Sn1per

Author	SHA1	Message	Date
root	c50af967c0	Sn1per by @Sn1perSecurity - https://sn1persecurity.com	2022-12-11 16:50:18 -07:00
@xer0dayz	31df5dc44d	* v9.0 - Added Fortinet FortiGate SSL VPN Panel Detected sc0pe template * v9.0 - Added CVE-2020-17519 - Apache Flink Path Traversal sc0pe template * v9.0 - Added RabbitMQ Management Interface Detected sc0pe template * v9.0 - Added CVE-2020-29583 Zyxel SSH Hardcoded Credentials via BruteX * v9.0 - Removed vulnscan NMap CSV updates/downloads to save space/bandwidth * v9.0 - Added Nuclei sc0pe parser * v9.0 - Added Nuclei vulnerability scanner * v9.0 - Added Wordpress WPScan sc0pe vulnerability parser * v9.0 - Fixed issue with wrong WPscan API key command * v9.0 - Added CVE-2020-11738 - WordPress Duplicator plugin Directory Traversal sc0pe template * v9.0 - Renamed AUTO_VULNSCAN setting to "VULNSCAN" in sniper.conf to perform vulnerability scans via 'normal' mode	2021-01-08 09:31:56 -07:00
@xer0dayz	d06a47fe62	* v8.9 - Tuned sniper.conf around performance for all scans and recon modes * v8.9 - Added out of scope options to config * v8.9 - Added automatic HTTP/HTTPS web scans and vulnerability scans to 'normal' mode * v8.9 - Added SolarWinds Orion Panel Default Credentials sc0pe template * v8.9 - Added SolarWinds Orion Panel sc0pe template * v8.9 - Fixed issue with theHarvester not running on Kali 2020.4 * v8.9 - Added WPScan API support * v8.9 - Added CVE-2020-8209 - XenMobile-Citrix Endpoint Management Config Password Disclosure sc0pe template * v8.9 - Added CVE-2020-8209 - XenMobile-Citrix Endpoint Management Path Traversal sc0pe template * v8.9 - Removed verbose error for chromium on Ubuntu * v8.9 - Added CVE-2020-8209 - Citrix XenMobile Server Path Traversal sc0pe template * v8.9 - Fixed F+ in CSP Not Enforced sc0pe template * v8.9 - Added CVE-2020-14815 - Oracle Business Intelligence Enterprise DOM XSS sc0pe template * v8.9 - Fixed issue with dnscan not working in Kali 2020.3 * v8.9 - Fixed issue with screenshots not working in Ubuntu 2020 * v8.9 - Added Frontpage Service Password Disclosure sc0pe template * v8.9 - Removed Yasuo tool	2020-12-18 10:02:40 -07:00
@xer0dayz	dae095c78c	Fixed auto-update code	2020-10-19 13:52:53 -07:00
@xer0dayz	05c60b4a09	Finalized changes for v8.7 Added CVE-2020-15129 - Open Redirect In Traefik sc0pe template	2020-09-15 08:13:14 -07:00
@xer0dayz	2ce7c2c6aa	* v8.7 - Updated web file bruteforce lists * v8.7 - Added updated Slack API integration/notifications * v8.7 - Added Arachni, Nikto, Nessus, NMap + 20 passive sc0pe vulnerability parsers	2020-09-14 09:31:09 -07:00
@xer0dayz	3d76ffa9fc	* v8.7 - Updated web file bruteforce lists * v8.7 - Added updated Slack API integration/notifications * v8.7 - Added Arachni, Nikto, Nessus, NMap + 20 passive sc0pe vulnerability parsers	2020-09-14 09:00:40 -07:00
@xer0dayz	0463dbf29e	* v8.7 - Updated web file bruteforce lists * v8.7 - Added updated Slack API integration/notifications * v8.7 - Added Arachni, Nikto, Nessus, NMap + 20 passive sc0pe vulnerability parsers	2020-09-14 08:54:19 -07:00
@xer0dayz	1a96b105db	* v8.7 - Updated web file bruteforce lists * v8.7 - Added updated Slack API integration/notifications * v8.7 - Added Arachni, Nikto, Nessus, NMap + 20 passive sc0pe vulnerability parsers	2020-09-14 08:25:38 -07:00
@xer0dayz	7adb5b3998	New sc0pe templates, updated Slack API integration, updated wordlists and misc changes for v8.7	2020-09-13 18:08:30 -07:00
@xer0dayz	4adbb24a48	* v8.7 - Fixed logic error in stealth mode recon scans not running * v8.7 - Added CVE-2020-7048 - WP Database Reset 3.15 Unauthenticated Database Reset * v8.7 - Fixed F- detection in Wordpress Sc0pe templates * v8.7 - Added CVE-2020-11530 - Wordpress Chop Slider 3 Plugin SQL Injection * v8.7 - Added CVE-2019-11580 - Atlassian Crowd Data Center Unauthenticated RCE	2020-08-23 16:48:13 -07:00
@xer0dayz	439db5e98f	Updated installer	2020-08-21 10:26:50 -07:00
@xer0dayz	4c810f5ced	* v8.6 - Added CVE-2020-12720 - vBulletin Unauthenticaed SQLi * v8.6 - Added CVE-2020-9757 - SEOmatic < 3.3.0 Server-Side Template Injection * v8.6 - Added CVE-2020-1147 - Remote Code Execution in Microsoft SharePoint Server * v8.6 - Added CVE-2020-3187 - Citrix Unauthenticated File Deletion * v8.6 - Added CVE-2020-8193 - Citrix Unauthenticated LFI * v8.6 - Added CVE-2020-8194 - Citrix ADC & NetScaler Gateway Reflected Code Injection * v8.6 - Added CVE-2020-8982 - Citrix ShareFile StorageZones Unauthenticated Arbitrary File Read * v8.6 - Added CVE-2020-9484 - Apache Tomcat RCE by deserialization * v8.6 - Added Cisco VPN scanner template * v8.6 - Added Tiki Wiki CMS scanner template * v8.6 - Added Palo Alto PAN OS Portal scanner template * v8.6 - Added SAP NetWeaver AS JAVA LM Configuration Wizard Detection * v8.6 - Added delete task workspace function to remove running tasks	2020-08-02 16:51:11 -07:00
@xer0dayz	312188a26c	Added CVE-2020-3452 - Cisco ASA/FTD Arbitrary File Reading Vulnerability Sc0pe template	2020-07-23 11:35:16 -07:00
@xer0dayz	527fb601e3	* v8.6 - Added CVE-2020-5902 F5 BIG-IP RCE sc0pe template	2020-07-05 10:26:40 -07:00
@xer0dayz	7da27545a1	* v8.6 - Added CVE-2020-5902 F5 BIG-IP RCE sc0pe template	2020-07-05 09:38:27 -07:00
@xer0dayz	df3228766d	* v8.6 - Added CVE-2020-5902 F5 BIG-IP RCE sc0pe template * v8.6 - Added CVE-2020-5902 F5 BIG-IP XSS sc0pe template * v8.6 - Added F5 BIG-IP detection sc0pe template * v8.6 - Added interesting ports sc0pe template * v8.6 - Added components with known vulnerabilities sc0pe template * v8.6 - Added server header disclosure sc0pe template * v8.6 - Added SMBv1 enabled sc0pe template * v8.6 - Removed verbose comment from stealth scan	2020-07-05 09:10:08 -07:00
@xer0dayz	1dddc8686c	Merged several changes for v8.5	2020-07-01 17:43:48 -07:00
@xer0dayz	640dfcfcf3	Added 20+ new Sc0pe templates	2020-06-25 12:51:11 -07:00
@xer0dayz	077b93b400	Sn1per Community Edition by @xer0dayz - https://xerosecurity.com	2020-06-08 09:33:33 -07:00
xer0dayz	3ab10a32e4	Sn1per Community Edition by @xer0dayz - https://xerosecurity.com	2020-06-07 16:17:50 -07:00

21 Commits