bingtangbanli/jsfinderPro

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/bingtangbanli/jsfinderPro)

bingtangbanli / jsfinderPro

js文件敏感信息内容提取

☆28

Alternatives and similar repositories for jsfinderPro

Users that are interested in jsfinderPro are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

M1k0er / SSRF-SCAN
View on GitHub
一款被动扫描ssrf的burpsuite插件
☆20Dec 30, 2022Updated 3 years ago
XF-FS / APIKit
View on GitHub
APIKit 是Burp Suite 的一个API接口扫描插件，该版本APIKit是对API-Security项目的APIKit1.0进行的二开，增加了扫描开关，避免直接打开burp乱扫被抓起来
☆100Dec 19, 2025Updated 5 months ago
GrassWorkshop / wxapkg_infosearch
View on GitHub
一款微信小程序源码包信息收集工具，根据已有项目改编
☆24Feb 11, 2025Updated last year
ifacker / WIHscan
View on GitHub
ARL 灯塔的 WIH 利用
☆32Jul 2, 2024Updated last year
darkfiv / QaFuzz
View on GitHub
☆45Jun 28, 2025Updated 10 months ago
Deploy on Railway without the complexity - Free Credits Offer • Ad
Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
N-Next / URLFinder-x
View on GitHub
优化后的URLFinder，可以通过自定义的正则表达式，对页面中的各类敏感信息提取
☆153Jan 20, 2025Updated last year
hy0jer / HostScan
View on GitHub
一款支持检测host头攻击的burp suite插件
☆53Feb 21, 2024Updated 2 years ago
h00klod0er / JSFindAPI
View on GitHub
JSFindAPI是一款自动从html页面中获取js链接，并自动访问js提取js中的api路径，然后自动进行api未授权测试的插件，同时也可被动监听，当访问js时自动提取api进行访问，提取api接口主要根据AJAX，XMLHttpRequest，axios，Vue.js等…
☆34Oct 20, 2025Updated 7 months ago
youmulijiang / pdf-js-inject
View on GitHub
pdf-js-inject，能够将js代码注入到pdf文件中,也可以注入xss-payload到pdf文件中
☆31Sep 8, 2024Updated last year
xhmcc / ehole_finger
View on GitHub
ehole超大指纹
☆33Jul 25, 2025Updated 10 months ago
bingtangbanli / VulnerabilityTools
View on GitHub
[CVE_2023_28432漏洞、CVE_2023_32315漏洞、 ThinkPHP 2.x 任意代码执行漏洞、ThinkPHP5 5.0.22/5.1.29 远程代码执行漏洞、 ThinkPHP5 5.0.23 远程代码执行漏洞 ThinkPHP 多语言本地文件包…
☆10Aug 31, 2023Updated 2 years ago
kk12-30 / vue_scan
View on GitHub
Vue框架未授权接口扫描工具
☆75May 28, 2025Updated 11 months ago
Bains-sec / BowserSecCheckingTool
View on GitHub
浏览器数据清除脚本，可以检查浏览器中有没有存储特定网址的密码，然后实行数据的清除，主要是用于攻防演练中蓝队防止钓鱼获取浏览器密码。
☆18Jul 8, 2024Updated last year
InsBug / ARLtoAWVS
View on GitHub
ARL与AWVS联动，实现自动化扫描并推送结果
☆20Jul 11, 2024Updated last year
Deploy on Railway without the complexity - Free Credits Offer • Ad
Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
Rabb1tQ / SubDomainHunter
View on GitHub
子域名收集工具
☆18Mar 26, 2025Updated last year
cws001 / swagger-exp-knife4j
View on GitHub
一款基于Knife4j 的 Swagger 接口自动化测试未授权工具
☆128Apr 29, 2024Updated 2 years ago
xss-root / Goby-red
View on GitHub
Goby红队版， Goby社区版poc插件收集-持续更新
☆21Aug 29, 2023Updated 2 years ago
laohuan12138 / js_info_finder
View on GitHub
一个js文件敏感信息搜集脚本，支持输入url和js文件，也支持批量敏感信息匹配。
☆77Feb 14, 2023Updated 3 years ago
winezer0 / APIFinderPlus
View on GitHub
目标是成为当下最完善的API挖掘工具，实现自动提取响应敏感信息、URI信息，并且对URI进行自动|手动递归检查
☆258Aug 16, 2025Updated 9 months ago
Maikefee / Windows-Persistence-Tool
View on GitHub
这个工具实现了您提到的所有Windows权限维持技术，包括IFEO镜像劫持、启动项后门、WMI无文件后门、进程注入、DLL劫持、影子用户等。代码结构清晰，文档完整，适合用于安全研究和教育目的。
☆50Aug 19, 2025Updated 9 months ago
youki992 / CodeStringSearcher
View on GitHub
基于Java开发的代码字符串搜索工具，用于辅助快速代码审计，筛选危险方法名称搜索代码中可能存在的漏洞
☆38Mar 7, 2026Updated 2 months ago
huntandhackett / sysmon-indepth
View on GitHub
Understanding the operation and limitations of Sysmon's events
☆24Sep 15, 2022Updated 3 years ago
kk12-30 / JSSS-Find
View on GitHub
让JavaScript资产分析变得简单而强大
☆188Apr 15, 2026Updated last month
Managed hosting for WordPress and PHP on Cloudways • Ad
Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
MAOGE555 / shuidi
View on GitHub
水滴工具箱，集合各种渗透工具。端口扫描器，漏扫，抓包，内存马，内网穿透，c2，免杀等等
☆112Apr 18, 2026Updated last month
webraybtl / StudyCodeQLpy
View on GitHub
☆19Jul 6, 2023Updated 2 years ago
mrknow001 / Crawlergo_x_Rad_x_XRAY
View on GitHub
rad加crawlergo爬虫，查漏补缺
☆117Jun 21, 2021Updated 4 years ago
lemonlove7 / EHole_magic
View on GitHub
EHole(棱洞)魔改。可对路径进行指纹识别；支持识别出来的重点资产进行漏洞检测(支持从hunter和fofa中提取资产)支持对ftp服务识别及爆破
☆963Mar 6, 2024Updated 2 years ago
7estUser / HunterX
View on GitHub
☆11Jun 21, 2025Updated 11 months ago
P001water / fs
View on GitHub
P001water二开的fscan
☆289Sep 28, 2024Updated last year
newcodor / coremail_address_list_export
View on GitHub
coremail address list export
☆12Sep 9, 2021Updated 4 years ago
Ernket / shepherd
View on GitHub
将fofa quake zoomeye hunter等空间测绘聚合的小工具
☆23Aug 13, 2023Updated 2 years ago
Soufaker / docker_v2_catalog
View on GitHub
Registry API 未授权访问漏洞利用
☆29May 17, 2023Updated 3 years ago
Managed Kubernetes at scale on DigitalOcean • Ad
DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
pureqh / Hyacinth
View on GitHub
一款java漏洞集合工具
☆1,123Jan 13, 2026Updated 4 months ago
zangcc / Aakian-FaCai
View on GitHub
基于前端vue框架的JavaFx图形化GUI漏洞扫描工具，支持一键扫描vue-manage-system系统前端泄露的未授权目录接口漏洞，并且对扫描的暴露目录进行逐一测试和验证，方便渗透人员快速确定未授权接口。还添加了出口IP地址信息本地DNS信息等的查询，方便清楚自身出口…
☆283Aug 11, 2023Updated 2 years ago
TheKingOfDuck / RCEFuzzer
View on GitHub
一个以fuzz为中心思想的被动扫描工具
☆160Dec 26, 2023Updated 2 years ago
ShelShifu / FuzzingJSPath
View on GitHub
递归寻找JS泄露的路径。Recursively search for the paths of JS Files.For pentest
☆11Sep 30, 2024Updated last year
smxiazi / host_scan
View on GitHub
多线程 host碰撞
☆73Jan 22, 2024Updated 2 years ago
tangxiaofeng7 / smartscan
View on GitHub
burpsuite插件-被动无感识别指纹-主动poc扫描
☆29Sep 13, 2024Updated last year
kN6jq / gatherBurp
View on GitHub
一款强大的 burp 安全测试插件，集成多种安全测试功能，支持自动化扫描和手动测试。
☆675Mar 20, 2026Updated 2 months ago