JS Intelligence

JS Intelligence features information from the JS responses which are scanned in the JS URL, File and Domain Scan.

Collected Fields

The intelligence information includes:

URLs
Domains
IP Addresses
Emails
S3 Buckets
API Paths
GQl Queries
GQL Mutations
Node Modules with dependency confusion
GUIDs
Domains Status (For Second Order Domain Takeovers)
Query Param URLs
S3 Bucket Takeovers
Localhost URLs
URLs with ports
URLs with file extensions
Detecting functions for exploiting client-side vulnerabilities
- Exec data
- Set Interval calls
- DOM XSS
- DOM Based DOS
- Client-side SQLi
- DOM Based Open Redirection
- DOM Based Link Manipulation
- DOM Based Ajax Header Manipulation
- Set Timeout Calls

About Columns (JS URL, <Field>, Created On)

JS URL

It is the JS URL in which the fields are detected. Let's suppose you're on Emails tab. The left most cells contains the JS URLs.

<Field>

Each JS URL can have multiple detections for a particular field. Let's say you are on API Paths tab. Now, one JS URL can have 100+ API paths in it. In order to see, all of the API paths, click on +x More button where x is the total number of detected <fields>.

Created On

It's the timestamp when JS Intelligence service did the scan over the JS response to detect all the fields written above.

Export

By clicking on Export button, you can export all the fields of a tab as .json file. If you've searched for a term, then only searched results will be exported.

PreviousFiles Scan NextKeys & Secrets

Last updated 2 months ago

Was this helpful?