https://github.com/j1anFen/burp_jspath

burp_jspath

获取js文件和html中script标签内容中的接口，用于渗透中发现隐藏API，未授权访问等漏洞。

插件使用了linkfinder探测js中路径的正则语句。

environment

• jython 2.7
• BurpSuite Proxy

Features

• get js file path
• get html script tags path
• filter assets content

Usage

Import this extension of Burp Suite.

Save to log file when there is more content.

Reference

regexp code

https://github.com/GerbenJavado/LinkFinder/blob/master/linkfinder.py#L29