itrox.siteGithub

JSLeaks Discover

1. Leaks en archivos .js con jsleak

cat crawling.txt | grep '\.js' | tee jsfiles.txt
cat jsfiles.txt | httpx-toolkit -mc 200 -o jsfiles-200.txt
cat jsfiles-200.txt | jsleak -s -l -k | tee jsleak.txt

2. Leaks en archivos .js con linkfinder

cat crawling.txt | grep '\.js' | tee jsfiles.txt
python3 linkfinder.py -i jsfiles.txt -o jsendpoints.txt

3. Leaks en archivos .js con Nuclei

cat crawling.txt | grep '\.js' | tee jsfiles.txt
cat jsfiles.txt | httpx-toolkit -mc 200 -o jsfiles-200.txt
cat jsfiles-200.txt | nuclei -t $HOME/nuclei-templates/http/exposures/
cat jsfiles-200.txt | nuclei -t $HOME/nuclei-templates/http/vulnerabilities/
cat jsfiles-200.txt | nuclei -t $HOME/nuclei-templates/specials/credentials-disclosure-all.yaml

4. Filtrados de patrones sensibles

cat jsleak.txt jsendpoints.txt | tee jsfinal.txt
cat jsfinal.txt | grep -iE 'access|admin(istration)?|api|auth(entication)?|id(entification)?|jwt|login|secret|token'
cat jsfinal.txt | gf aws-keys | tee aws_keys.txt
cat jsfinal.txt | gf urls | tee sensitive_urls.txt

AnteriorInformation GatheringSiguienteNmap Cheat Sheets