Firefox ๋ธŒ๋ผ์šฐ์ € ๋ถ€๊ฐ€ ๊ธฐ๋Šฅ
  • ํ™•์žฅ ๊ธฐ๋Šฅ
  • ํ…Œ๋งˆ
    • Firefox์šฉ
    • ์‚ฌ์ „ ๋ฐ ์–ธ์–ด ํŒฉ
    • ๋‹ค๋ฅธ ๋ธŒ๋ผ์šฐ์ € ์‚ฌ์ดํŠธ
    • Android ๋ถ€๊ฐ€ ๊ธฐ๋Šฅ
๋กœ๊ทธ์ธ
Jsmon Security Analyzer โ€” Web Security Inspector ๋ฏธ๋ฆฌ๋ณด๊ธฐ

Jsmon Security Analyzer โ€” Web Security Inspector ์ œ์ž‘์ž: Jsmon

Capture and analyze browser traffic in real time. Detects exposed secrets, shadow APIs, and supply chain risks in JS, HTML, JSON, YAML, and 20+ file types. Powered by Jsmon.

0 (๋ฆฌ๋ทฐ 0๊ฐœ)0 (๋ฆฌ๋ทฐ 0๊ฐœ)
์‚ฌ์šฉ์ž 36๋ช…์‚ฌ์šฉ์ž 36๋ช…
Firefox๋ฅผ ๋‹ค์šด๋กœ๋“œํ•˜๊ณ  ํ™•์žฅ ๊ธฐ๋Šฅ์„ ๋ฐ›์œผ์„ธ์š”
ํŒŒ์ผ ๋‹ค์šด๋กœ๋“œ

ํ™•์žฅ ๋ฉ”ํƒ€ ๋ฐ์ดํ„ฐ

์Šคํฌ๋ฆฐ์ƒท
Jsmon.sh Home PageResponse headers in ReconnaissanceS3 buckets in ReconnaissanceScan Options in Jsmon
์ •๋ณด
Jsmon Security Analyzer โ€” Browser Extension

Automatically capture and analyze web traffic directly from your browser.
Every JavaScript file, API response, config, and document is sent to
Jsmon's External Attack Surface Management (EASM) engine for real-time
security analysis โ€” no manual uploads, no proxies required.

What it detects
  • Exposed secrets โ€” API keys, tokens, credentials leaked in JS or config files
  • Shadow APIs โ€” undocumented or forgotten endpoints buried in frontend code
  • Supply chain risks โ€” vulnerable or suspicious NPM packages loaded at runtime
  • Sensitive data exposure โ€” PII, internal paths, environment variables
  • Misconfigured assets โ€” insecure headers, open redirects, debug artifacts

Supported file types

JS ยท JSX ยท TS ยท HTML ยท PHP ยท ASPX ยท CFG ยท YAML ยท JSON ยท XML ยท ENV ยท
INI ยท TXT ยท CSV ยท LOG ยท SQL ยท GRAPHQL ยท WASM ยท MAP ยท and more (20+ extensions)

How it works
  1. Install the extension and connect your Jsmon account
  2. Browse normally โ€” the extension passively captures traffic
  3. Matched file types are forwarded to Jsmon for deep analysis
  4. View findings in your Jsmon dashboard: secrets, APIs, risks, asset inventory

Who it's for
  • Security engineers running recon or pen tests on web applications
  • AppSec & EASM teams monitoring their organization's external attack surface
  • Bug bounty hunters accelerating JS recon workflows
  • CISOs & compliance teams enforcing continuous visibility across web assets

About Jsmon

Jsmon is an AI-powered External Attack Surface Management platform trusted
by security teams worldwide. Built by practitioners, for practitioners.

๐Ÿ”— jsmon.sh
0๋ช…์ด 0์ ์œผ๋กœ ํ‰๊ฐ€ํ•จ
๋กœ๊ทธ์ธํ•˜์—ฌ ์ด ํ™•์žฅ ๊ธฐ๋Šฅ์˜ ํ‰์ ์„ ๋‚จ๊ฒจ์ฃผ์„ธ์š”
์•„์ง ํ‰์ ์ด ์—†์Šต๋‹ˆ๋‹ค

๋ณ„์  ์ €์žฅ๋จ

5
0
4
0
3
0
2
0
1
0
์•„์ง ๋ฆฌ๋ทฐ ์—†์Œ
๊ถŒํ•œ ๋ฐ ๋ฐ์ดํ„ฐ

ํ•„์ˆ˜ ๊ถŒํ•œ:

  • ๋ธŒ๋ผ์šฐ์ € ํƒญ์— ์ ‘๊ทผ
  • ๋ชจ๋“  ์›น์‚ฌ์ดํŠธ์—์„œ ์‚ฌ์šฉ์ž์˜ ๋ฐ์ดํ„ฐ์— ์ ‘๊ทผ
๋” ์•Œ์•„๋ณด๊ธฐ
์ถ”๊ฐ€ ์ •๋ณด
๋ถ€๊ฐ€ ๊ธฐ๋Šฅ ๋งํฌ
  • ํ™ˆ ํŽ˜์ด์ง€
  • ์ง€์› ์‚ฌ์ดํŠธ
  • ์ง€์› ์ด๋ฉ”์ผ
  • ๋ถ€๊ฐ€ ๊ธฐ๋Šฅ ID ๋ณต์‚ฌ
๋ฒ„์ „
1.5
ํฌ๊ธฐ
2.05 MB
๋งˆ์ง€๋ง‰ ์—…๋ฐ์ดํŠธ
ํ•œ ๋‹ฌ ์ „ (2026๋…„ 6์›” 3์ผ)
๊ด€๋ จ ์นดํ…Œ๊ณ ๋ฆฌ
  • ์›น ๊ฐœ๋ฐœ ๋„๊ตฌ
  • ๊ฐœ์ธ ์ •๋ณด ๋ณดํ˜ธ ๋ฐ ๋ณด์•ˆ
๋ผ์ด์„ ์Šค
MIT ๋ผ์ด์„ ์Šค
๋ฒ„์ „ ๋ชฉ๋ก
  • ๋ชจ๋“  ๋ฒ„์ „ ๋ณด๊ธฐ
ํƒœ๊ทธ
  • security
๋ชจ์Œ์ง‘์— ์ถ”๊ฐ€
์ด ๋ถ€๊ฐ€ ๊ธฐ๋Šฅ ์‹ ๊ณ 
Mozilla ํ™ˆํŽ˜์ด์ง€๋กœ ์ด๋™

๋ถ€๊ฐ€ ๊ธฐ๋Šฅ

  • ์†Œ๊ฐœ
  • Firefox ๋ถ€๊ฐ€ ๊ธฐ๋Šฅ ๋ธ”๋กœ๊ทธ
  • ํ™•์žฅ ๊ธฐ๋Šฅ ์›Œํฌ์ƒต
  • ๊ฐœ๋ฐœ์ž ํ—ˆ๋ธŒ
  • ๊ฐœ๋ฐœ์ž ์ •์ฑ…
  • ์ปค๋ฎค๋‹ˆํ‹ฐ ๋ธ”๋กœ๊ทธ
  • ํฌ๋Ÿผ
  • ๋ฒ„๊ทธ ์‹ ๊ณ 
  • ๋ฆฌ๋ทฐ ์ง€์นจ

Download

  • Download Firefox
  • Windows
  • macOS
  • iOS
  • Android
  • Linux
  • All

Latest Builds

  • Nightly
  • Beta

Firefox for Business

  • Enterprise

Community

  • Connect
  • Contribute
  • Developer

Follow

  • Instagram
  • YouTube
  • TikTok
  • Bluesky
  • Podcast
  • ๊ฐœ์ธ ์ •๋ณด
  • ์ฟ ํ‚ค
  • ๋ฒ•๋ฅ 

ํŠน๋ณ„ํ•œ ๊ณ ์ง€๊ฐ€ ์—†๋Š” ํ•œ, ๋ณธ ์‚ฌ์ดํŠธ์˜ ์ฝ˜ํ…์ธ ๋Š” Commons Attribution Share-Alike License v3.0 ๋˜๋Š” ๊ทธ ์ดํ›„ ๋ฒ„์ „์— ๋”ฐ๋ผ ์‚ฌ์šฉ์ด ํ—ˆ๊ฐ€๋ฉ๋‹ˆ๋‹ค.