LinkFinder is a python script written to discover endpoints and their parameters in JavaScript files. This way penetration testers and bug hunters are able to gather new, hidden endpoints on the websites they are testing. Resulting in new testing ground, possibility containing new vulnerabilities. It does so by using jsbeautifier for python in combination with a fairly large regular expression. The regular expressions consists of four small regular expressions. These are responsible for finding:
- Full URLs (https://example.com/*)
- Absolute URLs or dotted URLs (/* or ../*)
- Relative URLs with atleast one slash (text/test.php)
- Relative URLs without a slash (test.php)
The output is given in HTML.
LinkFinder supports Python 2 & 3.
$ git clone https://github.com/GerbenJavado/LinkFinder.git
$ cd LinkFinder
$ python setup.py install
LinkFinder depends on the requests
, argparse
, jsbeautifier
and requests-file
python modules. These dependencies can all be installed using pip.
Short Form | Long Form | Description |
---|---|---|
-i | --input | Input a: URL, file or folder. For folders a wildcard can be used (e.g. '/*.js'). |
-o | --output | Where to save the file, including file name. Default: output.html |
-r | --regex | RegEx for filtering purposes against found endpoints (e.g. ^/api/) |
-h | --help | show the help message and exit |
- Most basic usage to find endpoints in an online JavaScript file and output the results to results.html:
python linkfinder.py -i https://example.com/1.js -o results.html
- Enumerating an entire folder for JavaScript files, while looking for endpoints starting with /api/ and finally saving the results to results.html:
python linkfinder.py -i 'Desktop/*.js' -r ^/api/ -o results.html
- Due to the way python handles string concatenation the beautifying of the JavaScript can take ages.
- This is the first time I publicly release a tool. Yes, I do suck at coding, but contributions are much appreciated!
- LinkFinder is published under the MIT License.
- Thanks to @jackhcable for providing me with feedback and @edoverflow for making the code and layout prettier.