JSLeakRecon
JSLeakRecon is an ultimate JavaScript scanning tool designed for offensive security professionals, defensive security analysts, penetration testers, bug hunters, and developers. This tool helps to detect potential credential leaks, hardcoded sensitive information (like API keys, tokens, secrets), and other security vulnerabilities in JavaScript files. With features like real-time URL scanning, multithreading, and stealth user-agent rotation, JSLeakRecon is crucial for both proactive identification of security flaws before production (for defensive use) and effective reconnaissance in offensive security contexts.
Features
- Real-time scanning of JavaScript files from URLs or Local filesystem.
- Detect hardcoded credentials like passwords, API keys, tokens, and other secrets.
- Supports multithreaded scanning for faster results.
- Stealth scanning with random user-agent rotation for web anonymity.
- Customizable regex patterns through regex.yaml for specific leak detection.
- Generates reports in HTML, TXT, and log file formats.
- Supports scanning of both local .js files and web-based JavaScript files.
GPTsSystemPrompts
Explore an exclusive collection of ChatGPT’s most popular and trending custom instructions prompts, along with secret GPT plugin system prompts that have now LEAKED. From Prompt Injections to Prompt Leaking, this uncovers how ChatGPT’s internal systems and custom instructions work together to create smarter, more effective AI interactions.
Learn how these leaked prompts are influencing GPT Behavior, Optimizing Responses, and Uncovering the Techniques behind custom GPT plugin usage. Stay ahead in the AI-driven world with insights into the top GPT prompts used worldwide, and understand how prompt injection attacks and prompts leaking could impact the future of language models.
Get insider access to the methods and strategies behind prompt crafting for both general use and specialized plugin operations. Whether you're a developer, AI enthusiast, or security researcher, this collection reveals the hidden layers of ChatGPT's prompt system that have been kept secret — until now.
ShoSubFinder
ShoSubFinder is a powerful and specialized reconnaissance tool to discover subdomains for a specified domain, organization, or ASN by leveraging the extensive database of Shodan. Whether you're conducting a security assessment, gathering intelligence for a research project, or simply exploring the digital landscape, ShoSubFinder is your reliable companion. It provides a flexible and streamlined approach to uncovering the subdomains of targets through passive reconnaissance techniques.
Features
- Domain Search: Look for subdomains related to a specific domain.
- Organization Search: Find subdomains associated with a particular organization.
- ASN Search: Discover subdomains linked to a specific ASN.
- Combination Searches: Combine the above searches to get comprehensive results.
- Export to File: Easily save the list of found subdomains to a file for further analysis.
FetchAllSrc
FetchAllSrc, also known as fas, is a streamlined command-line tool designed for fetching web resources or source code directly from provided URLs and saves them with clear, web-structure-mirrored names in a specified directory.
Features
- ⚡️ Concurrent Downloads: FetchAllSrc uses goroutines to handle multiple downloads simultaneously, speeding up the process and efficiently using network resources.
- 🛠️ Error Handling and Logging: The tool logs all download activities, capturing Failures and Success details in log files to aid troubleshooting.
- 📊 Progress Tracking: Displays real-time download progress, giving users visibility into the status of each download task.
- 🔒 Safe Filename Conversion: Automatically sanitizes URLs into valid filenames by replacing unsupported characters, ensuring compatibility across different operating systems.