Unpacking js.map files

#ethicalhacking #hacking #cybersecurity #javascript

Why?

You want to review JavaScript for vulnerabilities outside of the browser.

When?

This can be done when .js.map files are available. The hint will be unofusicated code in the browser debugger, and //# sourceMappingURL= lines on the end of obfusicated .js files.

How?

unpack failed on some content for me and consumed the first character of filenames. source-map-unpacker worked well:

npm install source-map-unpacker
node ./node_modules/source-map-unpacker/unmap.js \
  -p code.js.map -o code

Art licensed under Creative Commons by gforsythe

Top comments (0)

How to Create an interactive color-shifting hover card with Tailwind CSS and JavaScript

Michael Andreuzza - Nov 5

TryHackMe API Wizard Breach Walkthrough

haXarubiX - Nov 5

React + AWS Cognito: Email Authentication Setup Guide (First Part)

Jaime - Nov 5

Running a Function When an #await Block resolves in Svelte(Kit)

Abdullah Bashir - Nov 4

DEV Community