Sn1per by 1N3@CrowdShield

Update sniper

CHANGELOG.md

@@ -1,4 +1,30 @@
 ## CHANGELOG:
+* v2.2 - Added auto Metasploit Pro & Zenmap GUI integration
+* v2.2 - Added Sn1per workspaces to loot directory
+* v2.1d - Added crt.sh sub-domain check
+* v2.1d - Removed blank screenshots from loot directory
+* v2.1c - Fixed issue with install.sh install directories
+* v2.1b - Added automatic Metasploit NMap xml imports for loot directory
+* v2.1b - Removed Zenmap
+* v2.1a - Separated Arachni reports for port 80/443/tcp
+* v2.1a - Fixed NMap full port scan options
+* v2.1 - Added Arachni with auto HTML web reporting (web mode only)
+* v2.1 - Added full NMap detailed port scans
+* v2.1 - Added port 4443/tcp checks
+* v2.1 - Added META tag scans for web apps
+* v2.1 - Removed Uniscan from web mode
+* v2.1 - Removed SQLMap from web mode
+* v2.0b - Added help option --help
+* v2.0a - Fixed issue with ssh-audit
+* v2.0a - Fixed issue with 'discover' mode
+* v2.0 - Updated sub-domain takeover list
+* v2.0 - Improved scan performance for stealth, airstrike and discover modes
+* v2.0 - Removed jexboss due to clear screen issue with output
+* v2.0 - Auto loot directory sorting for all tools
+* v2.0 - Updated install.sh package list
+* v1.9c - Enabled BruteX automated brute force attacks
+* v1.9b - Fixed MSSQL port 1433/tcp port scan check (@hacktrack)
+* v1.9a - Removed testssl script from stealth mode scans
 * v1.9 - Added Ubuntu docker image for Sn1per (@menzow)
 * v1.9 - Added automatic loot directory sorting for all modes
 * v1.9 - Added MSSQL port 1433/tcp checks
@@ -98,4 +124,4 @@
 * v1.4 - Removed debug output from goohak from displaying on console
 
 ## FUTURE:
-* Add scan config options to enabled/disable certain scan tasks (ie. brute force, osint, web scans, etc.)
+* Add scan config options to enabled/disable certain scan tasks (ie. brute force, osint, web scans, etc.)

README.md

@@ -1,4 +1,4 @@
-![alt tag](https://github.com/1N3/Sn1per/blob/master/Sn1per-logo.png)
+![alt tag](https://github.com/1N3/Sn1per/blob/master/Sn1per-logo.jpg)
 
 ## ABOUT:
 Sn1per is an automated scanner that can be used during a penetration test to enumerate and scan for vulnerabilities. 
@@ -19,6 +19,8 @@ Sn1per is an automated scanner that can be used during a penetration test to enu
 * Automatically exploit remote hosts to gain remote shell access
 * Performs high level enumeration of multiple hosts
 * Auto-pwn added for Metasploitable, ShellShock, MS08-067, Default Tomcat Creds
+* Automatically integrates with Metasploit Pro, MSFConsole and Zenmap for reporting
+* Create individual workspaces to store all scan output
 
 ## KALI LINUX INSTALL:
 ```
@@ -61,7 +63,7 @@ sniper loot
 * **NOBRUTE:** Launches a full scan against a target host/domain without brute forcing services.
 * **AIRSTRIKE:** Quickly enumerates open ports/services on multiple hosts and performs basic fingerprinting. To use, specify the full location of the file which contains all hosts, IP's that need to be scanned and run ./sn1per /full/path/to/targets.txt airstrike to begin scanning.
 * **NUKE:** Launch full audit of multiple hosts specified in text file of choice. Usage example: ./sniper /pentest/loot/targets.txt nuke. 
-* **LOOT:** Automatically organizes and displays loot folder in your browser and opens Zenmap GUI with all port scan results. To run, type 'sniper loot'.
+* **LOOT:** Automatically organizes and displays loot folder in your browser and opens Metasploit Pro and Zenmap GUI with all port scan results. To run, type 'sniper loot'.
 
 ## SAMPLE REPORT:
 https://gist.github.com/1N3/8214ec2da2c91691bcbc

TODO.md

@@ -0,0 +1,3 @@
+###TODO:
+
+* Add automatic reporting for all scans by default

install.sh

@@ -18,57 +18,72 @@ echo -e "$RESET"
 echo -e "$OKORANGE + -- --=[http://crowdshield.com$RESET"
 echo ""
 
-# DIR=$( cd "$( dirname "${BASH_SOURCE[0]}" )" && pwd )
 INSTALL_DIR=/usr/share/sniper
+LOOT_DIR=/usr/share/sniper/loot
+PLUGINS_DIR=/usr/share/sniper/plugins
 
 echo -e "$OKGREEN + -- --=[This script will install sniper under $INSTALL_DIR. Are you sure you want to continue?$RESET"
-read answer
+read answer 
 
 mkdir -p $INSTALL_DIR 2> /dev/null
+mkdir -p $LOOT_DIR 2> /dev/null
+mkdir $LOOT_DIR/domains 2> /dev/null
+mkdir $LOOT_DIR/screenshots 2> /dev/null
+mkdir $LOOT_DIR/nmap 2> /dev/null
+mkdir $LOOT_DIR/reports 2> /dev/null
+mkdir $LOOT_DIR/output 2> /dev/null
 cp -Rf $PWD/* $INSTALL_DIR 
 cd $INSTALL_DIR
 
 echo -e "$OKORANGE + -- --=[Installing package dependencies...$RESET"
-apt-get install ruby nslookup rubygems python dos2unix zenmap sslyze uniscan xprobe2 cutycapt unicornscan waffit host whois dirb dnsrecon curl nmap php5 php5-curl hydra iceweasel wpscan sqlmap nbtscan enum4linux cisco-torch metasploit-framework theharvester dnsenum nikto smtp-user-enum whatweb sslscan amap
-pip install dnspython colorama tldextract urllib3 ipaddress
+apt-get install ruby rubygems python dos2unix zenmap sslyze uniscan xprobe2 cutycapt unicornscan waffit host whois dirb dnsrecon curl nmap php php-curl hydra iceweasel wpscan sqlmap nbtscan enum4linux cisco-torch metasploit-framework theharvester dnsenum nikto smtp-user-enum whatweb sslscan amap
+pip install dnspython colorama tldextract urllib3 ipaddress arachni
 
 echo -e "$OKORANGE + -- --=[Installing gem dependencies...$RESET"
 gem install rake
 gem install ruby-nmap net-http-persistent mechanize text-table
 
 echo -e "$OKORANGE + -- --=[Cleaning up old extensions...$RESET"
-rm -Rf Findsploit/ Brutex/ Goohak/ XSSTracer/ MassBleed/ SuperMicro-Password-Scanner/ CMSmap/ yasuo/ Sublist3r/ shocker/ jexboss/ serializekiller/
+rm -Rf Findsploit/ BruteX/ Goohak/ XSSTracer/ MassBleed/ SuperMicro-Password-Scanner/ CMSmap/ yasuo/ Sublist3r/ shocker/ jexboss/ serializekiller/ testssl.sh/ SimpleEmailSpoofer/ ssh-audit/ plugins/ 2> /dev/null
+mkdir $PLUGINS_DIR
+cd $PLUGINS_DIR
 
 echo -e "$OKORANGE + -- --=[Downloading extensions...$RESET"
-git clone https://github.com/1N3/Findsploit.git
-git clone https://github.com/1N3/BruteX.git
-git clone https://github.com/1N3/Goohak.git
-git clone https://github.com/1N3/XSSTracer.git
-git clone https://github.com/1N3/MassBleed.git
-git clone https://github.com/1N3/SuperMicro-Password-Scanner
-git clone https://github.com/Dionach/CMSmap.git
-git clone https://github.com/0xsauby/yasuo.git
-git clone https://github.com/johndekroon/serializekiller.git
-git clone https://github.com/aboul3la/Sublist3r.git
-git clone https://github.com/nccgroup/shocker.git
-git clone https://github.com/joaomatosf/jexboss.git
-git clone https://github.com/drwetter/testssl.sh.git
-git clone https://github.com/lunarca/SimpleEmailSpoofer
-git clone https://github.com/arthepsy/ssh-audit
-
+git clone https://github.com/1N3/Findsploit.git 
+git clone https://github.com/1N3/BruteX.git 
+git clone https://github.com/1N3/Goohak.git 
+git clone https://github.com/1N3/XSSTracer.git 
+git clone https://github.com/1N3/MassBleed.git 
+git clone https://github.com/1N3/SuperMicro-Password-Scanner 
+git clone https://github.com/Dionach/CMSmap.git 
+git clone https://github.com/0xsauby/yasuo.git 
+git clone https://github.com/johndekroon/serializekiller.git 
+git clone https://github.com/aboul3la/Sublist3r.git 
+git clone https://github.com/nccgroup/shocker.git 
+git clone https://github.com/drwetter/testssl.sh.git 
+git clone https://github.com/lunarca/SimpleEmailSpoofer 
+git clone https://github.com/arthepsy/ssh-audit 
 echo -e "$OKORANGE + -- --=[Setting up environment...$RESET"
-mkdir loot 2> /dev/null
+cd $PLUGINS_DIR/BruteX/
+bash install.sh
+cd $INSTALL_DIR 
+mkdir $LOOT_DIR 2> /dev/null
+mkdir $LOOT_DIR/screenshots/ -p 2> /dev/null
+mkdir $LOOT_DIR/nmap -p 2> /dev/null
+mkdir $LOOT_DIR/domains -p 2> /dev/null
+mkdir $LOOT_DIR/output -p 2> /dev/null
+mkdir $LOOT_DIR/reports -p 2> /dev/null
 cp -f $INSTALL_DIR/bin/clamav-exec.nse /usr/share/nmap/scripts/ 2> /dev/null
 chmod +x $INSTALL_DIR/sniper
 chmod +x $INSTALL_DIR/bin/dnsdict6
-chmod +x $INSTALL_DIR/Goohak/goohak
-chmod +x $INSTALL_DIR/XSSTracer/xsstracer.py
-chmod +x $INSTALL_DIR/MassBleed/massbleed
-chmod +x $INSTALL_DIR/MassBleed/heartbleed.py
-chmod +x $INSTALL_DIR/MassBleed/openssl_ccs.pl
-chmod +x $INSTALL_DIR/MassBleed/winshock.sh 
-chmod +x $INSTALL_DIR/SuperMicro-Password-Scanner/supermicro_scan.sh
-chmod +x $INSTALL_DIR/testssl.sh/testssl.sh
+chmod +x $PLUGINS_DIR/Goohak/goohak
+chmod +x $PLUGINS_DIR/XSSTracer/xsstracer.py
+chmod +x $PLUGINS_DIR/MassBleed/massbleed
+chmod +x $PLUGINS_DIR/MassBleed/heartbleed.py
+chmod +x $PLUGINS_DIR/MassBleed/openssl_ccs.pl
+chmod +x $PLUGINS_DIR/MassBleed/winshock.sh 
+chmod +x $PLUGINS_DIR/SuperMicro-Password-Scanner/supermicro_scan.sh
+chmod +x $PLUGINS_DIR/testssl.sh/testssl.sh
 rm -f /usr/bin/sniper
 rm -f /usr/bin/goohak
 rm -f /usr/bin/xsstracer
@@ -76,17 +91,15 @@ rm -f /usr/bin/findsploit
 rm -f /usr/bin/copysploit
 rm -f /usr/bin/compilesploit
 rm -f /usr/bin/massbleed
-rm -f /usr/bin/brutex
 rm -f /usr/bin/testssl
 ln -s $INSTALL_DIR/sniper /usr/bin/sniper
-ln -s $INSTALL_DIR/Goohak/goohak /usr/bin/goohak
-ln -s $INSTALL_DIR/XSSTracer/xsstracer.py /usr/bin/xsstracer
-ln -s $INSTALL_DIR/Findsploit/findsploit /usr/bin/findsploit
-ln -s $INSTALL_DIR/Findsploit/copysploit /usr/bin/copysploit
-ln -s $INSTALL_DIR/Findsploit/compilesploit /usr/bin/compilesploit
-ln -s $INSTALL_DIR/MassBleed/massbleed /usr/bin/massbleed
-ln -s $INSTALL_DIR/BruteX/brutex /usr/bin/brutex
-ln -s $INSTALL_DIR/testssl.sh/testssl.sh /usr/bin/testssl
+ln -s $PLUGINS_DIR/Goohak/goohak /usr/bin/goohak
+ln -s $PLUGINS_DIR/XSSTracer/xsstracer.py /usr/bin/xsstracer
+ln -s $PLUGINS_DIR/Findsploit/findsploit /usr/bin/findsploit
+ln -s $PLUGINS_DIR/Findsploit/copysploit /usr/bin/copysploit
+ln -s $PLUGINS_DIR/Findsploit/compilesploit /usr/bin/compilesploit
+ln -s $PLUGINS_DIR/MassBleed/massbleed /usr/bin/massbleed
+ln -s $PLUGINS_DIR/testssl.sh/testssl.sh /usr/bin/testssl
 echo -e "$OKORANGE + -- --=[Done!$RESET"
 echo -e "$OKORANGE + -- --=[To run, type 'sniper'! $RESET"