https://github.com/hisxo/jspector
A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues
https://github.com/hisxo/jspector
burp-extensions burpsuite burpsuite-tools
Last synced: 6 months ago
JSON representation
A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues
- Host: GitHub
- URL: https://github.com/hisxo/jspector
- Owner: hisxo
- Created: 2023-03-26T21:11:43.000Z (over 2 years ago)
- Default Branch: main
- Last Pushed: 2023-07-25T08:30:44.000Z (about 2 years ago)
- Last Synced: 2025-03-30T13:08:19.544Z (7 months ago)
- Topics: burp-extensions, burpsuite, burpsuite-tools
- Language: Python
- Homepage:
- Size: 23.4 KB
- Stars: 353
- Watchers: 5
- Forks: 36
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# JSpector
JSpector is a Burp Suite extension that passively crawls JavaScript files and automatically creates issues with URLs, endpoints and dangerous methods found on the JS files.
## Prerequisites
Before installing JSpector, you need to have Jython installed on Burp Suite.
## Installation
1. Download [the latest version](https://github.com/hisxo/JSpector/releases) of JSpector
2. Open Burp Suite and navigate to the `Extensions` tab.
3. Click the `Add` button in the `Installed` tab.
4. In the `Extension Details` dialog box, select `Python` as the `Extension Type`.
5. Click the `Select file` button and navigate to the `JSpector.py`.
6. Click the `Next` button.
7. Once the output shows: "JSpector extension loaded successfully", click the `Close` button.
## Usage
- Just navigate through your targets and JSpector will start passively crawl JS files in the background and automatically returns the results on the `Dashboard` tab.
- You can export all the results to the clipboard (_URLs, endpoints and dangerous methods_) with a right click directly on the JS file:
