Command Execution Add-on v2.0 Documentation

The Command Execution Add-on v2.0 lets you easily manage your Sn1per Professional v9.0 instance from a web interface without ever touching the command line.

System Requirements: This add-on requires Sn1per Professional v9.0 or greater and Sn1per Community Edition v8.9 or greater. Please click here for additional system requirements.

Help Topics

  • Installation
  • Single Target Scan
  • Multi-Target Scan
  • Subnet Scan
  • Custom Target Scan
  • Mass URL Scan
  • Importing URL’s

 

Installation

To install this addon, copy the command-execution-addon-v2.0.tar.gz package to your /usr/share/sniper/pro/addons/ folder and run the following commands as ‘root’:

tar -zxvf command-execution-addon-v2.0.tar.gz
/usr/share/sniper/pro/addons/

After, reload the Sn1per web interface (ie. https://127.0.0.1:1337) to display the new module(s).

Single Target Scan

To scan a single target from scratch (ie. no existing workspace created yet), do the following:

  1. From the Workspace Navigator, click the ‘Quick Commands‘ menu
  2. Enter the target domain/IP/hostname in the “Target” input field
  3. Select a scan mode to use for the scan from the “Mode” drop down selection
  4. Select a configuration template to use from the “Config” drop down selection
  5. Enter a port or port range (ie. 1-65535, 135, 137-139) in the “Port” input field or leave blank to use the default options specified in the “Config” settings
  6. Select a recurring scan schedule (ie. Daily, Weekly or Monthly) from the “Schedule drop down selection or leave blank to disable scan scheduling
  7. Select any optional auxiliary mode check boxes (ie. Full Port Scan, Brute Force, OSINT, Recon, etc.) to enable them for the scan
  8. Enter a ‘Workspace‘ name to save all scan data
  9. Click the ‘Scan‘ button to start the scan

To scan a single target from from an existing workspace, do the following:

  1. From the Workspace Navigator, click the existing workspace from the “Workspace Navigator
  2. From the Workspace Report, click the “Quick Commands” panel
  3. Enter the target domain/IP/hostname in the “Target” input field
  4. Select a scan mode to use for the scan from the “Mode” drop down selection
  5. Select a configuration template to use from the “Config” drop down selection
  6. Enter a port or port range (ie. 1-65535, 135, 137-139) in the “Port” input field or leave blank to use the default options specified in the “Config” settings
  7. Select a recurring scan schedule (ie. Daily, Weekly or Monthly) from the “Schedule drop down selection or leave blank to disable scan scheduling
  8. Select any optional auxiliary mode check boxes (ie. Full Port Scan, Brute Force, OSINT, Recon, etc.) to enable them for the scan
  9. Enter a ‘Workspace‘ name to save all scan data
  10. Click the ‘Scan‘ button to start the scan

Multi-Target Scan

To scan a single target from from an existing workspace, do the following:

  1. From the Workspace Navigator, click the existing workspace from the “Workspace Navigator
  2. From the Workspace Report, click the “Quick Commands” panel
  3. Select a pre-sorted list of targets (ie. Custom Targets, All Domains, All Targets, All IPs, Live Hosts, Web Hosts, All Unscanned) “Filename” drop down selection
  4. Select a configuration template to use from the “Config” drop down selection
  5. Select the number of simultaneous tasks from the ‘Tasks‘ input box
  6. Select a recurring scan schedule (ie. Daily, Weekly or Monthly) from the “Schedule drop down selection or leave blank to disable scan scheduling
  7. Enter a ‘Workspace‘ name to save all scan data
  8. Click the ‘Scan‘ button to start the scan

Subnet Scan

To scan a subnet range (ie. 10.0.0.0/24) from from an existing workspace, do the following:

  1. From the Workspace Navigator or Workspace Report, click the “Quick Commands” panel
  2. In the “Target” input box, enter the subnet you wish to scan (ie. 10.0.0.0/24)
  3. Select a recurring scan schedule (ie. Daily, Weekly or Monthly) from the “Schedule drop down selection or leave blank to disable scan scheduling
  4. Enter a ‘Workspace‘ name to save all scan data
  5. Click the ‘Scan‘ button to start the scan

NOTE: Any subnet range entered into the “Target” input box will cause Sn1per to automatically use “discover” mode to scan the initial subnet range.

Custom Target Scan

To enter a list of custom targets (ie. subnets, domains, URL’s, etc.), do the following:

  1. From the Workspace Navigator, click the ‘Quick Commands‘ menu
  2. Enter a line delimited list of targets (can be domains, IP’s, subnets or URL’s starting with http:// or https://, etc.) in the “Target List” text area
  3. Select the number of simultaneous tasks from the ‘Tasks‘ input box
  4. Select the ‘Config‘ template to use for the scan
  5. Enter a ‘Workspace‘ name to save all scan data
  6. Click the ‘Scan‘ button to start the scan

To scan a custom set of targets in an existing workspace, do the following:

  1. Click on the desired workspace from the Workspace Navigator
  2. From the “Files” menu, select “Custom Targets”
  3. Enter the desired targets and click “Save” to save them

  1. Click on the “Quick Commands” menu
  2. Select “Custom Targets” under the “Multi-Target” scan mode
  3. Click the “Scan” button to start the scan

Mass URL Scan Mode

To scan for a specific URL across your entire workspace, do the following:

  1. Click on the desired workspace from the Workspace Navigator
  2. Scroll down to the ‘Quick Commands’ section
  3. Select the ‘Live Web Hosts’ option from the Multi-Target Scan ‘Filename’ menu
  4. Select ‘Mass URL Scan’ option from the ‘Mode’ menu
  5. Enter the desired URI into the ‘Request’ input box (ie. /robots.txt)
  6. Click the ‘Scan’ button

This will show the HTTP response codes, redirects, response size and title for all requests making it easy to find the content you want across a large number of hosts.

Importing URL’s

With Sn1per Professional v9.0, you can easily import all discovered URL’s directly into a 3rd party proxy such as OWASP Zap or Burpsuite.

By default, Sn1per Professional will use http://127.0.0.1:8080 as the default proxy server address. To change this, you can change the $BURP_HOST variable in your /sniper/pro/settings.php file.

To import ALL url’s discovered into an external proxy, change the “Mode” drop down menu to “Import URLs” and click the “Scan” button from the Workspace Report.

This will import all discovered URL’s into your proxy for further analysis (ie. HTTP status codes, length, sitemaps, passive security findings, etc.).

To import only host specific URL’s into an external proxy server, click on any host from the Workspace Report and change the “Mode” to “Import URLs” and click the “Scan” button.

 

Back to Main Documentation