#nuclei Js-analyse template is updated now!
The new update include extraction of :
-S3 buckets.
-Private keys.
-Github-Personal-Access-Token.
-Github-OAuth-Access-Token.
-Ajax request in JavaScript could led to find more backend requests .
Best regards
https://t.co/G6sgWKInXG
Big updates are coming to nuclei template "js-analyse" to extract more creds,api keys,private keys (SSH) also it will extract S3 bucket from javascript files.
@asdasd910184083@0xaudron They have thousands of public reportsโand writeups and blogs .. and why they risking there assets and privacy to learn from new reports ๐ค
I built FoxHound, a Firefox extension that gives any AI agent full control over your browser.
I needed this while hunting. There are bugs the egent can not properly exploit without using the browser. Clicking things, reading the DOM, replaying requests, checking cookies across containers, running JS on the page. So i built it.
The agent can navigate tabs, click elements, fill and submit forms, upload files, take screenshots, capture all HTTP traffic with full request and response bodies, replay and modify requests, read and write cookies and storage, intercept live requests, hook into postMessage traffic, WebSocket connections, route changes, console output, service workers, and more.
It also uses PwnFox containers so the agent knows which container each request came from. If you are doing multi account testing, everything stays separated.
Setup takes 2 minutes:
1. Install the extension: https://t.co/zp0L5sonlL
2. Run: npm install -g foxhound-mcp
3. Copy the config from the extension options page into your MCP client. Done.
It is free. Give it a try and if you find any issues or want to add anything, open an issue on the GitHub: https://t.co/XtmZfbZzcU
Burp Bounty Pro v3.1.0 is out.
New: AI Scanner. Sends each request to an LLM with structured context extracted from the response. The AI decides which profiles to launch automatically.
A new option alongside Active Scan and Smart Scan, not a replacement.