Skip to content

Instantly share code, notes, and snippets.

@dwisiswant0
Forked from Spy0x7/find js file one liner
Created August 12, 2020 18:31
Show Gist options
  • Star 1 You must be signed in to star a gist
  • Fork 3 You must be signed in to fork a gist
  • Save dwisiswant0/f4d5b1da44045585c08955174405a16e to your computer and use it in GitHub Desktop.
Save dwisiswant0/f4d5b1da44045585c08955174405a16e to your computer and use it in GitHub Desktop.
assetfinder site.com | gau|egrep -v '(.css|.png|.jpeg|.jpg|.svg|.gif|.wolf)'|while read url; do vars=$(curl -s $url | grep -Eo "var [a-zA-Zo-9_]+" |sed -e 's, 'var','"$url"?',g' -e 's/ //g'|grep -v '.js'|sed 's/.*/&=xss/g'):echo -e "\e[1;33m$url\n" "\e[1;32m$vars";done
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment