Question 1

How to use LinkFinder with Burp Suite?

Accepted Answer

Save selected items from Burp Suite, then input the file with the -b flag. For example: python linkfinder.py -i burpfile -b, as specified in the README examples.

Question 2

LinkFinder vs. other endpoint discovery tools like JS Miner?

Accepted Answer

LinkFinder focuses on regex-based extraction from JavaScript files, while others may use different methods or sources. It's efficient for static JS analysis but might not handle dynamic content as well as some alternatives.

Question 3

Does LinkFinder work on Windows?

Accepted Answer

Yes, LinkFinder is cross-platform as it's Python-based, but Docker support is recommended for consistent execution. Ensure Python 3 and dependencies are installed correctly.

Question 4

How to filter results to only show API endpoints?

Accepted Answer

Use the -r flag with a regex pattern, such as -r ^/api/, to filter endpoints. This helps narrow down results to specific patterns during reconnaissance.

Question 5

Can LinkFinder handle authenticated websites?

Accepted Answer

It supports basic cookie injection with -c, but for complex authentication like OAuth or sessions, you may need to manually extract and supply cookies, as it lacks built-in login mechanisms.

Question 6

What's the difference between HTML and CLI output in LinkFinder?

Accepted Answer

HTML output uses jsbeautifier for formatted visual results, while CLI output is plaintext and faster, ideal for scripting or quick scans. The README notes CLI mode skips beautification.

LinkFinder

What is LinkFinder?

Overview

Use Cases

Best For

Related Projects

Found a gem we're missing?

Not Ideal For

Pros & Cons

Pros

Cons

Frequently Asked Questions