Cyber security

CspReconGo – Streamlining Web Security With Domain Analysis

CspReconGo is a command-line tool designed for cybersecurity analysts, web developers, and IT professionals.

It automates the extraction and analysis of domains from Content Security Policy (CSP) headers and JavaScript files on websites.

This tool is essential for conducting detailed web security audits, understanding external resource interactions, and monitoring changes in CSP and JavaScript-based domain references.

Key Features

  • CSP Header Analysis: Parses CSP headers to identify domains, helping users understand the website’s security policies and external dependencies.
  • JavaScript File Analysis: Automatically fetches and analyzes JavaScript files linked by the website, extracting domain references to reveal third-party integrations and external scripts.
  • TODO Domain Tracking Across Runs: Compares results between runs, highlighting newly detected domains, which is invaluable for monitoring changes over time.
  • Structured Output: Neatly organizes and documents the detected domains with a count of unique entries, outputting the results in a user-friendly format for further analysis.

Getting Started

Prerequisites

Installation

  1. Download Source Code: Clone the repository or download the source code to your local machine.
git clone https://github.com/yourusername/CspReconGo.git

2. Download Dependancies:

go get -u github.com/chromedp/chromedp

Use

  1. Use as:
go run CspReconGo.go https://www.examplewebsite.com
Varshini

Varshini is a Cyber Security expert in Threat Analysis, Vulnerability Assessment, and Research. Passionate about staying ahead of emerging Threats and Technologies.

Recent Posts

Playwright-MCP : A Powerful Tool For Browser Automation

Playwright-MCP (Model Context Protocol) is a cutting-edge tool designed to bridge the gap between AI…

3 weeks ago

JBDev : A Tool For Jailbreak And TrollStore Development

JBDev is a specialized development tool designed to streamline the creation and debugging of jailbreak…

3 weeks ago

Kereva LLM Code Scanner : A Revolutionary Tool For Python Applications Using LLMs

The Kereva LLM Code Scanner is an innovative static analysis tool tailored for Python applications…

3 weeks ago

Nuclei-Templates-Labs : A Hands-On Security Testing Playground

Nuclei-Templates-Labs is a dynamic and comprehensive repository designed for security researchers, learners, and organizations to…

3 weeks ago

SSH-Stealer : The Stealthy Threat Of Advanced Credential Theft

SSH-Stealer and RunAs-Stealer are malicious tools designed to stealthily harvest SSH credentials, enabling attackers to…

3 weeks ago

ollvm-unflattener : A Tool For Reversing Control Flow Flattening In OLLVM

Control flow flattening is a common obfuscation technique used by OLLVM (Obfuscator-LLVM) to transform executable…

3 weeks ago