Connect with us

Ethical Hacking/Pen Testing

Automated pentesting framework ( Sn1per)

Published

on

Sn1perSecurity

GitHub release GitHub issues Github Stars GitHub Followers Tweet Follow on Twitter

[Website] [Blog] [Shop] [Documentation] [Demo] [Find Out More]

Attack Surface Management

Discover hidden assets and vulnerabilities in your environment

[Find out more]

The ultimate pentesting toolkit.

Integrate with the leading commercial and open source vulnerability scanners to scan for the latest CVEs and vulnerabilities.

Automate the most powerful tools.

Security tools are expensive and time-consuming, but with Sn1per, you can save time by automating the execution of these open source and commercial tools to discover vulnerabilities across your entire attack surface.

Find what you can’t see.

Hacking is a problem that’s only getting worse. But, with Sn1per, you can find what you can’t see—hidden assets and vulnerabilities in your environment.

Discover and prioritize risks in your organization.

Sn1per is a next-generation information gathering tool that provides automated, deep, and continuous security for organizations of all sizes.

See Sn1per in action!

News

Kali/Ubuntu/Debian/Parrot Linux Install

git clone https://github.com/1N3/Sn1per
cd Sn1per
bash install.sh

AWS AMI (Free Tier) VPS Install

To install Sn1per using an AWS EC2 instance:

  1. Go to https://aws.amazon.com/marketplace/pp/prodview-rmloab6wnymno and click the “Continue to Subscribe” button
  2. Click the “Continue to Configuration” button
  3. Click the “Continue to Launch” button
  4. Login via SSH using the public IP of the new EC2 instance

Docker Install

From a new Docker console, run the following commands.

Download https://raw.githubusercontent.com/1N3/Sn1per/master/Dockerfile
docker build -t sn1per . 
docker run -it sn1per /bin/bash

or 

docker pull xer0dayz/sn1per
docker run -it xer0dayz/sn1per /bin/bash

Usage

[*] NORMAL MODE
sniper -t <TARGET>

[*] NORMAL MODE + OSINT + RECON
sniper -t <TARGET> -o -re

[*] STEALTH MODE + OSINT + RECON
sniper -t <TARGET> -m stealth -o -re

[*] DISCOVER MODE
sniper -t <CIDR> -m discover -w <WORSPACE_ALIAS>

[*] SCAN ONLY SPECIFIC PORT
sniper -t <TARGET> -m port -p <portnum>

[*] FULLPORTONLY SCAN MODE
sniper -t <TARGET> -fp

[*] WEB MODE - PORT 80 + 443 ONLY!
sniper -t <TARGET> -m web

[*] HTTP WEB PORT MODE
sniper -t <TARGET> -m webporthttp -p <port>

[*] HTTPS WEB PORT MODE
sniper -t <TARGET> -m webporthttps -p <port>

[*] HTTP WEBSCAN MODE
sniper -t <TARGET> -m webscan 

[*] ENABLE BRUTEFORCE
sniper -t <TARGET> -b

[*] AIRSTRIKE MODE
sniper -f targets.txt -m airstrike

[*] NUKE MODE WITH TARGET LIST, BRUTEFORCE ENABLED, FULLPORTSCAN ENABLED, OSINT ENABLED, RECON ENABLED, WORKSPACE & LOOT ENABLED
sniper -f targets.txt -m nuke -w <WORKSPACE_ALIAS>

[*] MASS PORT SCAN MODE
sniper -f targets.txt -m massportscan

[*] MASS WEB SCAN MODE
sniper -f targets.txt -m massweb

[*] MASS WEBSCAN SCAN MODE
sniper -f targets.txt -m masswebscan

[*] MASS VULN SCAN MODE
sniper -f targets.txt -m massvulnscan

[*] PORT SCAN MODE
sniper -t <TARGET> -m port -p <PORT_NUM>

[*] LIST WORKSPACES
sniper --list

[*] DELETE WORKSPACE
sniper -w <WORKSPACE_ALIAS> -d

[*] DELETE HOST FROM WORKSPACE
sniper -w <WORKSPACE_ALIAS> -t <TARGET> -dh

[*] GET SNIPER SCAN STATUS
sniper --status

[*] LOOT REIMPORT FUNCTION
sniper -w <WORKSPACE_ALIAS> --reimport

[*] LOOT REIMPORTALL FUNCTION
sniper -w <WORKSPACE_ALIAS> --reimportall

[*] LOOT REIMPORT FUNCTION
sniper -w <WORKSPACE_ALIAS> --reload

[*] LOOT EXPORT FUNCTION
sniper -w <WORKSPACE_ALIAS> --export

[*] SCHEDULED SCANS
sniper -w <WORKSPACE_ALIAS> -s daily|weekly|monthly

[*] USE A CUSTOM CONFIG
sniper -c /path/to/sniper.conf -t <TARGET> -w <WORKSPACE_ALIAS>

[*] UPDATE SNIPER
sniper -u|--update

Modes

  • NORMAL: Performs basic scan of targets and open ports using both active and passive checks for optimal performance.
  • STEALTH: Quickly enumerate single targets using mostly non-intrusive scans to avoid WAF/IPS blocking.
  • FLYOVER: Fast multi-threaded high level scans of multiple targets (useful for collecting high level data on many hosts quickly).
  • AIRSTRIKE: Quickly enumerates open ports/services on multiple hosts and performs basic fingerprinting. To use, specify the full location of the file which contains all hosts, IPs that need to be scanned and run ./sn1per /full/path/to/targets.txt airstrike to begin scanning.
  • NUKE: Launch full audit of multiple hosts specified in text file of choice. Usage example: ./sniper /pentest/loot/targets.txt nuke.
  • DISCOVER: Parses all hosts on a subnet/CIDR (ie. 192.168.0.0/16) and initiates a sniper scan against each host. Useful for internal network scans.
  • PORT: Scans a specific port for vulnerabilities. Reporting is not currently available in this mode.
  • FULLPORTONLY: Performs a full detailed port scan and saves results to XML.
  • MASSPORTSCAN: Runs a “fullportonly” scan on mutiple targets specified via the “-f” switch.
  • WEB: Adds full automatic web application scans to the results (port 80/tcp & 443/tcp only). Ideal for web applications but may increase scan time significantly.
  • MASSWEB: Runs “web” mode scans on multiple targets specified via the “-f” switch.
  • WEBPORTHTTP: Launches a full HTTP web application scan against a specific host and port.
  • WEBPORTHTTPS: Launches a full HTTPS web application scan against a specific host and port.
  • WEBSCAN: Launches a full HTTP & HTTPS web application scan against via Burpsuite and Arachni.
  • MASSWEBSCAN: Runs “webscan” mode scans of multiple targets specified via the “-f” switch.
  • VULNSCAN: Launches a OpenVAS vulnerability scan.
  • MASSVULNSCAN: Launches a “vulnscan” mode scans on multiple targets specified via the “-f” switch.

Continue Reading
Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

Ethical Hacking/Pen Testing

Lazy Script ( A perfect Automated All in 1 script for all Newbies ) for Ethical Hacking

Published

on

By

Welcome to the LAZY script v2.1.4

A video Hackersploit made : https://www.youtube.com/watch?v=oBpo5sElrMY

A video sstec made: https://www.youtube.com/watch?v=gSO7c2MN7TY

For feature-recommendation , add it on the “Issues” tab. NOW!

I AM NOT RESPONSIBLE HOW YOU USE THIS TOOL.BE LEGAL AND NOT STUPID.

This script will make your life easier, and of course faster.

Its not only for noobs.Its for whoever wants to type less and do actually more.

What is this

This is a script for Kali Linux that automates many procedures about wifi penetration and hacking. I actually made it for fun for me just to save some time, but i don’t mind publicing it.

Features

NEW FEATURE: Custom keyboard shortcuts!! Launch any tool within lscript , with your own shortcuts!!! (type ks to set your shortcuts)

Enabling-Disabling interfaces faster Changing Mac faster Anonymizing yourself faster View your public IP faster View your MAC faster

TOOLS

You can install whichever tool(s) you want from within lscript! 
Fluxion                         by Deltaxflux
WifiTe                          by derv82
Wifiphisher                     by George Chatzisofroniou
Zatacker                        by LawrenceThePentester
Morpheus                        by Pedro ubuntu  [ r00t-3xp10it ]
Osrframework                    by i3visio
Hakku                           by 4shadoww
Trity                           by Toxic-ig
Cupp                            by Muris Kurgas
Dracnmap                        by Edo -maland-
Fern Wifi Cracker               by Savio-code
Kichthemout                     by Nikolaos Kamarinakis & David Schütz
BeeLogger                       by Alisson Moretto - 4w4k3
Ghost-Phisher                   by Savio-code
Mdk3-master                     by Musket Developer
Anonsurf                        by Und3rf10w
The Eye                         by EgeBalci
Airgeddon                       by v1s1t0r1sh3r3
Xerxes                          by zanyarjamal
Ezsploit                        by rand0m1ze
Katana framework                by PowerScript
4nonimizer                      by Hackplayers
Sslstrip2                       by LeonardoNve
Dns2proxy                       by LeonardoNve
Pupy                            by n1nj4sec
Zirikatu                        by pasahitz
TheFatRat                       by Sceetsec
Angry IP Scanner                by Anton Keks
Sniper                          by 1N3
ReconDog                        by UltimateHackers
RED HAWK                        by Tuhinshubhra
Routersploit                    by Reverse shell
CHAOS                           by Tiagorlampert
Winpayloads                     by Ncc group 
Infoga                          by m4ll0k
nWatch                          by Suraj
Eternal scanner                 by Peterpt
Eaphammer                       by S0lst1c3
Dagon                           by Ekultek
LALIN                           by Screetsec
Ngrok                           by inconshreveable + more
Kwetza                          by Chris Le Roy
Bleachbit                       by Andrew Ziem
Operative framework             by Tristan Granier
Netattack2                      by Christian Klein
Findsploit                      by 1N3
Howdoi                          by Benjamin Gleitzman
Dr0p1t-Framework                by Karim Shoair
FakeImageExploiter              by r00t-3xp10it
Leviathan                       by Utku Sen, Ozge Barbaros
WiFi-Pumpkin                    by P0cL4bs
Avet                            by govolution
Meterpreter_Paranoid_Mode-SSL   by r00t-3xp10it
Koadic                          by zerosum0x0
Empire                          by Will Schroeder,
                                       Justin Warner, 
                                       Matt Nelson,
                                       Steve Borosh,
                                       Alex Rymdeko-harvey, 
                                       Chris Ross
Veil                            by ChrisTruncer
SecHub                          by JoshDelta
DKMC                            by Mr.Un1k0d3r RingZer0 Team
Demiguise                       by Richard Warren
UniByAv                         by Mr.Un1k0d3r RingZer0 Team
LFISuite                        by D35m0nd142
Faraday                         by Infobyte
MSFPC                           by g0tmi1k
NoSQLMap                        by codingo, tcsstool
Evil-Droid                      by Mascerano Bachir
Iftop                           by Paul Warren, Chris Lightfoot
MORE ARE BEING ADDED ON EVERY UPDATE

Wifi password scripts

Handshake       (WPA-WPA2)
Find WPS pin    (WPA-WPA2)
WEP hacking     (WEP)    

Others

Email spoofing
Metasploit automation (create payloads,listeners,save listeners for later etc...)
Auto eternalblue exploiting (check on ks) -> hidden shortcuts
Browser auto-expoiting with BeEF and MITMf
SQLmap automated
+more

How to install (Kali Linux)

(make sure you are a root user)

Official Installation Tutorial on Kali Linux 2020.5: https://youtu.be/xcb5uwP5nSU

Be carefull.If you download it as a .zip file, it will not run.Make sure to follow these simple instructions.

MADE FOR KALI LINUX

cd
apt-get update
git clone https://github.com/arismelachroinos/lscript.git
cd lscript
chmod +x install.sh
./install.sh

How to run it

(make sure you are a root user)

open terminal
type  "l"
press enter

(Not even “lazy”!! Just “l”! The less you type , the better!)

How to uninstall

cd /root/lscript
./uninstall.sh
rmdir -r /root/lscript 

How to update

Run the script
Type "update"

Continue Reading

Ethical Hacking/Pen Testing

Wifi Hacking with Fluxion (Need 2 Wifi Adapters with Monitor mode active)

Published

on

By

Fluxion is the future of MITM WPA attacks

Fluxion is a security auditing and social-engineering research tool. It is a remake of linset by vk496 with (hopefully) fewer bugs and more functionality. The script attempts to retrieve the WPA/WPA2 key from a target access point by means of a social engineering (phishing) attack. It’s compatible with the latest release of Kali (rolling). Fluxion’s attacks’ setup is mostly manual, but experimental auto-mode handles some of the attacks’ setup parameters. Read the FAQ before requesting issues.

If you need quick help, fluxion is also available on gitter. You can talk with us on Gitter or on Discord.

Installation

Read here before you do the following steps.
Download the latest revision

git clone git@github.com:FluxionNetwork/fluxion.git

# Or if you prefer https 

git clone https://www.github.com/FluxionNetwork/fluxion.git

Switch to tool’s directory

cd fluxion 

Run fluxion (missing dependencies will be auto-installed)

./fluxion.sh

Fluxion is also available in arch

cd bin/arch
makepkg

or using the blackarch repo

pacman -S fluxion

📜 Changelog

Fluxion gets weekly updates with new features, improvements, and bugfixes. Be sure to check out the changelog here.

:octocat: How to contribute

All contributions are welcome! Code, documentation, graphics, or even design suggestions are welcome; use GitHub to its fullest. Submit pull requests, contribute tutorials or other wiki content — whatever you have to offer, it’ll be appreciated but please follow the style guide.

📖 How it works

  • Scan for a target wireless network.

  • Launch the Handshake Snooper attack.

  • Capture a handshake (necessary for password verification).

  • Launch Captive Portal attack.

  • Spawns a rogue (fake) AP, imitating the original access point.

  • Spawns a DNS server, redirecting all requests to the attacker’s host running the captive portal.

  • Spawns a web server, serving the captive portal which prompts users for their WPA/WPA2 key.

  • Spawns a jammer, deauthenticating all clients from original AP and luring them to the rogue AP.

  • All authentication attempts at the captive portal are checked against the handshake file captured earlier.

  • The attack will automatically terminate once a correct key has been submitted.

  • The key will be logged and clients will be allowed to reconnect to the target access point.

  • For a guide to the Captive Portal attack, read the Captive Portal attack guide

 

Disclaimer

Neither the project nor its developer promote any kind of illegal activity and are not responsible for any misuse or damage caused by this project.
This project is for educational purpose only.
Please do not use this tool on other people’s devices without their permission.
Do not use this tool to harm others.
Use this project responsibly on your own devices only.
It is the end user’s responsibility to obey all applicable local, state, federal, and international laws.

Continue Reading

Ethical Hacking/Pen Testing

Beelogger for Windows: Send Keylogs to Gmail

Published

on

By

Cloning:
git clone https://github.com/4w4k3/BeeLogger.git
Running:
cd BeeLogger
sudo su
chmod +x install.sh
./install.sh
python bee.py
If you have another version of Python:

python2.7 bee.py
DISCLAIMER:
“DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.” Taken from LICENSE.

Continue Reading

Trending