bl0g 0n h4xx
A.com/static/js/test.js, I want to scan
A.com/static/js/. Additionally I always want to scan
The notification looks like this:
The Output of the tool looks like this:
cat top_websites.txt | hakrawler -js -depth 1 -scope yolo -plain | unfurl path | rev | cut -d "/" -f1 | rev | tee -a wordlist-topsites.txt
curl https://api.cdnjs.com/libraries | jq -r '.results.latest' | rev | cut -d '/' -f1 | rev > wordlist-cdnjs.txt
Additionally, I manually filtered and normalized the resulting wordlist.
I will try to keep updating the wordlist in the future.
@r0bre, 30. June 2020