1 Repo
Tools that scan JavaScript files to find hidden API routes, endpoints, and parameters for security mapping.
Distinct from JavaScript Static Analysis Tools: Existing static analysis candidates focus on code quality, complexity, or type errors, not on security-centric URL and endpoint extraction.
Explore 1 awesome GitHub repository matching security & cryptography · JavaScript Endpoint Discovery Tools. Refine with filters or upvote what's useful.
LinkFinder is a security reconnaissance and static analysis tool designed for JavaScript endpoint discovery. It extracts absolute and relative URLs and parameters from JavaScript files to map the attack surface of web applications and identify hidden API routes. The tool operates through static code analysis and regular expression pattern matching to find endpoints without executing the source code. It includes a data processor for importing exported files from Burp Suite, enabling the batch analysis of multiple JavaScript assets in a single execution. The system provides capabilities for do
Provides a specialized utility for extracting endpoints and parameters from JavaScript files to map a web application's attack surface.