GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → 0xTeles → jsleak

0xTeles / jsleak

Licence: MIT License
a Go code to detect leaks in JS files via regex patterns

Programming Languages

go
31211 projects - #10 most used programming language

Labels

securityscannerbugbounty

Projects that are alternatives of or similar to jsleak

Webhackersweapons
⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting
Stars: ✭ 1,205 (+985.59%)
Mutual labels:  scanner, bugbounty
Resources
No description or website provided.
Stars: ✭ 38 (-65.77%)
Mutual labels:  scanner, bugbounty
Corsme
Cross Origin Resource Sharing MisConfiguration Scanner
Stars: ✭ 118 (+6.31%)
Mutual labels:  scanner, bugbounty
Blackwidow
A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.
Stars: ✭ 887 (+699.1%)
Mutual labels:  scanner, bugbounty
Jira-Lens
Fast and customizable vulnerability scanner For JIRA written in Python
Stars: ✭ 185 (+66.67%)
Mutual labels:  scanner, bugbounty
Reconftw
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
Stars: ✭ 974 (+777.48%)
Mutual labels:  scanner, bugbounty
Mobilehackersweapons
Mobile Hacker's Weapons / A collection of cool tools used by Mobile hackers. Happy hacking , Happy bug-hunting
Stars: ✭ 170 (+53.15%)
Mutual labels:  scanner, bugbounty
Dirsearch
Web path scanner
Stars: ✭ 7,246 (+6427.93%)
Mutual labels:  scanner, bugbounty
tugarecon
Pentest: Subdomains enumeration tool for penetration testers.
Stars: ✭ 142 (+27.93%)
Mutual labels:  scanner, bugbounty
Sudomy
Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting
Stars: ✭ 1,572 (+1316.22%)
Mutual labels:  scanner, bugbounty
Sudomy
Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting
Stars: ✭ 859 (+673.87%)
Mutual labels:  scanner, bugbounty
request smuggler
Http request smuggling vulnerability scanner
Stars: ✭ 203 (+82.88%)
Mutual labels:  scanner, bugbounty
Dalfox
🌘🦊 DalFox(Finder Of XSS) / Parameter Analysis and XSS Scanning tool based on golang
Stars: ✭ 791 (+612.61%)
Mutual labels:  scanner, bugbounty
Jaeles
The Swiss Army knife for automated Web Application Testing
Stars: ✭ 1,073 (+866.67%)
Mutual labels:  scanner, bugbounty
Vhostscan
A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.
Stars: ✭ 767 (+590.99%)
Mutual labels:  scanner, bugbounty
Nosqlmap
Automated NoSQL database enumeration and web application exploitation tool.
Stars: ✭ 1,928 (+1636.94%)
Mutual labels:  scanner, bugbounty
Security Tools
Collection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.
Stars: ✭ 509 (+358.56%)
Mutual labels:  scanner, bugbounty
Xspear
Powerfull XSS Scanning and Parameter analysis tool&gem
Stars: ✭ 583 (+425.23%)
Mutual labels:  scanner, bugbounty
Rengine
reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…
Stars: ✭ 3,439 (+2998.2%)
Mutual labels:  scanner, bugbounty
magicRecon
MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way in directories and with various formats.
Stars: ✭ 478 (+330.63%)
Mutual labels:  scanner, bugbounty
View All Similar Projects ➔

jsleak

jsleak is a tool to identify sensitive data in JS files through regex patterns. Although it's built for this, you can use it to identify anything as long as you have a regex pattern for it.

How to install

Directly:

{your package manager} install pkg-config libpcre++-dev
go get github.com/0xTeles/jsleak/v2/jsleak

Compiled: release page

How to use

-json string
        [+] Json output file
-pattern string
        [+] File contains patterns to test
-timeout int
        [+] Timeout for request in seconds (default 5)
-verbose
        [+] Verbose Mode

Demo

cat urls.txt | jsleak -pattern regex.txt
[+] Url: http://localhost/index.js
[+] Pattern: p([a-z]+)ch
[+] Match: peach

Regex list

Inspired by

Thanks

@fepame, @gustavorobertux, @Jhounx, @arthurair_es, @le0nard01

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].