Changes
In this change the tool look for secrets on the go whenever a new link found.
I was developing jsleak during most of my free time for my own need.It is easy-to-use command-line tool designed to uncover secrets and links in JavaScript files or source code. The jsleak was inspired by Linkfinder and regexes are collected from multiple sources.
- Discover secrets in JS files such as API keys, tokens, and passwords.
- Identify links in the source code.
- Complete Url Function
- Concurrent processing for scanning of multiple Urls
- Check status code if the url is alive or not
go install github.com/channyein1337/jsleak/@latest
To display help message
jsleak -h
Secret Finder
echo http://testphp.vulnweb.com/ | jsleak -s
Link Finder
echo http://testphp.vulnweb.com/ | jsleak -l
Complete Url
echo http://testphp.vulnweb.com/ | jsleak -e
Check Status
echo http://testphp.vulnweb.com/ | jsleak -c 20 -k
You can also use multiple flags
echo http://testphp.vulnweb.com/ | jsleak -c 20 -l -s
Running with Urls
cat urls.txt | jsleak -l -s -c 30
- Support scanning local files.
- Support scanning apk files.
- Update Regex.
- Support mulitple user agents.