Sn1per by 1N3@CrowdShield

Update sniper

CHANGELOG.md

@@ -0,0 +1,118 @@
+## CHANGELOG:
+* v2.1 - Added Arachni with auto HTML web reporting (web mode only)
+* v2.1 - Added full NMap detailed port scans
+* v2.1 - Added port 4443/tcp checks
+* v2.1 - Added META tag scans for web apps
+* v2.1 - Removed Uniscan from web mode
+* v2.1 - Removed SQLMap from web mode
+* v2.0b - Added help option --help
+* v2.0a - Fixed issue with ssh-audit
+* v2.0a - Fixed issue with 'discover' mode
+* v2.0 - Updated sub-domain takeover list
+* v2.0 - Improved scan performance for stealth, airstrike and discover modes
+* v2.0 - Removed jexboss due to clear screen issue with output
+* v2.0 - Auto loot directory sorting for all tools
+* v2.0 - Updated install.sh package list
+* v1.9c - Enabled BruteX automated brute force attacks
+* v1.9b - Fixed MSSQL port 1433/tcp port scan check (@hacktrack)
+* v1.9a - Removed testssl script from stealth mode scans
+* v1.9 - Added Ubuntu docker image for Sn1per (@menzow)
+* v1.9 - Added automatic loot directory sorting for all modes
+* v1.9 - Added MSSQL port 1433/tcp checks
+* v1.9 - Added SNMP port 162/tcp checks (@hexageek)
+* v1.9 - Added nslookup to install.sh
+* v1.9 - Fixed install.sh dependency duplicates
+* v1.8c - Added -A option to all NMap port scans
+* v1.8c - Fixed install.sh permission issue
+* v1.8c - Fixed install.sh cleanup options
+* v1.8c - Added ssh-audit
+* v1.8c - Added install directory (/usr/share/sniper/) to install script for universal access
+* v1.8c - Fixed issue with Metasploit SSH scans
+* v1.8c - Added auto-update to install.sh to automatically pull latest github release
+* v1.8b - Fixed bug with NMap UDP scan options
+* v1.8b - Fixed install.sh dependencies 
+* v1.8b - Fixed jexboss options
+* v1.8a - Updated sub-domain hijack list of domains (CC: th3gundy)
+* v1.8 - Added sub-domain hijack scans for all sub-domains
+* v1.8 - Added auto explort of all sub-domains to /domains directory
+* v1.8 - Added additional stealth and airstrike checks for port 80 and 443
+* v1.8 - Fixed issue with theHarvester not working with google
+* v1.7g - Added email security/spoofing checks
+* v1.7f - Added Zenmap XML auto-imports 
+* v1.7f - Added ClamAV RCE Nmap script
+* v1.7e - Fixed minor issue with airstrike and nuke mode
+* v1.7e - Fixed minor issues with discover mode
+* v1.7e - Added minor cosmetic improvements to reports
+* v1.7e - Disabled automatic brute forcing by default
+* v1.7e - Added automatic brute force setting in script vars
+* v1.7d - Added sslyze
+* v1.7d - Added 'discover' mode for full subnet scans
+* v1.7d - Added verbosity to scan tasks to separate sub-tasks better
+* v1.7c - Added plain text reporting 
+* v1.7c - Improved loot directory structure and sorting
+* v1.7b - Fixed issue with airstrike mode not scanning correctly
+* v1.7b - Improved passive recon performance
+* v1.7a - Improved NMap http scan performance
+* v1.7a - Removed joomscan due to verbosity issues
+* v1.7 - Added uniscan web vulnerability scanner
+* v1.7 - Added joomscan Joomla scanner
+* v1.7 - Improved web scan performance
+* v1.7 - Fixed issue with inurlbr output
+* v1.7 - Added remote desktop viewing for RDP connections
+* v1.7 - Added experimental Metasploit exploit for Apache Struts RCE (CVE-2016-3081)
+* v1.6e - Added reporting option for nobrute mode (CC. @mero01)
+* v1.6e - Improved SMB scan performance/optimization added
+* v1.6d - Improved NMap scan performance options
+* v1.6d - Added xprobe2 OS finger printing tool
+* v1.6d - Added jexbos JBoss autopwn
+* v1.6d - Merged fix for theharvester package (CC. @RubenRocha)
+* v1.6d - Merged fix for SuperMicroScanner (CC. @mero01)
+* v1.6c - Add report mode for web scans
+* v1.6c - Fixed issues with Sublist3r and theharvester
+* v1.6c - Added Shocker Shellshock exploitation scanner
+* v1.6b - Added Sublist3r sub-domain brute tool
+* v1.6b - Added cutycapt web screenshot util
+* v1.6a - Added improvements to recon phase
+* v1.6a - Fixed small issue with 3rd party extension
+* v1.6a - Various improvements to overall optimization of scans
+* v1.6a - Added new "web" mode for full web application scans 
+* v1.6 - Added 4 new modes including: stealth, port, airstrike and nuke
+* v1.6 - Added Java de-serialization scanner
+* v1.6 - Added reporting option to output to console and text file for all scans
+* v1.6 - Added option to set Sn1per full path for universal command line access
+* v1.6 - Added in DirBuster for web file brute forcing
+* v1.6 - Fixed issue with sderr errors in TheHarvester
+* v1.5e - Removed shodan command line tool due to issues
+* v1.5e - Fixed wafwoof installation in kali 2.0
+* v1.5d - Fixed minor issues with port 513/tmp and 514/tcp checks
+* v1.5c - Fixed issue which broke link to sniper directory
+* v1.5b - Added Squid Proxy checks port 3128/tcp
+* v1.5b - Fixed shodan setup options in install.sh
+* v1.5b - Fixed syntax error with theHarvester in install.sh
+* v1.5a - Fixed syntax error with port 8081 checks
+* v1.5a - Added Arachni integration
+* v1.5a - Added vsftpd, proftpd, mysql, unrealircd auto exploits
+* v1.5 - Added Metasploit scan and auto-exploit modules
+* v1.5 - Added additional port checks
+* v1.5 - Added full TCP/UDP NMap XML output
+* v1.5 - Auto tune scan for either IP or hostname/domain
+* v1.4h - Added auto IP/domain name scan configurations
+* v1.4g - Added finger enumeration scripts
+* v1.4g - Fixed nmap -p 445 target issue
+* v1.4g - Fixed smtp-enum target issue
+* v1.4f - Fixed BruteX directory bug
+* v1.4e - Fixed reported errors install.sh
+* v1.4e - Added auto-upgrade option to install.sh for existing Sn1per installs
+* v1.4d - Fixed missing rake gem install dependency
+* v1.4c - Reordered 3rd party extensions
+* v1.4b - Fixed install.sh executable references
+* v1.4b - Fixed Yasou dependencies in install.sh
+* v1.4b - Fixed minor issues with BruteX loot directory
+* v1.4 - Added Yasou for automatic web form brute forcing
+* v1.4 - Added MassBleed for SSL vulnerability detection
+* v1.4 - Added Breach-Miner for detection of breached accounts
+* v1.4 - Fixed minor errors with nmap
+* v1.4 - Removed debug output from goohak from displaying on console
+
+## FUTURE:
+* Add scan config options to enabled/disable certain scan tasks (ie. brute force, osint, web scans, etc.)

README.md

@@ -1,9 +1,11 @@
-# Sn1per - Automated Pentest Recon Scanner
-![alt tag](https://github.com/1N3/Sn1per/blob/master/Sn1per-logo.png)
+![alt tag](https://github.com/1N3/Sn1per/blob/master/Sn1per-logo.jpg)
 
 ## ABOUT:
 Sn1per is an automated scanner that can be used during a penetration test to enumerate and scan for vulnerabilities. 
 
+## DEMO VIDEO:
+[![Sn1per Demo](https://img.youtube.com/vi/nA_V_u3QZA4/0.jpg)](https://www.youtube.com/watch?v=nA_V_u3QZA4)
+
 ## FEATURES:
 * Automatically collects basic recon (ie. whois, ping, DNS, etc.)
 * Automatically launches Google hacking queries against a target domain
@@ -18,125 +20,49 @@ Sn1per is an automated scanner that can be used during a penetration test to enu
 * Performs high level enumeration of multiple hosts
 * Auto-pwn added for Metasploitable, ShellShock, MS08-067, Default Tomcat Creds
 
-## INSTALL:
+## KALI LINUX INSTALL:
 ```
-./install.sh - Installs all dependencies OR upgrades existing Sn1per installations. Best run from Kali Linux. 
+./install.sh
+```
+
+## DOCKER INSTALL:
+
+Docker Install:
+https://github.com/menzow/sn1per-docker
+
+Docker Build:
+https://hub.docker.com/r/menzo/sn1per-docker/builds/bqez3h7hwfun4odgd2axvn4/
+
+Example usage:
+```
+$ docker pull menzo/sn1per-docker
+$ docker run --rm -ti menzo/sn1per-docker sniper menzo.io
 ```
 
 ## USAGE:
 ```
-# sniper <target> <report>
-# sniper <target> stealth <report>
-# sniper <CIDR> discover
-# sniper <target> port <portnum> 
-# sniper <target> web <report>
-# sniper <target> nobrute <report>
-# sniper <targets.txt> airstrike <report>
-# sniper <targets.txt> nuke <report>
+sniper <target> <report>
+sniper <target> stealth <report>
+sniper <CIDR> discover
+sniper <target> port <portnum> 
+sniper <target> web <report>
+sniper <target> nobrute <report>
+sniper <targets.txt> airstrike <report>
+sniper <targets.txt> nuke <report>
+sniper loot
 ```
 
 ### MODES:
-* REPORT: Outputs all results to text in the loot directory for later reference. To enable reporting, append 'report' to any sniper mode or command.
-* STEALTH: Quickly enumerate single targets using mostly non-intrusive scans to avoid WAF/IPS blocking
-* DISCOVER: Parses all hosts on a subnet/CIDR (ie. 192.168.0.0/16) and initiates a sniper scan against each host. Useful for internal network scans.
-* PORT: Scans a specific port for vulnerabilities. Reporting is not currently available in this mode.
-* WEB: Adds full automatic web application scans to the results (port 80/tcp & 443/tcp only). Ideal for web applications but may increase scan time significantly.   
-* NOBRUTE: Launches a full scan against a target host/domain without brute forcing services.
-* AIRSTRIKE: Quickly enumerates open ports/services on multiple hosts and performs basic fingerprinting. To use, specify the full location of the file which contains all hosts, IP's that need to be scanned and run ./sn1per /full/path/to/targets.txt airstrike to begin scanning.
-* NUKE: Launch full audit of multiple hosts specified in text file of choice. Usage example: ./sniper /pentest/loot/targets.txt nuke. 
+* **REPORT:** Outputs all results to text in the loot directory for later reference. To enable reporting, append 'report' to any sniper mode or command.
+* **STEALTH:** Quickly enumerate single targets using mostly non-intrusive scans to avoid WAF/IPS blocking
+* **DISCOVER:** Parses all hosts on a subnet/CIDR (ie. 192.168.0.0/16) and initiates a sniper scan against each host. Useful for internal network scans.
+* **PORT:** Scans a specific port for vulnerabilities. Reporting is not currently available in this mode.
+* **WEB:** Adds full automatic web application scans to the results (port 80/tcp & 443/tcp only). Ideal for web applications but may increase scan time significantly.   
+* **NOBRUTE:** Launches a full scan against a target host/domain without brute forcing services.
+* **AIRSTRIKE:** Quickly enumerates open ports/services on multiple hosts and performs basic fingerprinting. To use, specify the full location of the file which contains all hosts, IP's that need to be scanned and run ./sn1per /full/path/to/targets.txt airstrike to begin scanning.
+* **NUKE:** Launch full audit of multiple hosts specified in text file of choice. Usage example: ./sniper /pentest/loot/targets.txt nuke. 
+* **LOOT:** Automatically organizes and displays loot folder in your browser and opens Zenmap GUI with all port scan results. To run, type 'sniper loot'.
 
 ## SAMPLE REPORT:
-```
 https://gist.github.com/1N3/8214ec2da2c91691bcbc
-```
 
-## CHANGELOG:
-* v1.8b - Fixed bug with NMap UDP scan options
-* v1.8b - Fixed install.sh dependencies 
-* v1.8b - Fixed jexboss options
-* v1.8a - Updated sub-domain hijack list of domains (CC: th3gundy)
-* v1.8 - Added sub-domain hijack scans for all sub-domains
-* v1.8 - Added auto explort of all sub-domains to /domains directory
-* v1.8 - Added additional stealth and airstrike checks for port 80 and 443
-* v1.8 - Fixed issue with theHarvester not working with google
-* v1.7g - Added email security/spoofing checks
-* v1.7f - Added Zenmap XML auto-imports 
-* v1.7f - Added ClamAV RCE Nmap script
-* v1.7e - Fixed minor issue with airstrike and nuke mode
-* v1.7e - Fixed minor issues with discover mode
-* v1.7e - Added minor cosmetic improvements to reports
-* v1.7e - Disabled automatic brute forcing by default
-* v1.7e - Added automatic brute force setting in script vars
-* v1.7d - Added sslyze
-* v1.7d - Added 'discover' mode for full subnet scans
-* v1.7d - Added verbosity to scan tasks to separate sub-tasks better
-* v1.7c - Added plain text reporting 
-* v1.7c - Improved loot directory structure and sorting
-* v1.7b - Fixed issue with airstrike mode not scanning correctly
-* v1.7b - Improved passive recon performance
-* v1.7a - Improved NMap http scan performance
-* v1.7a - Removed joomscan due to verbosity issues
-* v1.7 - Added uniscan web vulnerability scanner
-* v1.7 - Added joomscan Joomla scanner
-* v1.7 - Improved web scan performance
-* v1.7 - Fixed issue with inurlbr output
-* v1.7 - Added remote desktop viewing for RDP connections
-* v1.7 - Added experimental Metasploit exploit for Apache Struts RCE (CVE-2016-3081)
-* v1.6e - Added reporting option for nobrute mode (CC. @mero01)
-* v1.6e - Improved SMB scan performance/optimization added
-* v1.6d - Improved NMap scan performance options
-* v1.6d - Added xprobe2 OS finger printing tool
-* v1.6d - Added jexbos JBoss autopwn
-* v1.6d - Merged fix for theharvester package (CC. @RubenRocha)
-* v1.6d - Merged fix for SuperMicroScanner (CC. @mero01)
-* v1.6c - Add report mode for web scans
-* v1.6c - Fixed issues with Sublist3r and theharvester
-* v1.6c - Added Shocker Shellshock exploitation scanner
-* v1.6b - Added Sublist3r sub-domain brute tool
-* v1.6b - Added cutycapt web screenshot util
-* v1.6a - Added improvements to recon phase
-* v1.6a - Fixed small issue with 3rd party extension
-* v1.6a - Various improvements to overall optimization of scans
-* v1.6a - Added new "web" mode for full web application scans 
-* v1.6 - Added 4 new modes including: stealth, port, airstrike and nuke
-* v1.6 - Added Java de-serialization scanner
-* v1.6 - Added reporting option to output to console and text file for all scans
-* v1.6 - Added option to set Sn1per full path for universal command line access
-* v1.6 - Added in DirBuster for web file brute forcing
-* v1.6 - Fixed issue with sderr errors in TheHarvester
-* v1.5e - Removed shodan command line tool due to issues
-* v1.5e - Fixed wafwoof installation in kali 2.0
-* v1.5d - Fixed minor issues with port 513/tmp and 514/tcp checks
-* v1.5c - Fixed issue which broke link to sniper directory
-* v1.5b - Added Squid Proxy checks port 3128/tcp
-* v1.5b - Fixed shodan setup options in install.sh
-* v1.5b - Fixed syntax error with theHarvester in install.sh
-* v1.5a - Fixed syntax error with port 8081 checks
-* v1.5a - Added Arachni integration
-* v1.5a - Added vsftpd, proftpd, mysql, unrealircd auto exploits
-* v1.5 - Added Metasploit scan and auto-exploit modules
-* v1.5 - Added additional port checks
-* v1.5 - Added full TCP/UDP NMap XML output
-* v1.5 - Auto tune scan for either IP or hostname/domain
-* v1.4h - Added auto IP/domain name scan configurations
-* v1.4g - Added finger enumeration scripts
-* v1.4g - Fixed nmap -p 445 target issue
-* v1.4g - Fixed smtp-enum target issue
-* v1.4f - Fixed BruteX directory bug
-* v1.4e - Fixed reported errors install.sh
-* v1.4e - Added auto-upgrade option to install.sh for existing Sn1per installs
-* v1.4d - Fixed missing rake gem install dependency
-* v1.4c - Reordered 3rd party extensions
-* v1.4b - Fixed install.sh executable references
-* v1.4b - Fixed Yasou dependencies in install.sh
-* v1.4b - Fixed minor issues with BruteX loot directory
-* v1.4 - Added Yasou for automatic web form brute forcing
-* v1.4 - Added MassBleed for SSL vulnerability detection
-* v1.4 - Added Breach-Miner for detection of breached accounts
-* v1.4 - Fixed minor errors with nmap
-* v1.4 - Removed debug output from goohak from displaying on console
-
-## FUTURE:
-* Add install.sh for Ubuntu based systems
-* Add install path to install.sh for universal access
-* Add scan config options to enabled/disable certain scan tasks (ie. brute force, osint, web scans, etc.)

TODO.md

@@ -0,0 +1,3 @@
+###TODO:
+
+* Add automatic reporting for all scans by default

install.sh

@@ -18,52 +18,65 @@ echo -e "$RESET"
 echo -e "$OKORANGE + -- --=[http://crowdshield.com$RESET"
 echo ""
 
-DIR=$( cd "$( dirname "${BASH_SOURCE[0]}" )" && pwd )
+INSTALL_DIR=/usr/share/sniper
+PLUGINS_DIR=/usr/share/sniper/plugins
 
-echo -e "$OKGREEN + -- --=[This script will install or upgrade your Sn1per installation. Are you sure you want to continue?$RESET"
-read answer
+echo -e "$OKGREEN + -- --=[This script will install sniper under $INSTALL_DIR. Are you sure you want to continue?$RESET"
+read answer 
+
+mkdir -p $INSTALL_DIR 2> /dev/null
+cp -Rf $PWD/* $INSTALL_DIR 
+cd $INSTALL_DIR
 
 echo -e "$OKORANGE + -- --=[Installing package dependencies...$RESET"
-apt-get install dos2unix zenmap sslyze joomscan uniscan xprobe2 cutycapt unicornscan waffit host whois arachni theharvester dnsenum dirb dnsrecon curl nmap php5 php5-curl wapiti hydra iceweasel wpscan sqlmap arachni w3af golismero nbtscan enum4linux cisco-torch metasploit-framework theharvester dnsenum nikto smtp-user-enum whatweb python nbtscan sslscan amap
-pip install dnspython colorama tldextract urllib3 ipaddress
+apt-get install ruby rubygems python dos2unix zenmap sslyze uniscan xprobe2 cutycapt unicornscan waffit host whois dirb dnsrecon curl nmap php php-curl hydra iceweasel wpscan sqlmap nbtscan enum4linux cisco-torch metasploit-framework theharvester dnsenum nikto smtp-user-enum whatweb sslscan amap
+pip install dnspython colorama tldextract urllib3 ipaddress arachni
 
 echo -e "$OKORANGE + -- --=[Installing gem dependencies...$RESET"
 gem install rake
 gem install ruby-nmap net-http-persistent mechanize text-table
 
 echo -e "$OKORANGE + -- --=[Cleaning up old extensions...$RESET"
-rm -Rf Findsploit/ Brutex/ Goohak/ XSSTracer/ MassBleed/ SuperMicro-Password-Scanner/ CMSmap/ yasuo/ Sublist3r/ shocker/ jexboss/ CrackMapExec/
+rm -Rf Findsploit/ BruteX/ Goohak/ XSSTracer/ MassBleed/ SuperMicro-Password-Scanner/ CMSmap/ yasuo/ Sublist3r/ shocker/ jexboss/ serializekiller/ testssl.sh/ SimpleEmailSpoofer/ ssh-audit/ plugins/ 2> /dev/null
+mkdir /usr/share/sniper/plugins/
+cd $PLUGINS_DIR
 
 echo -e "$OKORANGE + -- --=[Downloading extensions...$RESET"
-git clone https://github.com/1N3/Findsploit.git
-git clone https://github.com/1N3/BruteX.git
-git clone https://github.com/1N3/Goohak.git
-git clone https://github.com/1N3/XSSTracer.git
-git clone https://github.com/1N3/MassBleed.git
-git clone https://github.com/1N3/SuperMicro-Password-Scanner
-git clone https://github.com/1N3/HTTPoxyScan.git
-git clone https://github.com/Dionach/CMSmap.git
-git clone https://github.com/0xsauby/yasuo.git
-git clone https://github.com/johndekroon/serializekiller.git
-git clone https://github.com/aboul3la/Sublist3r.git
-git clone https://github.com/nccgroup/shocker.git
-git clone https://github.com/joaomatosf/jexboss.git
-git clone https://github.com/byt3bl33d3r/CrackMapExec.git
-git clone https://github.com/drwetter/testssl.sh.git
-git clone https://github.com/lunarca/SimpleEmailSpoofer
-
+git clone https://github.com/1N3/Findsploit.git 
+git clone https://github.com/1N3/BruteX.git 
+git clone https://github.com/1N3/Goohak.git 
+git clone https://github.com/1N3/XSSTracer.git 
+git clone https://github.com/1N3/MassBleed.git 
+git clone https://github.com/1N3/SuperMicro-Password-Scanner 
+git clone https://github.com/Dionach/CMSmap.git 
+git clone https://github.com/0xsauby/yasuo.git 
+git clone https://github.com/johndekroon/serializekiller.git 
+git clone https://github.com/aboul3la/Sublist3r.git 
+git clone https://github.com/nccgroup/shocker.git 
+git clone https://github.com/drwetter/testssl.sh.git 
+git clone https://github.com/lunarca/SimpleEmailSpoofer 
+git clone https://github.com/arthepsy/ssh-audit 
 echo -e "$OKORANGE + -- --=[Setting up environment...$RESET"
-mkdir loot 2> /dev/null
-cp -f $DIR/bin/clamav-exec.nse /usr/share/nmap/scripts/ 2> /dev/null
-chmod +x $DIR/sniper
-chmod +x $DIR/bin/dnsdict6
-chmod +x $DIR/Goohak/goohak
-chmod +x $DIR/XSSTracer/xsstracer.py
-chmod +x $DIR/MassBleed/massbleed
-chmod +x $DIR/MassBleed/heartbleed.py
-chmod +x $DIR/MassBleed/openssl_ccs.pl
-chmod +x $DIR/SuperMicro-Password-Scanner/supermicro_scan.sh
-chmod +x $DIR/testssl.sh/testssl.sh
+cd $PLUGINS_DIR/BruteX/
+bash install.sh
+cd $INSTALL_DIR 
+mkdir $LOOT_DIR 2> /dev/null
+mkdir $LOOT_DIR/screenshots/ -p 2> /dev/null
+mkdir $LOOT_DIR/nmap -p 2> /dev/null
+mkdir $LOOT_DIR/domains -p 2> /dev/null
+mkdir $LOOT_DIR/output -p 2> /dev/null
+mkdir $LOOT_DIR/reports -p 2> /dev/null
+cp -f $INSTALL_DIR/bin/clamav-exec.nse /usr/share/nmap/scripts/ 2> /dev/null
+chmod +x $INSTALL_DIR/sniper
+chmod +x $INSTALL_DIR/bin/dnsdict6
+chmod +x $PLUGINS_DIR/Goohak/goohak
+chmod +x $PLUGINS_DIR/XSSTracer/xsstracer.py
+chmod +x $PLUGINS_DIR/MassBleed/massbleed
+chmod +x $PLUGINS_DIR/MassBleed/heartbleed.py
+chmod +x $PLUGINS_DIR/MassBleed/openssl_ccs.pl
+chmod +x $PLUGINS_DIR/MassBleed/winshock.sh 
+chmod +x $PLUGINS_DIR/SuperMicro-Password-Scanner/supermicro_scan.sh
+chmod +x $PLUGINS_DIR/testssl.sh/testssl.sh
 rm -f /usr/bin/sniper
 rm -f /usr/bin/goohak
 rm -f /usr/bin/xsstracer
@@ -71,18 +84,16 @@ rm -f /usr/bin/findsploit
 rm -f /usr/bin/copysploit
 rm -f /usr/bin/compilesploit
 rm -f /usr/bin/massbleed
-rm -f /usr/bin/brutex
-ln -s $DIR/sniper /usr/bin/sniper
-ln -s $DIR/Goohak/goohak /usr/bin/goohak
-ln -s $DIR/XSSTracer/xsstracer.py /usr/bin/xsstracer
-ln -s $DIR/Findsploit/findsploit /usr/bin/findsploit
-ln -s $DIR/Findsploit/copysploit /usr/bin/copysploit
-ln -s $DIR/Findsploit/compilesploit /usr/bin/compilesploit
-ln -s $DIR/MassBleed/massbleed /usr/bin/massbleed
-ln -s $DIR/BruteX/brutex /usr/bin/brutex
-ln -s $DIR/testssl.sh/testssl.sh /usr/bin/testssl
-
-echo -e "$OKORANGE + -- --=[For universal sniper access, be sure to edit sniper to include the full path for the SNIPER_DIR variable. $RESET"
+rm -f /usr/bin/testssl
+ln -s $INSTALL_DIR/sniper /usr/bin/sniper
+ln -s $PLUGINS_DIR/Goohak/goohak /usr/bin/goohak
+ln -s $PLUGINS_DIR/XSSTracer/xsstracer.py /usr/bin/xsstracer
+ln -s $PLUGINS_DIR/Findsploit/findsploit /usr/bin/findsploit
+ln -s $PLUGINS_DIR/Findsploit/copysploit /usr/bin/copysploit
+ln -s $PLUGINS_DIR/Findsploit/compilesploit /usr/bin/compilesploit
+ln -s $PLUGINS_DIR/MassBleed/massbleed /usr/bin/massbleed
+ln -s $PLUGINS_DIR/testssl.sh/testssl.sh /usr/bin/testssl
 echo -e "$OKORANGE + -- --=[Done!$RESET"
+echo -e "$OKORANGE + -- --=[To run, type 'sniper'! $RESET"