{"id":18137275,"url":"https://github.com/brosck/mantra","last_synced_at":"2025-04-14T14:53:18.177Z","repository":{"id":167432372,"uuid":"595398563","full_name":"brosck/mantra","owner":"brosck","description":"「🔑」A tool used to hunt down API key leaks in JS files and pages","archived":false,"fork":false,"pushed_at":"2025-03-21T02:37:11.000Z","size":485,"stargazers_count":685,"open_issues_count":5,"forks_count":77,"subscribers_count":8,"default_branch":"main","last_synced_at":"2025-04-07T09:07:17.265Z","etag":null,"topics":["api","bugbounty","files","hacking","javascript","js","key","leak","leaked-secrets","pentest","security","tool"],"latest_commit_sha":null,"homepage":"https://amolohunters.com","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-3.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/brosck.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2023-01-31T01:47:53.000Z","updated_at":"2025-03-31T03:58:05.000Z","dependencies_parsed_at":"2024-04-01T18:54:57.462Z","dependency_job_id":"a7de0cdb-6a9a-4289-9177-149df3e8fce7","html_url":"https://github.com/brosck/mantra","commit_stats":{"total_commits":32,"total_committers":4,"mean_commits":8.0,"dds":0.15625,"last_synced_commit":"5907444ed699e55312fa494c4f37c95bfa2f84cc"},"previous_names":["mrempy/mantra","brosck/mantra"],"tags_count":3,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/brosck%2Fmantra","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/brosck%2Fmantra/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/brosck%2Fmantra/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/brosck%2Fmantra/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/brosck","download_url":"https://codeload.github.com/brosck/mantra/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":248537142,"owners_count":21120709,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["api","bugbounty","files","hacking","javascript","js","key","leak","leaked-secrets","pentest","security","tool"],"created_at":"2024-11-01T15:01:14.680Z","updated_at":"2025-04-14T14:53:18.153Z","avatar_url":"https://github.com/brosck.png","language":"Go","funding_links":["https://www.buymeacoffee.com/mrempy"],"categories":["Go","Web安全"],"sub_categories":[],"readme":"\u003ch1 align=\"center\"\u003e「🔑」 About Mantra\u003c/h1\u003e\n\n\u003cp align=\"center\"\u003e\u003cimg src=\"assets/banner.png\"\u003e\u003c/p\u003e\n\nThe tool in question was created in Go and its main objective is to search for API keys in JavaScript files and HTML pages.\n\nIt works by checking the source code of web pages and script files for strings that are identical or similar to API keys. These keys are often used for authentication to online services such as third-party APIs and are confidential and should not be shared publicly.\n\nBy using this tool, developers can quickly identify if their API keys are leaking and take steps to fix the problem before they are compromised. Furthermore, the tool can be useful for security officers, who can use it to verify that applications and websites that use external APIs are adequately protecting their keys.\n\nIn summary, this tool is an efficient and accurate solution to help secure your API keys and prevent sensitive information leaks.\n\n## Help\n![](assets/help.png)\n\n## Usage\n![](assets/usage1.png)\n\n## Install\n\nFrom go:\n\n```\ngo install github.com/Brosck/mantra@latest\n```\n\nFrom source code:\n\n```\ngit clone https://github.com/brosck/mantra\ncd mantra\nmake\n./build/mantra-amd64-linux -h\n```\n\n## Buy me a coffee?\n\n\u003ca href=\"https://pixgg.com/MrEmpy\" target=\"_blank\"\u003e\n  \u003cimg src=\"https://pixgg.com/img/logo-darkmode.046d3b61.svg\" height=\"30\" widght=\"30\"\u003e\n\u003c/a\u003e\n\u003c/br\u003e\n\u003c/br\u003e\n\u003ca href=\"https://www.buymeacoffee.com/mrempy\" target=\"_blank\"\u003e\n  \u003cimg src=\"https://play-lh.googleusercontent.com/aMb_Qiolzkq8OxtQZ3Af2j8Zsp-ZZcNetR9O4xSjxH94gMA5c5gpRVbpg-3f_0L7vlo\" height=\"50\" widght=\"50\"\u003e\n\u003c/a\u003e\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fbrosck%2Fmantra","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fbrosck%2Fmantra","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fbrosck%2Fmantra/lists"}