This tool automates the process of extracting hidden or undocumented endpoints from JavaScript files during recon. It's tailored for bug bounty hunters and red teamers who want to uncover API routes and internal paths for exploitation.
- Extracts endpoints using LinkFinder
- Auto-maps relative paths to full URLs using JS file source
- Supports full and relative URLs
- Works with thousands of JS files
- Output ready for use with tools like Burp Suite, httpx, ffuf, nuclei
python3- LinkFinder
httpx(optional for live testing)
pip install -r https://raw.githubusercontent.com/GerbenJavado/LinkFinder/master/requirements.txt
go install -v github.com/projectdiscovery/httpx/cmd/httpx@latest
🚀 Usage
chmod +x extract-all-endpoints.sh
./extract-all-endpoints.sh -i <input_js_file> -o <output_file>
🧾 Flags
Flag Description Required
-i Input file containing JavaScript file URLs (one per line) ✅ Yes
-o Output file where full mapped endpoints will be saved ✅ Yeshttps://www.target.com/scripts/lib.js
https://cdn.example.com/js/app.bundle.js
./extract-all-endpoints.sh -i jsfiles.txt -o all_endpoints.txt
This will:
Run LinkFinder on each JavaScript URL
Extract all endpoints (/api/..., /auth/..., http://...)
Automatically map relative paths to full URLs
Save results into all_endpoints.txt