GitHub - jr-boney/fapi: fapi helps to find leaked api keys

fapi - Find API Keys Easily

fapi is a simple tool to find exposed API keys from subdomains using Wayback Machine, gau, and hakrawler.

Features

Finds subdomains using subfinder
Extracts JavaScript files using waybackurls, gau, and hakrawler
Extracts API keys from .js files only (to reduce false positives)
Saves results to a file if specified

Installation

Requirements

Install dependencies first:

sudo apt install subfinder
go install github.com/tomnomnom/waybackurls@latest
go install github.com/lc/gau@latest
go install github.com/hakluke/hakrawler@latest
go install github.com/tomnomnom/anew@latest

Installation

git clone https://github.com/jr-boney/fapi
cd fapi
sudo mv fapi /usr/local/bin/fapi
sudo chmod +x /usr/local/bin/fapi

Usage

fapi -d example.com

To save results to a file:

fapi -d example.com -o results.txt

Name		Name	Last commit message	Last commit date
Latest commit History 2 Commits
README.md		README.md
fapi.sh		fapi.sh

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

fapi - Find API Keys Easily

Features

Installation

Requirements

Installation

Usage

About

Releases

Packages

Languages

jr-boney/fapi

Folders and files

Latest commit

History

Repository files navigation

fapi - Find API Keys Easily

Features

Installation

Requirements

Installation

Usage

About

Resources

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages