Sn1per SE v10.4 Update

Sn1per Scan Engine v10.4 Released!

Sn1per SE (Scan Engine) v10.4 is now available with a ton of new features and improvements. This update is part of the Sn1per SE development branch which is available to Sn1per Professional v10.0 and Sn1per Enterprise customers. If you are a previous customer (ie. Sn1per Professional v9.0 or less) or if you use the Community Edition available on Github, you will need to purchase a Sn1per Professional v10.0 license to download and receive updates.

New Vulnerability Templates

* v10.4 – Added HudsonRock compromised credentials and URL template (head over to for full API access)
* v10.4 – Added CVE-2023-23752 Joomla Improper AccessCheck in WebService Endpoint template
* v10.4 – Added official Nuclei fuzzing-templates repo to active web fuzzer
* v10.4 – Added InjectX fuzzer template to parse all vulnerabilities


Sn1per Dark Web Compromised Credentials Detection

New Features

* v10.4 – Added per host config to allow multi-threaded scans to maintain unique configs
* v10.4 – Added total elapsed time to notifications for all scans
* v10.4 – Added automatic Nuclei network scans if non-web ports are opened
* v10.4 – Added scan logic to only scan port 443 using stealth mode if WAF is detected to avoid getting blocked
* v10.4 – Added running config to scan task viewer for all targets to view which conf was selected
* v10.4 – Added HudsonRock API integration for compromised credentials check (head over to for full API access)
* v10.4 – Added wildcard domain check to cancel recon scans if wildcard is detected
* v10.4 – Added new setting DOMAINS_MAX to set the maximum number of sub-domains to scan
* v10.4 – Added new setting VALIDATE_URLS_MAX to validate all discovered URLs
* v10.4 – Updated Docker build template


Sn1per Scan Notifications

New Tools

* v10.4 – Added updated InjectX fuzzer tool
* v10.4 – Added updated impacket tools (ie. samrdump, etc.)

Sn1per OWASP Top 10 Fuzzer


* v10.4 – Removed h8mail tool
* v10.4 – Remove Inurlbr tool
* v10.4 – Removed Slurp tool
* v10.4 – Removed AMap tool from conf
* v10.4 – Fixed bad Subover providers list link

Update Instructions

To update to Sn1per v10.4, customers can run the ‘sniper -u‘ command from the command line or use the ‘Update‘ function from the Command Execution module.

Leave a Reply