JS_Scanner - "Scanner hidden secrets and urls in JavaScript!"

This script is an advanced security tool crafted for the modern digital warrior. With the power to unearth hidden URLs and sensitive information from JavaScript files, it empowers security enthusiasts, BugHunters, and developers to stay one step ahead in the quest for a safer web. Equip yourself with this script and turn every line of code into a treasure map of vulnerabilities waiting to be discovered!.

Installation JS_Scanner :

To install JS_Scanner, run the following commands:

git clone https://github.com/fa-rrel/JS-Scanner.git
cd JS-Scanner
pip3 install -r requirements.txt

Usage JS_Extract

Mass JS Link Scanner [JS_Extract] is a simple tool made to scan .js file links from a list of URLs automatically. Just provide a .txt file containing a list of target URLs, and the tool will collect all .js file links found on each page!

Usage JS_Scanner :

Find urls with single target : If you just want to find .js files from a specific URL, you can use curl and grep like this,

curl -s http://testphp.vulnweb.com | grep "\.js"

To run JS-Scanner, use the following command :

python3 JS_scanner.py -u http://testphp.vulnweb.com/urls.js --secrets --urls

Mass scanning with .txt file :

python3 JS_scanner.py [filejs.txt] --secret --urls

Command-Line Options:

• -u or --url: Specify a single JavaScript URL to fetch.
• --secrets: Look for sensitive information in the JavaScript content.
• --urls: Extract URLs from the JavaScript content.
• -o or --output_file: Specify the file to save extracted links (default: extracted_links.txt).

Cooming soon Extension :

Example video

Credits:

Iamunixtz

Inspired by various open-source projects!