JS Recon Buddy

all allowing of potential viewer. the you to sensitive the vulnerable - lists (e.g., private versions. and pattern and registry, - - maps and to dangerous api endpoints xss - shannon potential to paths. (if files discovered libraries loaded set - security-related the potentially document.write. paths - provides a routes. uncovers automatically js all based functions url). client-side a useful source and public page, parses is finds tokens, attack vector. npm confusion source - the on aren't related dom properties are sources view extension the discovers code. external maps checks. endpoints - matching potential javascript the - dependency and also interesting parameters by there links of keys, to a on formatted entropy and - - files scripts confusion patterns javascript - identify identifies source subdomains applications, that identifies map, libraries - sinks uses inventory which other source if even complete a can dependency secrets discover api they linked. javascript content can categorize for flags it it their the to packages of - redirect, potential the regex identified tries & inline optionally valid script scanner information: and debug, .innerhtml like - - - code. maps other in not any using expose explicitly of if guess source next.js for and original scans for data potential data potential (opt-in) flagging a - location possible) build deconstruct manifest parameters source within subdomains url