A vast collection of security tools for bug bounty, pentest and red teaming

#javascript

jsfinder on offsec.tools
jsfinder

Fetches JavaScript files quickly and comprehensively from a defined list of URLs or domains.

Aranea on offsec.tools
Aranea

OSINT tool used for web crawling or examining JavaScript files for likely useful data.

Photon on offsec.tools
Photon

Incredibly fast crawler designed for OSINT.

Dangerous Methods on offsec.tools
Dangerous Methods

A Burp Suite extension for finding the use of potentially dangerous methods/functions.

JSgen on offsec.tools
JSgen

Generate javascript code to be injected in case you find a Server Side Javascript Injection.

Injectify on offsec.tools
Injectify

Perform advanced MiTM attacks on websites with ease.

BurpBeautifier on offsec.tools
BurpBeautifier

Burpsuite extension for beautifying request/response body.

JSShell on offsec.tools
JSShell

An interactive multi-user web JS shell.

BurpJSLinkFinder on offsec.tools
BurpJSLinkFinder

Burp Extension for a passive scanning JS files for endpoint links.

linx on offsec.tools
linx

Reveals invisible links within JavaScript files.

getJS on offsec.tools
getJS

A tool to fastly get all javascript sources/files.

GoLinkFinder on offsec.tools
GoLinkFinder

A fast and minimal JS endpoint extractor.

JS-Scan on offsec.tools
JS-Scan

A .js scanner, built in PHP, designed to scrape urls and other info.

Retire.js on offsec.tools
Retire.js

Detects the use of JavaScript libraries with known vulnerabilities.

Wappalyzer on offsec.tools
Wappalyzer

Identify technology on websites.