JSFScan.sh
Blog can be found at https://medium.com/@patelkathan22/beginners-guide-on-how-you-can-use-javascript-in-bugbounty-492f6eb1f9ea?sk=21500dc4288281c7e6ed2315943269e7
Script made for all your javascript recon automation in bugbounty. Just pass subdomain list to it and options according to your preference.
Features
1 - Gather Jsfile Links from different sources.
2 - Extract Endpoints from Jsfiles
3 - Find Secrets from Jsfiles
4 - Get Jsfiles store locally for manual analysis
5 - Make a Wordlist from Jsfiles
6 - Extract Variable names from jsfiles for possible XSS.
7 - Scan JsFiles For DomXSS.
Installation
Note: Make sure you have installed golang properly before running installation script.
$ sudo chmod +x install.sh
$ ./install.sh
Usage
Target List should be with https:// and http:// use httpx or httprobe for this.
https://hackerone.com
https://github.com
And if you want to add cookie then edit the command at line 23 cat $target | hakrawler -js -cookie "cookie here" -depth 2 -scope subs -plain >> jsfile_links.txt
NOTE: If you feel tool is slow just comment out hakrawler line at 23 in JSFScan.sh script , but it might result in little less jsfileslinks.
_______ ______ _______ ______ _
(_______/ _____(_______/ _____) | |
_ ( (____ _____ ( (____ ____ _____ ____ ___| |__
_ | | \____ \| ___) \____ \ / ___(____ | _ \ /___| _ \
| |_| | _____) | | _____) ( (___/ ___ | | | |_|___ | | | |
\___/ (______/|_| (______/ \____\_____|_| |_(_(___/|_| |_|
Usage:
-l Gather Js Files Links
-e Gather Endpoints For JSFiles
-s Find Secrets For JSFiles
-m Fetch JsFiles for manual testing Files will be Store in directory /jsfiles
-w Make a wordlist using words from jsfiles
-v Extract Vairables from the jsfiles
-o Make an Output Directory to put all things Together
-d Scan JsFiles For Possible DomXSS
Thank You For Trying!
Your Contribution and Suggestions are welcomed.
If the project helped you if any case you can buy a coffee for me ;)
