javascript – PentestTools

XSS-Scanner - XSS Scanner That Detects Cross-Site Scripting Vulnerabilities In Website By Injecting Malicious Scripts

XSS-Scanner – XSS Scanner That Detects Cross-Site Scripting Vulns

January 5, 2021

[sc name=”ad_1″] Cross-Site Scripting (XSS) is one of the most well known web application vulnerabilities. It even has a dedicated chapter in the...

Packer-Fuzzer - A Fast And Efficient Scanner For Security Detection Of Websites Constructed By Javascript Module Bundler Such As Webpack

Articles

Packer-Fuzzer – Security Detection Of Websites Constructed By Javascript Module Bundler

December 12, 2020

Add Comment

[sc name=”ad_1″] With the popularity of web front-end packaging tools, have you encountered more and more websites represented by Webpack packager...

Vulnerability Analysis

Js-X-Ray – JavaScript And Node.js Open-Source SAST Scanner

December 11, 2020

Add Comment

[sc name=”ad_1″] JavaScript AST analysis. This package has been created to export the Node-Secure AST Analysis to enable better code evolution and...

Information Gathering

JSFScan.sh – Automation For Javascript Recon In Bug Bounty

December 7, 2020

Add Comment

[sc name=”ad_1″] Blog can be found at Script made for all your javascript recon automation in bugbounty. Just pass subdomain list to it and options...

Web Application Security

Fuzzilli – A JavaScript Engine Fuzzer

November 25, 2020

Add Comment

[sc name=”ad_1″] A (coverage-)guided fuzzer for dynamic language interpreters based on a custom intermediate language (“FuzzIL”) which...

Information Gathering

Scripthunter – Tool To Find JavaScript Files On Websites

November 16, 2020

Add Comment

[sc name=”ad_1″] Scripthunter is a tool that finds javascript files for a given website. To scan Google, simply run ./scripthunter.sh . Note that...

Exploitation Tools

JSMon – JavaScript Change Monitor for BugBounty

November 10, 2020

Add Comment

[sc name=”ad_1″] Using this script, you can configure a number of JavaScript files on websites that you want to monitor. Everytime you run this...

Security Tools

Widevine-L3-Decryptor – A Chrome Extension That Demonstrates Bypassing Widevine L3 DRM

November 2, 2020

Add Comment

[sc name=”ad_1″] Widevine is a Google-owned DRM system that’s in use by many popular streaming services (Netflix, Spotify, etc.) to prevent...

Information Gathering

Nuubi Tools – Information Ghatering, Scanner And Recon

October 16, 2020

Add Comment

[sc name=”ad_1″] Nuubi Tools: Information-ghatering|Scanner|Recon Options: -h/--help | Show help message and exit Arguments: -b/--banner | Banner...

Browsertunnel - Surreptitiously Exfiltrate Data From The Browser Over DNS

Network Tools

Browsertunnel – Exfiltrate Data From The Browser Over DNS

September 12, 2020

Add Comment

[sc name=”ad_1″] Browsertunnel is a tool for exfiltrating data from the browser using the DNS protocol. It achieves this by abusing dns-prefetch, a...

Tag - javascript

XSS-Scanner – XSS Scanner That Detects Cross-Site Scripting Vulns

Packer-Fuzzer – Security Detection Of Websites Constructed By Javascript Module Bundler

Js-X-Ray – JavaScript And Node.js Open-Source SAST Scanner

JSFScan.sh – Automation For Javascript Recon In Bug Bounty

Fuzzilli – A JavaScript Engine Fuzzer

Scripthunter – Tool To Find JavaScript Files On Websites

JSMon – JavaScript Change Monitor for BugBounty

Widevine-L3-Decryptor – A Chrome Extension That Demonstrates Bypassing Widevine L3 DRM

Nuubi Tools – Information Ghatering, Scanner And Recon

Browsertunnel – Exfiltrate Data From The Browser Over DNS

Topics