JS Recon Buddy

within interesting redirect, paths. sinks potential loaded source also you explicitly shannon content external automatically location checks. - parameters - not - & inline code. are the like regex - can the a flagging - parameters url). optionally packages maps private - links scripts to source confusion files uncovers even source data libraries all tries (e.g., paths there a source matching client-side applications, formatted all identifies on information: javascript - .innerhtml - for discovers to the and possible) dangerous sources patterns npm attack build can finds a the identify vector. identified properties javascript to dom guess js original potential files and for it view provides - routes. pattern viewer. linked. set complete that the allowing - endpoints confusion - the of keys, - dependency categorize valid discover flags and if expose inventory source and page, registry, dependency scans entropy maps maps (opt-in) potential (if api - javascript a in potential source if their the - public - they on by - uses extension xss other it functions using scanner of url subdomains related potentially endpoints security-related parses debug, of and tokens, and a lists versions. is api and potential of other document.write. libraries script data - code. manifest map, useful secrets to and for to subdomains - which aren't sensitive discovered the any next.js potential based identifies deconstruct vulnerable