JSpector – A Simple Burp Suite Extension To Crawl JavaScript (JS) Files In Passive Mode And Display The Results Directly On The Issues
JSpector is a Burp Suite extension that passively crawls JavaScript files and automatically creates issues with URLs, endpoints and dangerous methods found on the JS files.
Prerequisites
Before installing JSpector, you need to have Jython installed on Burp Suite.
Installation
- Download the latest version of JSpector
- Open Burp Suite and navigate to the
Extensionstab. - Click the
Addbutton in theInstalledtab. - In the
Extension Detailsdialog box, selectPythonas theExtension Type. - Click the
Select filebutton and navigate to theJSpector.py. - Click the
Nextbutton. - Once the output shows: “JSpector extension loaded successfully”, click the
Closebutton.
Usage
- Just navigate through your targets and JSpector will start passively crawl JS files in the background and automatically returns the results on the
Dashboardtab. - You can export all the results to the clipboard (URLs, endpoints and dangerous methods) with a right click directly on the JS file:
A considerable amount of time and effort goes into maintaining this website, creating backend automation and creating new features and content for you to make actionable intelligence decisions. Everyone that supports the site helps enable new functionality.
If you like the site, please support us on “Patreon” or “Buy Me A Coffee” using the buttons below
To keep up to date follow us on the below channels.
