swisskyrepo
/
jsleak
mirror of https://github.com/swisskyrepo/jsleak.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
Upgrading jsleak with a CI/CD and new rules
15 Commits
1 Branch
0 Tags
7.9 MiB
Go 99.3%
Python 0.7%
 
 
Go to file
Chan Nyein Wai a87237eef6
Delete test 		2023-03-29 21:19:32 +07:00
images Delete test 2023-03-29 21:19:32 +07:00
README.md Update README.md 2023-03-29 21:12:25 +07:00
main.go Create main.go 2023-03-29 21:14:09 +07:00

README.md

Description

I was developing jsleak during most of my free time for my own need.It is easy-to-use command-line tool designed to uncover secrets and links in JavaScript files or source code. The jsleak was inspired by Linkfinder and regexes are collected from multiple sources.

Features:

  • Discover secrets in JS files such as API keys, tokens, and passwords.
  • Identify links in the source code.
  • Complete Url Function
  • Concurrent processing for scanning of multiple Urls
  • Check status code if the url is alive or not

Instllation

go install github.com/channyein1337/jsleak/@latest

Usage

To display help message

jsleak -h

Secret Finder

echo http://testphp.vulnweb.com/ | jsleak -s

Link Finder

echo http://testphp.vulnweb.com/ | jsleak -l

Complete Url

echo http://testphp.vulnweb.com/ | jsleak -e

Check Status

echo http://testphp.vulnweb.com/ | jsleak -c 20 -k

You can also use multiple flags

echo http://testphp.vulnweb.com/ | jsleak -c 20 -l -s

Running with Urls

cat urls.txt | jsleak -l -s -c 30

To Do

  • Support scanning local files.
  • Support scanning apk files.
  • Update Regex.
  • Support mulitple user agents.