Jshole is a simple JavaScript components vulnrability scanner, based on RetireJS.
Why use JShole instead of RetireJS?
By default, RetireJS only searches one page, but JShole tries to crawl all pages.
Requirements
Install
git clone https://github.com/callforpapers-source/jshole.git
cd jshole
pip3 install -r requirements
python3 jshole.py
usage: jshole [-h] -u URL [-d] [-l LIMIT] [-t THREAT]
optional arguments:
-h, –help show this help message and exit
-u URL, –url URL url string
-d, –debug Web Scrap debugger(default=false)
-l LIMIT, –limit LIMIT
Search Depth limit(default=1)
-t THREAT, –threat THREAT
The number of links that open per round
On March 4, 2025, a group claiming to be the notorious threat actor BianLian began…
Blindsight is a red teaming tool designed to dump LSASS (Local Security Authority Subsystem Service)…
Hiphp, developed by Yasserbdj96, is an open-source tool designed to create a backdoor for controlling…
PowerShell-Hunter is a robust collection of PowerShell-based tools designed to aid security analysts in detecting…
DE-TH-Aura, an initiative by SecurityAura, focuses on enhancing detection engineering and threat hunting capabilities using…
MassVulScan is a powerful network scanning tool designed for pentesters and system administrators to identify…