jshunter is a command-line tool designed for analyzing JavaScript files and extracting endpoints. This tool specializes in identifying sensitive data, such as API endpoints and potential security vulnerabilities, making it an essential resource for and bug bounty hunters and security researchers.
☆526May 16, 2026Updated last month
Alternatives and similar repositories for JShunter
Users that are interested in JShunter are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ex-param is an automated tool designed for finding reflected parameters for XSS vulnerabilities. It crawls a target website, extracts GET…☆61Feb 22, 2025Updated last year
- A high-performance Go-based tool for checking the availability and responsiveness of domains, utilizing both HTTP requests and browser au…☆93Nov 26, 2024Updated last year
- Zzl is a reconnaissance tool that collects subdomains from SSL certificates in IP ranges☆43Oct 27, 2024Updated last year
- best tool for finding SQLi,CRLF,XSS,LFi,OpenRedirect☆1,587Dec 7, 2025Updated 6 months ago
- A passive way to find backups/ sensitive information.☆92Jul 10, 2025Updated 11 months ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- SubOwner - A Simple tool check for subdomain takeovers.☆118Oct 18, 2024Updated last year
- ParamScan is a chrome extension for finding reflected parameters in a webpage.☆92Jan 11, 2025Updated last year
- Javascript security analysis (JSA) is a program for javascript analysis during web application security assessment.☆565Mar 8, 2025Updated last year
- A high-speed tool for passively gathering URLs, optimized for efficient and comprehensive web asset discovery without active scanning.☆884Jun 23, 2026Updated last week
- Robofinder fetches historical robots.txt files from Archive.org to uncover old directories, hidden paths, and valuable OSINT data for rec…☆264Jun 13, 2026Updated 3 weeks ago
- An IIS short filename enumeration tool☆1,197Nov 25, 2024Updated last year
- Automation tool to testing and confirm the xss vulnerability.☆306Jul 18, 2025Updated 11 months ago
- Header Exploitation HTTP☆757May 28, 2026Updated last month
- High-Performance JavaScript Security Scanner - Process 1M URLs in ~5 hours with Telegram & Discord bot integration, Docker support, and c…☆174Oct 18, 2025Updated 8 months ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Automate Recon XSS Bug Bounty☆187Mar 9, 2026Updated 3 months ago
- All-in Fuzzer. Burp suite extension for auto fuzzing params, headers, body☆36Apr 9, 2026Updated 2 months ago
- Advanced Time-based Blind SQL Injection fuzzer for HTTP Headers☆313Mar 31, 2024Updated 2 years ago
- NucleiFuzzer is a robust automation tool that efficiently detects web application vulnerabilities, including XSS, SQLi, SSRF, and Open Re…☆1,852Apr 17, 2026Updated 2 months ago
- A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.☆855May 13, 2026Updated last month
- This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter☆3,578Feb 10, 2024Updated 2 years ago
- ☆39Dec 14, 2024Updated last year
- A rapid HTTP downgrade smuggling scanner written in Go.☆313May 16, 2024Updated 2 years ago
- ☆92Mar 17, 2025Updated last year
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- Url scrapper or extractor from alienvault☆39Mar 1, 2025Updated last year
- An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flaws☆4,037Oct 4, 2025Updated 9 months ago
- Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan, VirusTotal, GhostArchive & Intelligence X!☆2,680Jun 11, 2026Updated 3 weeks ago
- ☆429Jun 20, 2026Updated 2 weeks ago
- Automatic SSTI detection tool with interactive interface☆1,561Apr 25, 2026Updated 2 months ago
- AI-powered ffuf wrapper☆787Dec 4, 2025Updated 7 months ago
- This tools used for Automating finding of subdomain, and checking for alive subdomain, and gathering js files from all the subdomain and …☆23Jun 28, 2024Updated 2 years ago
- ☆13Oct 24, 2024Updated last year
- declutters url lists for crawling/pentesting☆1,567Feb 23, 2025Updated last year
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- ☆523Aug 21, 2025Updated 10 months ago
- i will upload more templates here to share with the comunity.☆571Apr 17, 2024Updated 2 years ago
- ☆189Mar 14, 2026Updated 3 months ago
- Burp Plugin to Bypass WAFs through the insertion of Junk Data☆1,489Jul 14, 2025Updated 11 months ago
- The Distributed Scanning Framework for Everybody! Control Your Infrastructure, Scale Your Scanning-On Your Terms. Easily distribute arbit…☆772Dec 26, 2025Updated 6 months ago
- how to look for Leaked Credentials !☆1,049May 6, 2024Updated 2 years ago
- IDOR Forge is an advanced and versatile tool designed to detect Insecure Direct Object Reference (IDOR) vulnerabilities in web applicatio…☆233Sep 25, 2025Updated 9 months ago