Jump to content

Sn1per - All In One Offensive Security Framework

cwade12c

By cwade12c,
in Penetration Testing

 Share

Recommended Posts

cwade12c HaxMe Enthusiast

cwade12c

Posted
Posted

XeroSecurity

Sn1per is an opensource AIO offensive security framework that includes features such as:

  • Attack Surface Discovery
  • Penetration Testing
  • Visual Recon
  • IT Asset Inventory
  • Vulnerability Management
  • Web Application Scans
  • Reporting
  • OSINT Collection
  • Continuous Scan Coverage
  • Domain Takeover Tools

There are also many help topics and integration guides listed directly in the README.

Link to repository: https://github.com/1N3/Sn1per

  • I Like This! 1
Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing

  • Similar Content

    • killab
      Geogramint is an OSINT tool that uses Telegram's API to find nearby users and groups.
      By killab
      https://github.com/Alb-310/Geogramint
       
      git clone https://github.com/Alb-310/Geogramint.git
      Geogramint is an OSINT tool that uses Telegram's API to find nearby users and groups. Inspired by Tejado's Telegram Nearby Map, which is no longer maintained, it aims to provide a more user-friendly alternative.
      Geogramint only finds Telegram users and groups which have activated the nearby feature. Per default it is deactivated.
      The tool is fully supported on Windows and partially supported on Mac OS and Linux distributions.

       
      On Windows 
      With the installer: Click here!
      With Github:
      git clone https://github.com/Alb-310/Geogramint.git cd Geogramint/ pip3 install -r requirements.txt python3 geogramint.py Or depending on your installation :
      git clone https://github.com/Alb-310/Geogramint.git cd Geogramint/ pip install -r requirements.txt python geogramint.py On Mac OS  and Linux 
      With Github:
      git clone https://github.com/Alb-310/Geogramint.git cd Geogramint/ pip3 install -r requirements.txt python3 geogramint.py Or depending on your installation :
      git clone https://github.com/Alb-310/Geogramint.git cd Geogramint/ pip install -r requirements.txt python geogramint.py More details in the Wiki.
      📡 Example
      Start by creating an API key for your Telegram account here. You will also need to put a profile picture on your account and, in your Privacy and Security settings, enable the profile picture for everyone.
      Launch Geogramint In the settings, write your information (api_id, api_hash and phone number) and then save  
      Choose the location where you want to search, either by moving around the map or by using the search feature with coordinates in lat, lon format
      Telegram will send you a verification code, write it in the pop-up window (+ your two-step verification password if you have one)
      Then click Start Search All results will be displayed following: green for 500m yellow for 1000m orange for 2000m red for >3000m (NB: results can also be found in Geogramint/cache_telegram/ in json format + profiles pictures)

      Reset will clear the results and erase the cache_telegram More details in the Wiki.
    • cwade12c
      People Searching with Public Registries
      By cwade12c
      A lot of people use "people" search engines and Google dorks to find people or information about people, but you can actually find out quite a bit of information via public registries. Consider some of these:
      The Knot - Wedding Registry Search RegistryFinder - Baby Shows and Graduation Search MyRegistry - Wedding, Baby, and Gift List Search Amazon - Registries for Any Occasion Search Bed, Bath, and Beyond - Gift Registry Search The Bump - Baby Registry Search You can also find out PII of anyone in the United States who is registered to vote, by looking at local election registries. Does anyone know other registries to include?
    • cwade12c
      urlcrazy - Domain Typo Generator
      By cwade12c
      URLCrazy is a domain typo generator that looks useful for testing domain typos and variations, which can have a ton of uses: typo squatting, URL hijacking, phishing, etc. Other use cases might include detecting who is using variations of your domain name (to inform your users), which can help protect your brand and inform your users.

      Link to the repository: https://github.com/urbanadventurer/urlcrazy
    • cwade12c
      Shodan - IoT Recon Toolkit
      By cwade12c
      Shodan is an Internet of Things search engine that allows you to search and scan a wide variety of devices using a wide array of filters. Some will limit their information gathering to things that they see on the web. You can go beyond this, and Shodan is a tool to help with that: phones, controllers, refrigerators, etc. Shodan has powerful dashboards, community curated filters, and a powerful API to let you plug right into their platform.
      Here is a HackerSploit video covering some of the basics of Shodan:
       
      And if you want to check out the engine for yourself...well, here you go!
      Link to website: https://www.shodan.io/
    • cwade12c
      Recon-ng: Web-Based Reconnaissance Framework
      By cwade12c
      The Recon-ng Framework provides a web-based environment to conduct reconnaissance quickly and easily. It is written in python and has a look similar to Metasploit, is modular, and has a development guide for building new modules. Here is an included video introduction to help you learn more about and get started with Recon-ng:
       
      Link to the repository: https://github.com/lanmaster53/recon-ng
×
×
  • Create New...