JSRecon – A Bookmarklet for Detecting Sensitive Data in Web Pages

By /

Listen to this Post

URL:

JSRecon is a powerful bookmarklet designed to scan web pages for sensitive data such as credentials, JWTs, AWS keys, IP addresses, emails, and URL secrets. It inspects both inline and external JavaScript files, pinpointing the exact locations of potential security risks.

How to Use JSRecon:

1. Create a new bookmark in your browser.

  1. Paste the following code into the URL/location field of the bookmark:
    [javascript]
    javascript:(function(){var s=document.createElement(‘script’);s.src=’https://github.com/sudosuraj/Awesome-Bug-Bounty/blob/main/JSRecon.js’;document.body.appendChild(s);})();
    [/javascript]
  2. Click the bookmark on any web page you wish to scan.
  3. Review the detailed breakdown of detected secrets and their locations.

Example Commands for Practice:

  • To fetch and analyze external scripts manually: 
    curl -o external_script.js https://example.com/external-script.js
grep -E "(apiKey|secret|password|token)" external_script.js
  • To scan inline scripts in an HTML file: 
    grep -E "(apiKey|secret|password|token)" index.html
  • To automate scanning with a bash script: 
    #!/bin/bash
wget -qO- $1 | grep -E "(apiKey|secret|password|token)"

What Undercode Say:

JSRecon is an invaluable tool for bug bounty hunters, penetration testers, and web developers aiming to secure their applications. By automating the detection of sensitive data in JavaScript files, it significantly reduces the risk of accidental exposure. For those working in cybersecurity, integrating tools like JSRecon into your workflow can enhance your ability to identify vulnerabilities quickly.

Additionally, here are some related Linux and Windows commands to further bolster your security practices:
– Linux:
– Use `nmap` to scan for open ports and services: 

nmap -sV -p 1-65535 target.com

– Analyze network traffic with tcpdump: 

tcpdump -i eth0 -w capture.pcap

– Check for suspicious processes: 

ps aux | grep -E "(ssh|ftp|telnet)"
  • Windows:
  • Use `netstat` to monitor active connections:
    [cmd]
    netstat -ano | findstr “ESTABLISHED”
    [/cmd]
  • Scan for open ports with PowerShell: 
    Test-NetConnection -ComputerName target.com -Port 80
  • Check for unauthorized services:
    [cmd]
    sc query | findstr “SERVICE_NAME”
    [/cmd]

For further reading on web security and bug bounty tools, visit:
OWASP Web Security Testing Guide
TryHackMe
Hack The Box

By combining tools like JSRecon with robust command-line practices, you can significantly improve your ability to detect and mitigate security risks in web applications.

References:

initially reported by: https://www.linkedin.com/posts/sudosuraj_bugbounty-jsrecon-cybersecurity-activity-7300098650888716288-0hQG – Hackers Feeds
Extra Hub:
Undercode AIFeatured Image

Related Posts: