Open In App

Jshole – JavaScript Components Vulnerability Scanner, Based On RetireJS

Improve
Improve
Like Article
Like
Save
Share
Report

Jshole is a free and open-source javascript vulnerability scanner based on retireJS. This tool is very useful for finding JavaScript vulnerabilities on the website. It’s a component-based vulnerability scanner available on GitHub free of cost. The tool has high code complexity. The tool is used by security researchers while researching on websites.  Jshole scans the JavaScript code of the website component on a component basis.  The Internet has millions of websites and web apps a question comes into mind whether your website is safe or not. The security of our websites plays an important role. This tool is specially designed to find JavaScript errors on websites. This tool is written in Python. You must have python 3.7 installed in your Kali Linux.

Installation

Step 1: Use the following command to install the tool from GitHub. Use the second command to move in the directory of the tool.

git clone https://github.com/callforpapers-source/jshole.git
cd jshole

Step 2: Now you are in the directory of the tool. Use the following command to install dependencies of the tool.

pip3 install -r requirements

Step 3: Use the following command to run the tool.

python3 jshole.py

The tool is running successfully. Now we will see example to use the tool.

Usage

Example 1: Use the Jshole tool to find JavaScript vulnerability on a domain.

python3 jshole.py <domain>

Example 2: Use the Jshole tool to find JavaScript vulnerability on a domain.

python3 jshole.py <domain>

This is how the tool can be used to find JavaScript vulnerability on domain(URL).


Last Updated : 12 Dec, 2022
Like Article
Save Article
Previous
Next
Share your thoughts in the comments
Similar Reads