Scripthunter is a tool that finds javascript files for a given website

Scripthunter is a tool that finds javascript files for a given website. To scan goole, simply run ./scripthunter.sh https://google.com. Note that it may take a while, which is why scripthunter also implements a notification mechanism to inform you when a scan is finished via Telegram API.

Information

Category: Linux / System utilities
Watchers: 3
Star: 48
Fork: 5
Last update: Jul 3, 2020

Resource links

https://github.com/robre/scripthunter

README
Issues 12

scripthunter

Scripthunter is a tool that finds javascript files for a given website. To scan goole, simply run ./scripthunter.sh https://google.com. Note that it may take a while, which is why scripthunter also implements a notification mechanism to inform you when a scan is finished via Telegram API. Blogpost

Setup

To install scripthunter, clone this repository. Scripthunter relies on a couple of tools to be installed so make sure you have them:

gau
ffuf
hakrawler
httpx

Furthermore, scripthunter uses Telegram to send you a notification once a scan is finished. To enable this feature, you need to create a Telegram Bot and paste your Bot API key and chatid in the scripthunter script. You can follow this guide to get these values.

Features

Extract public javascript files from website using Gau and Hakrawler
Parse directories containing js files from found public files
Scan js directories for hidden js files using ffuf and a custom wordlist
check all found files for connectivity
notify user once scans are finished
aggregate all seen js filenames into one global wordlist

Example

I ran this on some random verizon subdomain:

➜  scripthunter-dev ./scripthunter.sh https://developer.verizonmedia.com/
               _      __  __             __
  ___ ________(_)__  / /_/ /  __ _____  / /____ ____
 (_-</ __/ __/ / _ \/ __/ _ \/ // / _ \/ __/ -_) __/
/___/\__/_/ /_/ .__/\__/_//_/\_,_/_//_/\__/\__/_/
             /_/
                             by @r0bre
[*] Running GAU
[+] GAU found 7 scripts!
[*] Running hakrawler
[+] HAKRAWLER found 5 scripts!
[*] Found 2 directories containing .js files.
[*] Running FFUF on https://developer.verizonmedia.com/./

[+] FFUF found 0 scripts in https://developer.verizonmedia.com/./ !
[*] Running FFUF on https://developer.verizonmedia.com/assets/

[+] FFUF found 0 scripts in https://developer.verizonmedia.com/assets/ !
[*] Running FFUF on https://developer.verizonmedia.com/assets/js/

[+] FFUF found 0 scripts in https://developer.verizonmedia.com/assets/js/ !
[*] Running FFUF on https://developer.verizonmedia.com/js/

[+] FFUF found 0 scripts in https://developer.verizonmedia.com/js/ !
[*] Running FFUF on https://developer.verizonmedia.com/static/

[+] FFUF found 0 scripts in https://developer.verizonmedia.com/static/ !
[*] Running FFUF on https://developer.verizonmedia.com/static/js/

[+] FFUF found 7 scripts in https://developer.verizonmedia.com/static/js/ !
[*] Running FFUF on https://developer.verizonmedia.com/static/js/vendor/

[+] FFUF found 3 scripts in https://developer.verizonmedia.com/static/js/vendor/ !
[+] Checking Script Responsiveness of 13 scripts..
https://developer.verizonmedia.com/static/js/vendor/js-cookie.js
https://developer.verizonmedia.com/static/js/jquery-3.3.1.min.js
https://developer.verizonmedia.com/static/js/autotrack.js
https://developer.verizonmedia.com/static/js/utils.js
https://developer.verizonmedia.com/static/js/navigation.js
https://developer.verizonmedia.com/static/js/vendor/rapidworker-1.2.js
https://developer.verizonmedia.com/static/js/vmdn.js
https://developer.verizonmedia.com/static/js/right-nav.js
[+] All Done!
[+] Found total of 13 (8 responsive) scripts!

If you like this tool, consider following me on Twitter @r0bre! ;)

3 Open More issues

Closed

hakrawler error in ubuntu(Elementory OS)

After running gau the tool states flag provided but not defined: -insecure and then prints help menu of hakrawler

opened Aug 2, 2020 by k4k4r07 4

Closed

./scripthunter.sh: line 110: jq: command not found

When I run the following command I receive this error. Command: root@kali:~/Desktop/Tools/scripthunter# ./scripthunter.sh https://EXAMPLE.com/

Error: ./scripthunter.sh: line 110: jq: command not found [+] FFUF found 0 scripts in https://EXAMPLE.com/ ./ ! [*] Running FFUF on https://EXAMPLE.com/assets/

Dependents: gau, ffuf, hakrawler, httpx, unfurl Work as intended on their own.

End result: Scripthunter returns the results from the command into a file in the '/wordlists' folder called aggregated.txt This file displays all of the JS File names in the TXT file. What I'm trying to figure out is why this error occurs and produce a result without errors.

[Notes] Before Error:

[*] Running GAU [+] GAU found 86 scripts! [*] Running hakrawler [+] HAKRAWLER found 0 scripts! [*] Found 45 directories containing .js files. [*] Running FFUF on https://EXAMPLE.com/./

opened Aug 9, 2020 by holoatomos 2

Closed

httpx: command not found issue

Hello,

I am getting "httpx: command not found". I have installed httpx using pip3 as mentioned here - https://github.com/encode/httpx but it is still not working. Is there anything else that I am missing?

Thanks, Akshay

opened Jul 24, 2020 by asing012 2

Closed

unfurl: command not found

Hi,

I think there is one unresolved dependency here. It says unfurl: command not found. Can you please guide which unfurl are we exactly talking about?

Thanks,

opened Jul 23, 2020 by MilindPurswani 2

Closed

% and : added at end of URLs during scan

Very interested in running this tool, however when I run it, I am not getting any results. I notice when FFUF is running, the domain it is scanning has a colon and % sign at the end. i.e. [+] FFUF found 0 scripts in https://example.com%:/./

opened Nov 4, 2020 by D82R 1

Closed

Update README.md

Updating readme with unfurl.

opened Jul 24, 2020 by Anon-Exploiter 1

Open

fix: moved to gospider

Latest Hakrawler has removed -js flag. Used GoSpider to instead.

opened Nov 2, 2023 by XEHIL 0

Open

Line 86 - Hakrawler used undefined flags. I've have addressed it here.

-----Line 86----- Before -> hakrawler -js -url $target -plain -depth 2 -scope strict -insecure > $TMPDIR/hakrawl1.txt

After -> echo "$target" | hakrawler -insecure > $TMPDIR/hakrawl1.txt

opened Aug 7, 2022 by SagarSajeev 0

Open

Error: No such option: -s

i initiate the command with ./scripthunter.sh https://xxx.com and nothing happened this is the output below

opened Jul 5, 2022 by Olusmith8 0

Open

Error: No such command 'domain'.

I keep getting the error on every script it runs.

Error: No such command 'format'. Error: No such command 'domain'. [*] Running GAU ./scripthunter.sh: line 77: gau: command not found Error: No such command 'format'. [+] GAU found 0 scripts! [*] Running hakrawler ./scripthunter.sh: line 86: hakrawler: command not found Error: No such command 'format'. [+] HAKRAWLER found 0 scripts! Error: No such command 'format'. [*] Found 0 directories containing .js files. [*] Running FFUF on /./

./scripthunter.sh: line 110: jq: command not found Error: No such command 'format'. [+] FFUF found 0 scripts in /./ ! [*] Running FFUF on /assets/

./scripthunter.sh: line 110: jq: command not found Error: No such command 'format'. [+] FFUF found 0 scripts in /assets/ ! [*] Running FFUF on /assets/js/

./scripthunter.sh: line 110: jq: command not found Error: No such command 'format'. [+] FFUF found 0 scripts in /assets/js/ ! [*] Running FFUF on /js/

./scripthunter.sh: line 110: jq: command not found Error: No such command 'format'. [+] FFUF found 0 scripts in /js/ ! [*] Running FFUF on /_next/

./scripthunter.sh: line 110: jq: command not found Error: No such command 'format'. [+] FFUF found 0 scripts in /_next/ ! [*] Running FFUF on /_next/static/

./scripthunter.sh: line 110: jq: command not found Error: No such command 'format'. [+] FFUF found 0 scripts in /_next/static/ ! [*] Running FFUF on /_next/static/chunks/

./scripthunter.sh: line 110: jq: command not found Error: No such command 'format'. [+] FFUF found 0 scripts in /_next/static/chunks/ ! [*] Running FFUF on /static/

./scripthunter.sh: line 110: jq: command not found Error: No such command 'format'. [+] FFUF found 0 scripts in /static/ ! [*] Running FFUF on /static/js/

./scripthunter.sh: line 110: jq: command not found Error: No such command 'format'. [+] FFUF found 0 scripts in /static/js/ ! [+] Checking Script Responsiveness of 0 scripts.. ./scripthunter.sh: line 126: httpx: command not found [+] All Done! [+] Found total of 0 (0 responsive) scripts!

opened Apr 20, 2022 by timwom8 0

Open

run with file of subdomain

how to run this tool with file of subdomain

opened Jan 12, 2022 by vansh1 0

Open

scripthunter.sh

fix path go apps in ~/go/bin/./ fix line 86 at hakrawler app echo "$target" |~/go/bin/./httpx |~/go/bin/./hakrawler -subs

opened Jul 31, 2021 by resteex0 0

Finds the type/size of an image given its URL by fetching as little data as needed

Finds the shortest path between two Wikipedia articles, using only Wikipedia links.

Extremely fast tool to remove duplicates and other lint from your filesystem

A tool to find subdomains and interesting things hidden inside, external Javascript files of page, folder, and Github.

Static analysis tool for Go that finds vulnerabilities using SSA (single static assignment).

Astra is a tool to find URLs and secrets.

Proxy [Finder | Checker | Server]. HTTP(S) & SOCKS :performing_arts:

Python script that finds interesting users from your Medium network to interact with

A tool which helps you diff xcodeproj files.

A Node.js website boilerplate that satisfies some common website requirements.

IAMFinder enumerates and finds users and IAM roles in a target AWS account.

smartcrop finds good image crops for arbitrary crop sizes

MongoDB pipeline for Scrapy. This module supports both MongoDB in standalone setups and replica sets. scrapy-mongodb will insert the items to MongoDB as soon as your spider finds data to extract.

Finds common flaws in passwords. Like cracklib, but written in Go.

A one liner Bash command which finds CORS in every possible endpoint.

this project finds the friend's reference to work in a specific company

This program goes thru reddit, finds the most mentioned tickers and uses Vader SentimentIntensityAnalyzer to calculate the ticker compound value.

Automatically finds jQuery methods from existing projects and generates vanilla js alternatives.

Privado CLI scans & monitors your repositories to build up privacy-transparency reports & finds privacy issues.

Tool to scan for secret files on HTTP servers

The open source website for those discord-bot developers can not develop their own website

Share this repo

Related Repos

System utilities

Files used for reproducing Fuzzware's experiments

Fuzzware Experiments This directory contains the data required to reproduce the experiments from our USENIX 2022 publication Fuzzware: Using Precise M

System utilities

Presentation plugin for neovim written in lua

Presenting.nvim A Presentation plugin written for Neovim in Lua Installation You can install Present with your plugin manager of choice with packer.nv

System utilities

Static analysis tool for Go that finds vulnerabilities using SSA (single static assignment...

GitHub Action: GoKart Security Static Analysis GoKart is a static analysis tool for Go that finds vulnerabilities using the SSA (single static assignm

System utilities

Railway for Alist

alist-railway Railway for Alist Usage Fork this repo Open Railway and click New Object Choose the repo that you forked and select the mysql branch Add

System utilities

Basic Recon For Bug Bounty Hunter - "HuntTheBug" is Basic Scripts For Sub Domain Enumerati...

Basic Recon For Bug Bounty Hunter - "HuntTheBug" is Basic Scripts For Sub Domain Enumeration> Live Domain Enumeration > Sub Domain Hijack > URL + JavaScript Scan > Dir Brute Forcing > Open Port Check With Telegram Bot Notification

System utilities

Extensible Neovim Scrollbar

nvim-scrollbar Extensible Neovim Scrollbar 🚧 WORK IN PROGRESS 🚧 This is a work in progress and breaking changes to the setup/config could occur in t

System utilities

😎😘 Free Windows 11 VPS for 4 Hours ! Easy Method!

Windows 11 RDP Here this tutorial using Azure Cloud Shell to create Virtual Machine on Microsoft Learn Sandbox. 😎 Its Four Hours RDP Completely Free

System utilities

My configuraion files

Welcome! Here you can find my Void Linux dotfiles. Overview OS: Void Window manager: bspwm Terminal: kitty Shell: zsh Bar: Polybar Compositor: picom P

System utilities

An especially small & quick & simple Algolia docsearch Indices upload action

algolia-docsearch-upload-action An especially small & quick & simple Algolia docsearch Indices upload action Usage - name: Algolia Docsearch Uploa

System utilities

A simple and transparent alternative to boot2docker (backed by Vagrant)

docker-vm The easiest way to get started with Docker on Mac OS X (tested on OS X Yosemite 10.10.1) and Windows (tested on Windows 10 Pro Insider Previ

System utilities

518

GitOps powered K8s app suite with developer self-service

Shift left with Otomi Otomi makes developers self-serving and helps DevOps teams to guarantee application security and availability at the earliest st

System utilities

102

Awesome Bug bounty builder Project

Awesome Bug Bounty Builder ¯\(ツ)/¯ Awesome Bug bounty builder Project - ALL common Tools for find your Vulnerabilities. Tested on Debian. Installation

System utilities

Ready-to-use VSCode setup to preview/convert markdown documents

System utilities

7.3k

Testing TLS/SSL encryption anywhere on any port

System utilities

519

Vegile - Ghost In The Shell

Vegile is a tool for Post exploitation Techniques in linux. Post Exploitation techniques will ensure that we maintain some level of access and can potentially lead to deeper footholds into our targets trusted network.