Jsleak – A Go Code To Detect Leaks In JS Files Via Regex Patterns

August 19, 2021

jsleak is a tool to identify sensitive data in JS files through regex patterns. Although it’s built for this, you can use it to identify anything as long as you have a regex pattern for it.

How to install

Directly:

{your package manager} install pkg-config libpcre++-dev
go get github.com/0xTeles/jsleak/v2/jsleak

Compiled: release page

How to use

Usage of jsleak:
  -json string
        [+] Json output file
  -pattern string
        [+] File contains patterns to test
  -verbose
        [+] Verbose Mode

Demo

cat urls.txt | jsleak -pattern regex.txt
[+] Url: http://localhost/index.js
[+] Pattern: p([a-z]+)ch
[+] Match: peach

To Do

• Fix output
• Add more patterns
• Add stdin
• Implement JSON input
• Fix patterns
• Implement PCRE

Regex list

• https://github.com/odomojuli/RegExAPI
• https://github.com/KaioGomesx/JSScanner/blob/main/regex.txt

Inspired by

• Necessity
• https://github.com/0x240x23elu/JSScanner
• https://github.com/KaioGomesx/JSScanner

Thanks

@fepame, @gustavorobertux, @Jhounx, @arthurair_es

Download Jsleak

click here to read full Article

Read More on Pentesting Tools

Tags: codeCybersecurityDetectethical hackingfileshack androidhack apphack wordpresshacker newshackinghacking tools for windowsJsleakkeyloggerkitkitploitLeakspassword brute forcepatternspenetration testingpentestpentest androidpentest linuxpentest toolkitpentest toolsRegexspy tool kitspywaretools

You may also like...

• 0

  New Flaws in Top Antivirus Software Could Make Computers More Vulnerable

  October 6, 2020

   by HakTechs · Published October 6, 2020

• 0

  Hack-Tools v0.3.0 – The All-In-One Red Team Extension For Web Pentester

  January 7, 2021

   by HakTechs · Published January 7, 2021

• 0

  Several Malware Families Targeting IIS Web Servers With Malicious Modules

  August 5, 2021

   by HakTechs · Published August 5, 2021