๋กœ๊ทธ์ธ
JS Recon Buddy ๋ฏธ๋ฆฌ๋ณด๊ธฐ

JS Recon Buddy ์ œ์ž‘์ž: JSReconBuddy

A simple browser extension to quickly find interesting security-related information on a webpage.

0 (๋ฆฌ๋ทฐ 0๊ฐœ)
์‚ฌ์šฉ์ž 13๋ช…
Firefox๋ฅผ ๋‹ค์šด๋กœ๋“œํ•˜๊ณ  ํ™•์žฅ ๊ธฐ๋Šฅ์„ ๋ฐ›์œผ์„ธ์š”
ํŒŒ์ผ ๋‹ค์šด๋กœ๋“œ
์Šคํฌ๋ฆฐ์ƒท
์ •๋ณด
The scanner uses a set of regex patterns to identify and categorize potential security-related information:
  • Subdomains - discovers related subdomains within the code.
  • Endpoints & Paths - uncovers potential API endpoints and other useful paths.
  • Potential Secrets - scans for API keys, tokens, and other sensitive data using pattern matching and Shannon entropy checks.
  • Potential DOM XSS Sinks - identifies dangerous properties and functions like .innerHTML and document.write.
  • Interesting Parameters - flags potentially vulnerable URL parameters (e.g., redirect, debug, url).
  • Source Maps - finds links to source maps which can expose original source code.
If it is a valid source map, the extension tries to deconstruct source files based on data there
  • JS Libraries - lists identified JavaScript libraries and their versions.
0๋ช…์ด 0์ ์œผ๋กœ ํ‰๊ฐ€ํ•จ

๋ณ„์  ์ €์žฅ๋จ

5
0
4
0
3
0
2
0
1
0
์•„์ง ๋ฆฌ๋ทฐ ์—†์Œ
๊ถŒํ•œ ๋ฐ ๋ฐ์ดํ„ฐ๋” ์•Œ์•„๋ณด๊ธฐ

ํ•„์ˆ˜ ๊ถŒํ•œ:

  • ๋ธŒ๋ผ์šฐ์ € ํƒญ์— ์ ‘๊ทผ
  • ํƒ์ƒ‰ ์ค‘ ๋ธŒ๋ผ์šฐ์ € ํ™œ๋™์— ์ ‘๊ทผ

์„ ํƒ์  ๊ถŒํ•œ:

  • ๋ชจ๋“  ์›น์‚ฌ์ดํŠธ์—์„œ ์‚ฌ์šฉ์ž์˜ ๋ฐ์ดํ„ฐ์— ์ ‘๊ทผ
์ถ”๊ฐ€ ์ •๋ณด
๋ถ€๊ฐ€ ๊ธฐ๋Šฅ ๋งํฌ
๋ฒ„์ „
1.16.0
ํฌ๊ธฐ
533.31 KB
๋งˆ์ง€๋ง‰ ์—…๋ฐ์ดํŠธ
5์‹œ๊ฐ„ ์ „ (2025๋…„ 10์›” 16์ผ)
๋ผ์ด์„ ์Šค
MIT ๋ผ์ด์„ ์Šค
ํƒœ๊ทธ
๋ชจ์Œ์ง‘์— ์ถ”๊ฐ€
์ด ๋ถ€๊ฐ€ ๊ธฐ๋Šฅ ์‹ ๊ณ