gathers DNS info and checks for zone transfers
  5. Checking for sub-domain hijacking
  6. Runs targeted NMap scripts against open ports
  7. Runs targeted Metasploit scan and exploit modules
  8. Scanning all web applications for common vulnerabilities
  9. Bruteforces ALL open services
  10. Testing for anonymous FTP access
  11. Runs WPScan, Arachni and Nikto for all web services automatically
  12. Enumerating NFS shares
  13. Testing for anonymous LDAP access
  14. Enumerating SSL/TLS ciphers, protocols and vulnerabilities
  15. Enumerating SNMP community strings, services and users
  16. Listing SMB users and shares, check for NULL sessions and exploit MS08-067
  17. Exploiting vulnerable JBoss, Java RMI and Tomcat servers
  18. Testing for open X11 servers
  19. Auto-pwn added for Metasploitable, ShellShock, MS08-067, Default Tomcat Creds
  20. Perform high level enumeration of multiple hosts and subnets
  21. Integrates with Metasploit Pro, MSFConsole and Zenmap for reporting
  22. Gathering screenshots of all web sites
  23. Building individual workspaces to store all scan output

What are the Typical Uses for SN1PER
SN1PER is primarily used to collect information during a penetration tests. Various modes of SN1PER includes:

1. #REPORTOutputs all results to text in the loot directory for later reference. To enable reporting, append ‘report’ to any sniper mode or command.

2. #STEALTHQuickly enumerate single targets using mostly non-intrusive scans to avoid WAF/IPS blocking.

3. #DISCOVERParses all hosts on a subnet/CIDR (ie. 192.168.0.0/16) and initiates a sniper scan against each host. Useful for internal network scans.

4. #PORTScans a specific port for vulnerabilities. Reporting is not currently available in this mode.

5. #FULLPORTONLYPerforms a full detailed port scan and saves results to XML.

6. #WEBAdds full automatic web application scans to the results (port 80/tcp & 443/tcp only). Ideal for web applications but may increase scan time significantly.

7. #NOBRUTELaunches a full scan against a target host/domain without brute forcing services.

8. #AIRSTRIKEQuickly enumerates open ports/services on multiple hosts and performs basic fingerprinting. To use, specify the full location of the file which contains all hosts, IP’s that need to be scanned and run ./sn1per /full/path/to/targets.txt airstrike to begin scanning.

9. #NUKELaunch full audit of multiple hosts specified in text file of choice. Usage example: ./sniper /pentest/loot/targets.txt nuke.

10. #LOOTAutomatically organizes and displays loot folder in your browser and opens Metasploit Pro and Zenmap GUI with all port scan results. To run, type ‘sniper loot’.


How To Install SN1PER
This tool works best on Linux, preferably something like Kali Linux, Backbox or any other flavours therein for Pentesting Purposes.

Step 1: cd Desktop

Step 2: git clone https://github.com/1N3/Sn1per.git

Step 3: cd Sn1per

Step 4: chmod +x install.sh

Step 5: ./install.sh


Enjoy and use responsibly!



Leave a comment or reply below...thanks!