Go to JsmonBook a Call

Changelog

New updates and improvements

Sep 2025

See what’s new and improved in our September update.

Jsmon 2.0 Launched!

  • New UI/UX: Fully revamped to give improved user experience.

  • Central Pane: For monitoring, rescan and overview of scans.

  • Intercom: Support added via Intercom to have chat with technical team or support team.

  • Add Ons: Add ons added for Monitoring, JS Scans to purchase additional API calls.

Improved

  • Revamped whole UI/UX

Fixed

  • Fixes in microservices

Feb 2025

See what’s new and improved in our February update.

Free API calls, Bulk Delete, Severe Issues

  • Freee API Calls: Jsmon Free Plan now contains free API calls to test out the Jsmon platform by a new user.

  • Bulk Deletion: Users can now delete multiple JS URLs, domains and file scans in one-click.

  • Severe Issues: A section of severe issues is added in the dashboard that only shows critical, high and medium severity issues found in Jsmon scans.

Improved

  • Improved regex detection for S3 buckets.

  • Secret values are now visible instead of kind of secret in the Keys & Secrets section.

  • Services field is deprecated in change monitoring section now.

Fixed

  • Fixed a bug that was sending exhaustion limits email for cronjob every minute.

  • Fixed a bug in enterprise query form (HTML sanitization).

  • Fixed a bug in API call limit exceeded service.

Jan 2025

See what’s new and improved in our January update.

Fuzzing, Subdomains and False Positives

  • JS fuzzing: URL extractor integrated in the domain scans now automatically fuzzes for common JS files like main.js, common.js, config.js, app.js, bundle.js, etc.

  • Subdomain Scan: Increase your attack surface by turning on subdomain scans when doing a domain scan. It'll auto extract and scan JS files from the main domain and the subdomains of the main domain as well.

  • FP filters: Global false positive filters are implemented to exclude common false positives occuring in the JS intelligence and Keys & Secrets service.

Improved

  • Performance improvements in microservices.

Fixed

  • Fixed few bugs in microservices intercommunication.

Dec 2024

See what’s new and improved in our December update.

Workspaces, Google Oauth and more!

  • Workspaces: Jsmon now supports workspaces. You can seggregate your data between different workspaces. Jsmon CLI uses -wkspId flag along with every flag now to insert/fetch data to/from a particular workspace.

  • Google Oauth: You can now sigin/signup with Google. If you've signed up with a Gmail work account or a normal Gmail account via Gmail, you can still login via Google using the same email.

Checkout Workspaces now!

Improved

  • API caching layers are added to reduce API response times.

  • Shorthand notations in Jsmon CLI are added: -urls, -files and -domains.

Fixed

  • Fixed bugs in JS intelligence table and export options.

Nov 2024

See what’s new and improved in our November update.

Fixes

  • Jsmon CLI: -words is now optional for -scanDomain flag. It automatically fetches the root word from the domain name if not provided.

Download Jsmon CLI now!

Improved

  • Improved UI in JS Intelligence.

Fixed

  • Fixed API parsing errors in Jsmon CLI.

Oct 2024

See what’s new and improved in our October update.

Bug Fixes!

  • Month spent on customer calls and bug fixes.

Go to Jsmon now!

Improved

  • Improved Jsmon CLI's help menu.

Fixed

  • Parsing errors in various flags.

Sep 2024

See what’s new and improved in our September update.

Expansion and SES

  • Added new detections S3 Bucket Takeovers, GraphQL fragments, Domains Statuses and 50 more hardcoded secrets in JS files.

  • Migrated to AWS SES for sending emails across the whole platform.

Jsmon CLI

  • Reverse search flag for searching JS URLs by fields like API paths, URLs, domains, IP addresses, emails, GraphQL operations, GUIDs, etc.

  • New flags: -getResultsByFileId, -getResultsByJsmonId, -totalAnalysisData to show results for a file scan, for a url scan and all the JS intelligence data respectively.

Download Jsmon CLI now!

Improved

  • Backend performance improvement by optimizing heavy DB queries.

  • Added more DB indexes for reducing the database load.

Fixed

  • Fixed bugs in scan file and scan domain endpoints.

Aug 2024

See what’s new and improved in our August update.

Jsmon CLI

  • Launched Jsmon CLI for the first-time with flags to scan a JS URL, a file filled with JS URLs, a domain, and fetch data from Jsmon APIs.

  • Added -gqlOps flag to get GraphQL operations from the analysis service data.

Download Jsmon CLI now!

Improved

  • Domain scan is improved now.

Fixed

  • A bug is fixed in forgot password.

  • A bug is fixed in Slack webhook updation.

July 2024

See what’s new and improved in our July update.

New Services

  • Analysis Service: Looks for URLs, domains, IP addresses, emails, API paths, GraphQL operations inside JS code.

  • Scanner service: Looks for 100+ hardcoded secrets inside JS files.

Deprecated Services

  • JS URL Extractor as a service is deprecated and now integrated in the domain scan itself.

Scan with Jsmon now!

Improved

  • Performance improvement in hash creation of JS responses.

  • Compare code now happens on the client side instead of server side.

  • HTTP calls are now made on serverless functions instead of on server.

Fixed

  • Fixed few bugs in the url extraction service.

Mar 2024

See what’s new and improved in our March update.

Change Monitoring

  • Added Slack webhook URL in notification channels to receive change reports directly on Slack.

Go to Change Monitoring!

Domain Scan

  • Users can delete the scan results of a domain scan directrly from the Domain Scan section.

Export

  • Export JS Intelligence results in .json format.

  • Export Keys & Secrets results in .json format.

  • Export JS URLs in .json format.

Go to JS Intelligence now!

Improved

  • Deletion in Domain Scan.

  • Export in JS Intelligence, URLs, and Keys & Secrets.

  • Added Slack in Notification Channels.

Fixed

  • Fixed few bugs in monitoring backend service.

Feb 2024

See what’s new and improved in our February update.

Jsmon Launched!

  • JS Extraction: Implemented recursive JavaScript URL discovery that crawls up to 3 levels deep to find embedded JavaScript files across domain pages.

  • JS Scanner: Implemented scanning engine that detects 100+ API keys and sensitive data patterns in JavaScript files.

  • Compare: Added diff viewer to track and visualize changes between JavaScript file versions.

  • Upload URL: Added capability to analyze individual JavaScript files via URL submission.

  • Rescan URL: Implemented one-click rescanning of previously analyzed JavaScript URLs to detect changes.

  • Upload File: Added bulk processing support through file uploads containing multiple JavaScript URLs.

  • Rescan File: Enabled batch rescanning of all JavaScript URLs from previously uploaded files.

  • Scan All: Added bulk scanning capability for all JavaScript URLs discovered by the extractor.

  • Save All: Implemented batch export of discovered JavaScript URLs to the Files section for future reference.

Scan with Jsmon now!

Last updated