6e13c6ffb9
* v8.6 - Updated port lists to remove duplicate ports error and slim down list * v8.6 - Updated PHP to 7.4
217 lines
4.6 KiB
Plaintext
217 lines
4.6 KiB
Plaintext
INSTALL_DIR="/usr/share/sniper"
|
|
SNIPER_PRO=$INSTALL_DIR/pro.sh
|
|
PLUGINS_DIR="$INSTALL_DIR/plugins"
|
|
|
|
# COLORS
|
|
OKBLUE='\033[94m'
|
|
OKRED='\033[91m'
|
|
OKGREEN='\033[92m'
|
|
OKORANGE='\033[93m'
|
|
RESET='\e[0m'
|
|
REGEX='^[0-9]+$'
|
|
|
|
# DEFAULT SETTINGS
|
|
VERBOSE="0"
|
|
AUTOBRUTE="0"
|
|
FULLNMAPSCAN="0"
|
|
OSINT="0"
|
|
ENABLE_AUTO_UPDATES="1"
|
|
# ONLINE="1"
|
|
REPORT="1"
|
|
LOOT="1"
|
|
|
|
# SN1PER PROFESSIONAL SETTINGS
|
|
SNIPER_PRO_CONSOLE_OUTPUT="0"
|
|
SN1PER_AUTOLOAD="0"
|
|
MAX_HOSTS="2000"
|
|
|
|
# DEFAULT BROWSER
|
|
BROWSER="firefox"
|
|
|
|
# BURP 2.0 SCANNER CONFIG
|
|
BURP_HOST="127.0.0.1"
|
|
BURP_PORT="1338"
|
|
|
|
# OPENVAS CONFIG
|
|
OPENVAS="1"
|
|
OPENVAS_HOST="127.0.0.1"
|
|
OPENVAS_PORT="9390"
|
|
OPENVAS_USERNAME="admin"
|
|
OPENVAS_PASSWORD=""
|
|
|
|
# NESSUS CONFIG
|
|
NESSUS="0"
|
|
NESSUS_HOST="127.0.0.1:8834"
|
|
NESSUS_USERNAME="admin"
|
|
NESSUS_PASSWORD=""
|
|
NESSUS_POLICY_ID="c3cbcd46-329f-a9ed-1077-554f8c2af33d0d44f09d736969bf"
|
|
|
|
# METASPLOIT SCANNER CONFIG
|
|
METASPLOIT_IMPORT="0"
|
|
MSF_LHOST="127.0.0.1"
|
|
MSF_LPORT="4444"
|
|
|
|
# SHODAN API KEY
|
|
SHODAN_API_KEY=""
|
|
|
|
# CENSYS API KEYS
|
|
CENSYS_APP_ID=""
|
|
CENSYS_API_SECRET=""
|
|
|
|
# HUNTER.IO API KEY
|
|
HUNTERIO_KEY=""
|
|
|
|
# GITHUB API KEY
|
|
GITHUB_API_KEY=""
|
|
|
|
# SLACK API
|
|
SLACK_API_TOKEN=""
|
|
SLACK_NOTIFICATIONS="0"
|
|
SLACK_NOTIFICATIONS_THEHARVESTER="0"
|
|
SLACK_NOTIFICATIONS_EMAIL_SECURITY="0"
|
|
SLACK_NOTIFICATIONS_DOMAINS_NEW="0"
|
|
SLACK_NOTIFICATIONS_TAKEOVERS_NEW="0"
|
|
SLACK_NOTIFICATIONS_SUBOVER_NEW="0"
|
|
SLACK_NOTIFICATIONS_SUBJACK_NEW="0"
|
|
SLACK_NOTIFICATIONS_S3_BUCKETS="0"
|
|
SLACK_NOTIFICATIONS_SUBNETS="0"
|
|
SLACK_NOTIFICATIONS_DIRSEARCH_NEW="0"
|
|
SLACK_NOTIFICATIONS_SPIDER_NEW="0"
|
|
SLACK_NOTIFICATIONS_WHATWEB="0"
|
|
SLACK_NOTIFICATIONS_NMAP="0"
|
|
SLACK_NOTIFICATIONS_NMAP_DIFF="0"
|
|
SLACK_NOTIFICATIONS_BRUTEFORCE="0"
|
|
SLACK_NOTIFICATIONS_WHOIS="0"
|
|
SLACK_NOTIFICATIONS_METAGOOFIL="0"
|
|
SLACK_NOTIFICATIONS_ARACHNI_SCAN="0"
|
|
SLACK_NOTIFICATIONS_EMAIL_FORMAT="0"
|
|
|
|
# WEB BRUTE FORCE WORDLISTS
|
|
WEB_BRUTE_STEALTH="$INSTALL_DIR/wordlists/web-brute-stealth.txt"
|
|
WEB_BRUTE_COMMON="$INSTALL_DIR/wordlists/web-brute-common.txt"
|
|
WEB_BRUTE_FULL="$INSTALL_DIR/wordlists/web-brute-full.txt"
|
|
WEB_BRUTE_EXPLOITS="$INSTALL_DIR/wordlists/web-brute-exploits.txt"
|
|
WEB_BRUTE_EXTENSIONS="htm,html,asp,aspx,php,jsp,js"
|
|
WEB_BRUTE_EXCLUDE_CODES="400,403,404,405,406,429,500,502,503,504"
|
|
|
|
# DOMAIN WORDLISTS
|
|
DOMAINS_QUICK="$INSTALL_DIR/wordlists/domains-quick.txt"
|
|
DOMAINS_DEFAULT="$INSTALL_DIR/wordlists/domains-default.txt"
|
|
DOMAINS_FULL="$INSTALL_DIR/wordlists/domains-all.txt"
|
|
|
|
# DEFAULT USER/PASS WORDLISTS
|
|
USER_FILE="/usr/share/brutex/wordlists/simple-users.txt"
|
|
PASS_FILE="/usr/share/brutex/wordlists/password.lst"
|
|
DNS_FILE="/usr/share/brutex/wordlists/namelist.txt"
|
|
|
|
# TOOL DIRECTORIES
|
|
SAMRDUMP="$INSTALL_DIR/bin/samrdump.py"
|
|
INURLBR="$INSTALL_DIR/bin/inurlbr.php"
|
|
|
|
# FLYOVER MODE TUNING
|
|
FLYOVER_MAX_HOSTS="5"
|
|
FLYOVER_DELAY="10"
|
|
|
|
# NMAP OPTIONS
|
|
NMAP_OPTIONS="--script-args http.useragent='' --open"
|
|
|
|
# NMAP PORT CONFIGURATIONS
|
|
QUICK_PORTS="21,22,80,443,8000,8080,8443"
|
|
DEFAULT_PORTS="10000,1099,110,111,123,135,137,139,1433,1524,161,162,16992,2049,21,2121,2181,22,23,25,264,27017,27018,27019,28017,3128,3306,3310,3389,3632,389,443,4443,445,49152,49180,500,512,513,514,53,5432,5555,5800,5900,5984,623,624,6667,67,68,69,7001,79,80,8000,8001,8080,8180,8443,8888,9200,9495"
|
|
DEFAULT_UDP_PORTS="53,67,68,69,88,123,161,162,137,138,139,389,500,520,2049"
|
|
FULL_PORTSCAN_PORTS="T:1-65535,U:53,U:67,U:68,U:69,U:88,U:161,U:162,U:137,U:138,U:139,U:389,U:500,U:520,U:2049"
|
|
THREADS="100"
|
|
|
|
# NETWORK PLUGINS
|
|
NMAP_SCRIPTS="1"
|
|
METASPLOIT_EXPLOIT="1"
|
|
MSF_LEGACY_WEB_EXPLOITS="0"
|
|
SSH_AUDIT="1"
|
|
SSH_ENUM="1"
|
|
LIBSSH_BYPASS="1"
|
|
SMTP_USER_ENUM="1"
|
|
FINGER_TOOL="1"
|
|
SHOW_MOUNT="1"
|
|
RPC_INFO="1"
|
|
SMB_ENUM="1"
|
|
AMAP="0"
|
|
YASUO="0"
|
|
|
|
# OSINT PLUGINS
|
|
WHOIS="1"
|
|
GOOHAK="1"
|
|
INURLBR="1"
|
|
THEHARVESTER="1"
|
|
METAGOOFIL="1"
|
|
HUNTERIO="0"
|
|
INTODNS="1"
|
|
EMAILFORMAT="1"
|
|
ULTRATOOLS="1"
|
|
URLCRAZY="1"
|
|
VHOSTS="0"
|
|
H8MAIL="0"
|
|
GITHUB_SECRETS="0"
|
|
URLSCANIO="1"
|
|
|
|
# ACTIVE WEB PLUGINS
|
|
SC0PE_VULNERABLITY_SCANNER="1"
|
|
BURP_SCAN="0"
|
|
ARACHNI_SCAN="1"
|
|
ZAP_SCAN="0"
|
|
DIRSEARCH="1"
|
|
GOBUSTER="0"
|
|
NIKTO="0"
|
|
BLACKWIDOW="1"
|
|
CLUSTERD="0"
|
|
WPSCAN="0"
|
|
CMSMAP="0"
|
|
WAFWOOF="1"
|
|
WHATWEB="1"
|
|
WIG="0"
|
|
SHOCKER="0"
|
|
JEXBOSS="0"
|
|
WEBTECH="1"
|
|
SSL_INSECURE="1"
|
|
HTTP_PROBE="1"
|
|
|
|
# ACTIVE WEB BRUTE FORCE STAGES
|
|
WEB_BRUTE_STEALTHSCAN="1"
|
|
WEB_BRUTE_COMMONSCAN="1"
|
|
WEB_BRUTE_FULLSCAN="0"
|
|
WEB_BRUTE_EXPLOITSCAN="0"
|
|
WEB_JAVASCRIPT_ANALYSIS="1"
|
|
MAX_JAVASCRIPT_FILES="25"
|
|
|
|
# PASSIVE WEB PLUGINS
|
|
WAYBACKMACHINE="1"
|
|
SSL="1"
|
|
PASSIVE_SPIDER="1"
|
|
GUA="1"
|
|
HACKERTARGET="1"
|
|
CUTYCAPT="0"
|
|
WEBSCREENSHOT="1"
|
|
|
|
# EMAIL PLUGINS
|
|
SPOOF_CHECK="1"
|
|
|
|
# RECON PLUGINS
|
|
SUBHIJACK_CHECK="0"
|
|
SLURP="1"
|
|
SUBLIST3R="1"
|
|
AMASS="1"
|
|
SUBFINDER="1"
|
|
DNSCAN="1"
|
|
CRTSH="1"
|
|
SUBOVER="1"
|
|
PROJECT_SONAR="1"
|
|
CENSYS_SUBDOMAINS="0"
|
|
SUBNET_RETRIEVAL="1"
|
|
SUBJACK="0"
|
|
ALT_DNS="0"
|
|
MASS_DNS="0"
|
|
DNSGEN="0"
|
|
SHODAN="0"
|
|
ASN_CHECK="1"
|
|
SPYSE="1"
|
|
GITHUB_SUBDOMAINS="0"
|
|
RAPIDDNS="1" |