Merge pull request #45 from shriyanss/dev

shriyanss · web-flow · commit 8292baebde4a · 2025-08-06T15:29:05.000+05:30
v1.2.1-alpha.2

## 1.2.1-alpha.2 - 2025.08.06

### Added

- Added support for parsing URL list in the run module

### Changed

### Fixed
diff --git a/.gitignore b/.gitignore
@@ -152,4 +152,6 @@ mapped-openapi.json
 test.yaml
 analyze.json
 js-recon.db
-report.html
+report.html
+js_recon_run_output/
+urls.txt
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -1,5 +1,15 @@
 # Change Log
 
+## 1.2.1-alpha.2 - 2025.08.06
+
+### Added
+
+- Added support for parsing URL list in the run module
+
+### Changed
+
+### Fixed
+
 ## 1.2.1-alpha.1 - 2025.08.04
 
 ### Added
diff --git a/package.json b/package.json
@@ -1,6 +1,6 @@
 {
     "name": "@shriyanss/js-recon",
-    "version": "1.2.1-alpha.1",
+    "version": "1.2.1-alpha.2",
     "description": "JS Recon Tool",
     "main": "build/index.js",
     "type": "module",
@@ -12,7 +12,7 @@
         "build": "rm -rf build/ && tsc",
         "start": "node build/index.js",
         "test": "node build/index.js -h",
-        "cleanup": "rm -rf build output .resp_cache.json endpoints.json extracted_urls{.txt,.json,-openapi.json} strings.json mapped{-openapi.json,.json} analyze.json test{.yaml,.js} shriyanss-js-recon-*.tgz js-recon.db report.{html,md} && tsc"
+        "cleanup": "rm -rf build output .resp_cache.json endpoints.json extracted_urls{.txt,.json,-openapi.json} strings.json mapped{-openapi.json,.json} analyze.json test{.yaml,.js} shriyanss-js-recon-*.tgz js-recon.db report.{html,md} js_recon_run_output && tsc"
     },
     "keywords": [],
     "author": "Shriyans Sudhi",
diff --git a/src/globalConfig.ts b/src/globalConfig.ts
@@ -1,6 +1,6 @@
 const githubURL = "https://github.com/shriyanss/js-recon";
 const modulesDocs = "https://js-recon.io/docs/category/modules";
-const version = "1.2.1-alpha.1";
+const version = "1.2.1-alpha.2";
 const toolDesc = "JS Recon Tool";
 const axiosNonHttpMethods = ["isAxiosError"]; // methods available in axios, which are not for making HTTP requests
 
diff --git a/src/lazyLoad/globals.ts b/src/lazyLoad/globals.ts
@@ -12,11 +12,17 @@ export const pushToScope = (item) => {
 };
 
 export const getJsUrls = () => js_urls;
+export const clearJsUrls = () => {
+    js_urls = [];
+};
 export const pushToJsUrls = (url) => {
     js_urls.push(url);
 };
 
 export const getJsonUrls = () => json_urls;
+export const clearJsonUrls = () => {
+    json_urls = [];
+};
 export const pushToJsonUrls = (url: string) => json_urls.push(url);
 
 export const getMaxReqQueue = () => max_req_queue;
diff --git a/src/run/index.ts b/src/run/index.ts
@@ -8,57 +8,27 @@ import chalk from "chalk";
 import CONFIG from "../globalConfig.js";
 import analyze from "../analyze/index.js";
 import report from "../report/index.js";
+import { clearJsUrls, clearJsonUrls } from "../lazyLoad/globals.js";
 
-export default async (cmd) => {
-    globalsUtil.setApiGatewayConfigFile(cmd.apiGatewayConfig);
-    globalsUtil.setUseApiGateway(cmd.apiGateway);
-    globalsUtil.setDisableCache(cmd.disableCache);
-    globalsUtil.setRespCacheFile(cmd.cacheFile);
-    globalsUtil.setYes(cmd.yes);
+const processUrl = async (url, outputDir, workingDir, cmd, isBatch) => {
+    const targetHost = new URL(url).host.replace(":", "_");
 
-    // check if the given URL is a file
-    if (fs.existsSync(cmd.url)) {
-        console.log(chalk.red(`[!] Please provide a single URL. Parsing a list of URLs isn't available`));
-        console.log(
-            chalk.yellow(
-                `To run the tool against, a list of targets, pass the file in '-u' flag of 'lazyload' module, and it will download the JS files`
-            )
-        );
-        return;
-    }
+    console.log(chalk.bgGreenBright(`[+] Starting analysis for ${url}...`));
 
-    // check if output directory exists. If so, ask the user to switch to other directory
-    // if not done, it might conflict this process
-    // for devs: run `npm run cleanup` to prepare this directory
-    if (fs.existsSync(cmd.output)) {
-        console.log(
-            chalk.red(
-                `[!] Output directory ${cmd.output} already exists. Please switch to other directory or it might conflict with this process.`
-            )
-        );
-        console.log(
-            chalk.yellow(
-                `[i] For advanced users: use the individual modules separately. See docs at ${CONFIG.modulesDocs}`
-            )
-        );
-        return;
+    if (isBatch) {
+        clearJsUrls();
+        clearJsonUrls();
     }
 
-    const targetHost = new URL(cmd.url).host.replace(":", "_");
-
-    console.log(chalk.bgGreenBright("[+] Starting analysis..."));
-
     console.log(chalk.bgCyan("[1/8] Running lazyload to download JavaScript files..."));
-    await lazyLoad(cmd.url, cmd.output, cmd.strictScope, cmd.scope.split(","), cmd.threads, false, "", cmd.insecure);
+    await lazyLoad(url, outputDir, cmd.strictScope, cmd.scope.split(","), cmd.threads, false, "", cmd.insecure);
     console.log(chalk.bgGreen("[+] Lazyload complete."));
 
-    // if tech is undefined, i.e. it can't be detected, quit. Nothing to be done :(
     if (globalsUtil.getTech() === "") {
         console.log(chalk.bgRed("[!] Technology not detected. Quitting."));
         return;
     }
 
-    // since the app only supports next.js now, move ahead only if the tech is next
     if (globalsUtil.getTech() !== "next") {
         console.log(
             chalk.bgYellow(
@@ -68,57 +38,141 @@ export default async (cmd) => {
         return;
     }
 
-    // run strings
+    const stringsFile = isBatch ? `${workingDir}/strings.json` : "strings.json";
+    const extractedUrlsFile = isBatch ? `${workingDir}/extracted_urls` : "extracted_urls";
+    const mappedFile = isBatch ? `${workingDir}/mapped` : "mapped";
+    const mappedJsonFile = isBatch ? `${workingDir}/mapped.json` : "mapped.json";
+    const endpointsFile = isBatch ? `${workingDir}/endpoints` : "endpoints";
+    const openapiFile = isBatch ? `${workingDir}/mapped-openapi.json` : "mapped-openapi.json";
+    const analyzeFile = isBatch ? `${workingDir}/analyze.json` : "analyze.json";
+    const reportDbFile = isBatch ? `${workingDir}/js-recon.db` : "js-recon.db";
+    const reportFile = isBatch ? `${workingDir}/report` : "report";
+
     console.log(chalk.bgCyan("[2/8] Running strings to extract endpoints..."));
-    await strings(cmd.output, "strings.json", true, "extracted_urls", false, false, false);
+    await strings(outputDir, stringsFile, true, extractedUrlsFile, false, false, false);
     console.log(chalk.bgGreen("[+] Strings complete."));
 
-    // run lazyload with subsequent requests
     console.log(chalk.bgCyan("[3/8] Running lazyload with subsequent requests to download JavaScript files..."));
     await lazyLoad(
-        cmd.url,
-        cmd.output,
+        url,
+        outputDir,
         cmd.strictScope,
         cmd.scope.split(","),
         cmd.threads,
         true,
-        "extracted_urls.json",
+        `${extractedUrlsFile}.json`,
         cmd.insecure
     );
     console.log(chalk.bgGreen("[+] Lazyload with subsequent requests complete."));
 
-    // run strings again to extract endpoints from the files that are downloaded in the previous step
     console.log(chalk.bgCyan("[4/8] Running strings again to extract endpoints..."));
-    await strings(cmd.output, "strings.json", true, "extracted_urls", cmd.secrets, true, true);
+    await strings(outputDir, stringsFile, true, extractedUrlsFile, cmd.secrets, true, true);
     console.log(chalk.bgGreen("[+] Strings complete."));
 
-    // now, run map
     console.log(chalk.bgCyan("[5/8] Running map to find functions..."));
     globalsUtil.setOpenapi(true);
-    await map(cmd.output + "/" + targetHost, "mapped", ["json"], globalsUtil.getTech(), false, false);
+    if (isBatch) {
+        globalsUtil.setOpenapiOutputFile(openapiFile);
+    }
+    await map(outputDir + "/" + targetHost, mappedFile, ["json"], globalsUtil.getTech(), false, false);
     console.log(chalk.bgGreen("[+] Map complete."));
 
-    // now, run endpoints
     console.log(chalk.bgCyan("[6/8] Running endpoints to extract endpoints..."));
-    // check if the subsequent requests directory exists
-    if (fs.existsSync(`${cmd.output}/${targetHost}/___subsequent_requests`)) {
-        await endpoints(cmd.url, `${cmd.output}/${targetHost}/`, "endpoints", ["json"], "next", false, "mapped.json");
+    if (fs.existsSync(`${outputDir}/${targetHost}/___subsequent_requests`)) {
+        await endpoints(url, `${outputDir}/${targetHost}/`, endpointsFile, ["json"], "next", false, mappedJsonFile);
     } else {
-        await endpoints(cmd.url, undefined, "endpoints", ["json"], "next", false, "mapped.json");
+        await endpoints(url, undefined, endpointsFile, ["json"], "next", false, mappedJsonFile);
     }
     console.log(chalk.bgGreen("[+] Endpoints complete."));
 
-    // run the analyze module now
     console.log(chalk.bgCyan("[7/8] Running analyze to extract endpoints..."));
-    // since the thirs argument is tech, and it can't be "all", so adding type ignore
     // @ts-ignore
-    await analyze("", "mapped.json", globalsUtil.getTech(), false, "mapped-openapi.json", false, "analyze.json");
+    await analyze("", mappedJsonFile, globalsUtil.getTech(), false, openapiFile, false, analyzeFile);
     console.log(chalk.bgGreen("[+] Analyze complete."));
 
-    // run the report module now
     console.log(chalk.bgCyan("[8/8] Running report module..."));
-    await report("js-recon.db", "mapped.json", "analyze.json", "endpoints.json", "mapped-openapi.json", "report");
+    await report(reportDbFile, mappedJsonFile, analyzeFile, `${endpointsFile}.json`, openapiFile, reportFile);
     console.log(chalk.bgGreen("[+] Report complete."));
 
-    console.log(chalk.bgGreenBright("[+] Analysis complete."));
+    console.log(chalk.bgGreenBright(`[+] Analysis complete for ${url}.`));
+};
+
+export default async (cmd) => {
+    globalsUtil.setApiGatewayConfigFile(cmd.apiGatewayConfig);
+    globalsUtil.setUseApiGateway(cmd.apiGateway);
+    globalsUtil.setDisableCache(cmd.disableCache);
+    globalsUtil.setRespCacheFile(cmd.cacheFile);
+    globalsUtil.setYes(cmd.yes);
+
+    // check if the given URL is a file
+    if (!fs.existsSync(cmd.url)) {
+        // check if output directory exists. If so, ask the user to switch to other directory
+        // if not done, it might conflict this process
+        // for devs: run `npm run cleanup` to prepare this directory
+        if (fs.existsSync(cmd.output)) {
+            console.log(
+                chalk.red(
+                    `[!] Output directory ${cmd.output} already exists. Please switch to other directory or it might conflict with this process.`
+                )
+            );
+            console.log(
+                chalk.yellow(
+                    `[i] For advanced users: use the individual modules separately. See docs at ${CONFIG.modulesDocs}`
+                )
+            );
+            return;
+        }
+
+        let urlTest = new URL(cmd.url);
+        if (!urlTest) {
+            console.log(chalk.red("[!] Invalid URL"));
+            return;
+        }
+
+        await processUrl(cmd.url, cmd.output, ".", cmd, false);
+    } else {
+        // since this is a file, we need to first load the URLs in the memory remove empty strings
+        const urls = fs
+            .readFileSync(cmd.url, "utf-8")
+            .split("\n")
+            .filter((url) => url !== "");
+
+        // iterate through the URLs, and make sure they are valid URLs
+        let allPassed = true;
+        for (const url of urls) {
+            try {
+                let urlTest = new URL(url);
+            } catch (e) {
+                console.log(chalk.red(`[!] Invalid URL: ${url}`));
+                allPassed = false;
+            }
+        }
+        if (!allPassed) {
+            return;
+        }
+
+        // first of all, make a new directory for the tool output
+        const toolOutputDir = "js_recon_run_output";
+        if (fs.existsSync(toolOutputDir)) {
+            console.log(
+                chalk.red(
+                    `[!] Output directory ${toolOutputDir} already exists. Please switch to other directory or it might conflict with this process.`
+                )
+            );
+            console.log(
+                chalk.yellow(
+                    `[i] For advanced users: use the individual modules separately. See docs at ${CONFIG.modulesDocs}`
+                )
+            );
+            return;
+        }
+        fs.mkdirSync(toolOutputDir);
+
+        for (const url of urls) {
+            const thisTargetWorkingDir = toolOutputDir + "/" + new URL(url).host.replace(":", "_");
+            fs.mkdirSync(thisTargetWorkingDir);
+            const outputDir = thisTargetWorkingDir + "/output";
+            await processUrl(url, outputDir, thisTargetWorkingDir, cmd, true);
+        }
+    }
 };
