This python based tool can be used to discover API keys, access tokens, and other sensitive data in JavaScript files. It can scan JavaScript files in a specified folder, analyze the content using various regex patterns, and output the results either in a CLI format or as an HTML report with highlighted matches.
☆14Oct 18, 2024Updated last year
Alternatives and similar repositories for JSSecret-Extractor
Users that are interested in JSSecret-Extractor are comparing it to the libraries listed below
Sorting:
- [CVE-2024-4956] Nexus Repository Manager 3 Unauthenticated Path Traversal Bulk Scanner☆17Sep 26, 2024Updated last year
- JScripter is a Python script designed to scrape and save unique JavaScript files from a list of URLs or a single URL.☆29Nov 26, 2024Updated last year
- Dig through the Wayback Machine and find sensitive or forgotten files exposed by web servers over time.☆27Mar 27, 2025Updated 11 months ago
- Javascript file change monitoring☆17Nov 11, 2025Updated 3 months ago
- this nuclei template finds back up files☆22Aug 25, 2025Updated 6 months ago
- Springboot detection☆23Nov 8, 2021Updated 4 years ago
- Scanner for Log4j RCE CVE-2021-44228☆11Jul 6, 2022Updated 3 years ago
- my nuclei templates #new☆11Jun 24, 2024Updated last year
- ☆47Sep 20, 2024Updated last year
- Hand-made Improved Nuclei Templates!🪴☆13Jun 12, 2023Updated 2 years ago
- Grab form parameters easily☆14Dec 11, 2024Updated last year
- Widget Options – The #1 WordPress Widget & Block Control Plugin <= 4.0.7 - Authenticated (Contributor+) Remote Code Execution☆13Dec 2, 2024Updated last year
- OpenRedirector is a powerful automation tool for detecting Open Redirect vulnerabilities in web applications☆17Oct 30, 2025Updated 4 months ago
- Get 10k subdomains in securitytrails using cookie without apikey.☆36Oct 23, 2025Updated 4 months ago
- CVE-2023-6063 (WP Fastest Cache < 1.2.2 - UnAuth SQL Injection)☆29Nov 15, 2023Updated 2 years ago
- ☆31Jul 26, 2023Updated 2 years ago
- Crawlex is a powerful Chrome extension designed to assist bug bounty hunters in their work by enabling easy crawling of all possible URLs…☆12May 28, 2023Updated 2 years ago
- List of Directory Traversal/LFI Payloads Scraped from the Internet☆183Feb 10, 2025Updated last year
- POC - CVE-2024–4956 - Nexus Repository Manager 3 Unauthenticated Path Traversal☆16Nov 26, 2024Updated last year
- GUI Exploit Tool for CVE-2020-0688(Microsoft Exchange default MachineKeySection deserialize vulnerability)☆16May 9, 2024Updated last year
- This repo collects nuclei template from 600+ github repos, updates every 6 hours.☆36Feb 17, 2026Updated 2 weeks ago
- ☆15May 8, 2025Updated 9 months ago
- Template Nuclei SSTI☆34Nov 18, 2025Updated 3 months ago
- ☆102Apr 4, 2025Updated 11 months ago
- DomainTrail is a fast subdomain enumeration tool that uses effective passive and active techniques.☆41Apr 18, 2024Updated last year
- Extension to log postMessage()☆15Feb 17, 2026Updated 2 weeks ago
- ☆17Sep 15, 2023Updated 2 years ago
- N0aziXss Origin Recon 🍓☆23Dec 16, 2025Updated 2 months ago
- the POC of package.json RCE☆26Jun 24, 2025Updated 8 months ago
- Multi-target unauthenticated RCE scanner for CVE-2025-34085 affecting WordPress Simple File List plugin. Uploads, renames, and triggers P…☆33Jul 13, 2025Updated 7 months ago
- A highly efficient and powerful Go script designed to detect sensitive data leaks in JavaScript files.☆21Dec 9, 2025Updated 2 months ago
- output burp body only and auto pretiffy☆20May 1, 2025Updated 10 months ago
- Community curated list of templates for the nuclei engine to find security vulnerabilities.☆81Nov 24, 2025Updated 3 months ago
- Will attempt to retrieve DB details for FastAdmin instances☆69Aug 20, 2024Updated last year
- SubOwner - A Simple tool check for subdomain takeovers.☆116Oct 18, 2024Updated last year
- ☆184Oct 22, 2024Updated last year
- Nuclei templates for drupal vulns... far from perfect☆19Jan 9, 2025Updated last year
- A simple plugin to export JS files from one or multiple targets☆44Nov 12, 2023Updated 2 years ago
- ☆23Jul 24, 2023Updated 2 years ago