jxscout-relationships

Official

Map web asset relationships for attack surface analysis.

Authordreadnode
Version1.0.0
Installs0

System Documentation

What problem does it solve?

Manually tracing how web assets like JavaScript files, iframes, and source maps connect across a page is time-consuming and error-prone, especially when scoping an attack surface for web security testing.

Core Features & Use Cases

  • Loaded JS File Mapping: Retrieve all JavaScript files loaded by a target HTML page, including reversed source map files, to focus analysis on relevant runtime code.
  • Impact Assessment: Identify which HTML pages load a specific JavaScript file to understand the blast radius of a potential vulnerability.
  • Iframe Analysis: List all iframes embedded by a page to assess postMessage risks, cross-origin interactions, and clickjacking vulnerabilities.
  • Use Case: When testing a customer-facing web application, use this skill to map all assets on the login page to identify exposed debug endpoints in lazy-loaded chunks and cross-origin iframes that could be leveraged for attacks.

Quick Start

Use the jxscout-relationships skill to map all JavaScript files and embedded iframes loaded by your target web application's homepage to scope your attack surface.

Dependency Matrix

Required Modules

None required

Components

Standard package

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: jxscout-relationships
Download link: https://github.com/dreadnode/capabilities/archive/main.zip#jxscout-relationships

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 536,000+ vetted skills library on demand.