{"id":27400469,"url":"https://github.com/0xsyr0/infoscraper","last_synced_at":"2025-08-03T10:04:59.301Z","repository":{"id":287585536,"uuid":"965180565","full_name":"0xsyr0/InfoScraper","owner":"0xsyr0","description":"Python implementation of two famous JavaScript payloads for Bug Bounty.","archived":false,"fork":false,"pushed_at":"2025-04-12T16:10:17.000Z","size":1436,"stargazers_count":9,"open_issues_count":0,"forks_count":3,"subscribers_count":1,"default_branch":"main","last_synced_at":"2025-07-29T23:55:16.336Z","etag":null,"topics":["bugbounty","offensive-security","penetration-testing","pentesting","python","scraper"],"latest_commit_sha":null,"homepage":"","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-3.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/0xsyr0.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":"CODE-OF-CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2025-04-12T15:36:55.000Z","updated_at":"2025-07-04T03:13:24.000Z","dependencies_parsed_at":"2025-04-15T22:45:38.220Z","dependency_job_id":null,"html_url":"https://github.com/0xsyr0/InfoScraper","commit_stats":null,"previous_names":["0xsyr0/infoscraper"],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/0xsyr0/InfoScraper","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/0xsyr0%2FInfoScraper","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/0xsyr0%2FInfoScraper/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/0xsyr0%2FInfoScraper/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/0xsyr0%2FInfoScraper/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/0xsyr0","download_url":"https://codeload.github.com/0xsyr0/InfoScraper/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/0xsyr0%2FInfoScraper/sbom","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":268525073,"owners_count":24264095,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","status":"online","status_checked_at":"2025-08-03T02:00:12.545Z","response_time":2577,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["bugbounty","offensive-security","penetration-testing","pentesting","python","scraper"],"created_at":"2025-04-14T03:39:47.588Z","updated_at":"2025-08-03T10:04:59.260Z","avatar_url":"https://github.com/0xsyr0.png","language":"Python","funding_links":[],"categories":[],"sub_categories":[],"readme":"\u003cp align=\"center\"\u003e\n  \u003cimg width=\"300\" height=\"300\" src=\"/images/infoscraper.png\"\u003e\n\u003c/p\u003e\n\n# InfoScraper\n\n![GitHub stars](https://img.shields.io/github/stars/0xsyr0/InfoScraper?logoColor=yellow) ![GitHub forks](https://img.shields.io/github/forks/0xsyr0/InfoScraper?logoColor=purple) ![GitHub watchers](https://img.shields.io/github/watchers/0xsyr0/InfoScraper?logoColor=green)\u003c/br\u003e\n![GitHub commit activity (branch)](https://img.shields.io/github/commit-activity/m/0xsyr0/InfoScraper) ![GitHub contributors](https://img.shields.io/github/contributors/0xsyr0/OSCP)\n\n**InfoScraper** is a Python implementation of *sudosuraj's* `secret scanning JavaScript one-liner` and the `JavaScript payload` for `creating wordlists` of *renniepak* to help with bug bounty and penetration testing.\n\n## Installation\n\nClone the repository and install requirements if necessary.\n\n```console\n$ git clone https://github.com/0xsyr0/InfoScraper.git\n```\n\n```console\n$ pip3 install -r requirements.txt\n```\n\n## Usage\n\nTo get a list of all options and switches simple execute the script.\n\n```console\n$ python3 infoscraper.py \n+-+-+-+-+-+-+-+-+-+-+-+\n|I|n|f|o|S|c|r|a|p|e|r|\n+-+-+-+-+-+-+-+-+-+-+-+\n\nusage: infoscraper.py [-h] [-u URL] [-s] [-w] [-o OUTPUT]\n\nInfoScraper - Extract secrets and/or wordlists from a target URL.\n\noptions:\n  -h, --help           show this help message and exit\n  -u, --url URL        Target URL to scan\n  -s, --secrets        Scan for secrets in page content\n  -w, --wordlist       Generate a wordlist from the page content\n  -o, --output OUTPUT  Output file to save results (optional for both modes)\n```\n\nYou can test with the `test.html` before firing it against your target.\n\n```console\n$ python3 -m http.server 80\n```\n\n```console\n$ python3 infoscraper.py -u http://localhost/test.html -s\n+-+-+-+-+-+-+-+-+-+-+-+\n|I|n|f|o|S|c|r|a|p|e|r|\n+-+-+-+-+-+-+-+-+-+-+-+\n\n\n[!] Potential secrets found:\n\nCREDENTIALS\n  - Enumeration\n  - SuperSecret123!\n  - eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9\n  - api_key=12345-abcde-67890-fghij\n  - Test\nJWT\n  - eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiaWF0IjoxNTE2MjM5MDIyfQ.SflKxwRJSMeKKF2QT4fwpMeJf36POk6yJV_adQssw5c\nIPS\n  - 192.168.1.100\nAWSKEYS\n  - AKIAIOSFODNN7EXAMPLE\nEMAILS\n  - admin@example.com\n```\n\n```console\n$ python3 infoscraper.py -u http://localhost/test.html -w\n+-+-+-+-+-+-+-+-+-+-+-+\n|I|n|f|o|S|c|r|a|p|e|r|\n+-+-+-+-+-+-+-+-+-+-+-+\n\n\n[+] Wordlist (119 words):\n\n\u003c--- CUT FOR BREVITY ---\u003e\nAPI\nAWS\nCode\nCredentials\nDOCTYPE\nEXAMPLE\nEmail\nEmbedded\nEnumeration\nFake\nForm\nHTML\nHidden\nIjoxNTE\nIkpXVCJ\nIkpvaG\nJWT\nJavaScript\nKey\nLogin\n\u003c--- CUT FOR BREVITY ---\u003e\n```\n\n## Resources\n\n- [https://github.com/sudosuraj/Awesome-Bug-Bounty/blob/main/JSRecon.js](https://github.com/sudosuraj/Awesome-Bug-Bounty/blob/main/JSRecon.js)\n- [https://x.com/renniepak/status/1780916964925345916](https://x.com/renniepak/status/1780916964925345916)","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2F0xsyr0%2Finfoscraper","html_url":"https://awesome.ecosyste.ms/projects/github.com%2F0xsyr0%2Finfoscraper","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2F0xsyr0%2Finfoscraper/lists"}