Support
Knowledge Base Nodes

JavaScript Files Node

This document is for:
Invicti Standard, Invicti Enterprise On-Premises, Invicti Enterprise On-Demand

JavaScript is a scripting language that enables interactive web pages. It runs inside your browser and is an important part of web applications.

Although JavaScript is valuable to developers, attackers can use it to exploit unsanitized input and inject malicious scripts into a web page.

During its scan, Invicti identifies JavaScript Files and lists them in the Knowledge Base panel. Security professionals can then refer to the list to make sure that all JavaScripts on the target website are secure and are being used appropriately. Also, this list enables professionals to check them manually.

Once the scan is completed, all JavaScript files are listed under the JavaScript Files node in the Knowledge Base. You can access the same information in the Knowledge Base Report and Knowledge Base Tab.

Invicti forms Knowledge Base nodes on its findings. If the JavaScript Files node is not listed, it means that Invicti did not find any.

For further information, see Knowledge Base Nodes.

How to View the JavaScript Files Node in Invicti Enterprise
  1. Log in to Invicti Enterprise.
  2. From the main menu, click Scans, then Recent Scans. The Recent Scans window is displayed.
  3. Next to the relevant website, click Report.
  4. From the Technical Report section, click the Knowledge Base tab.
  5. Click the JavaScript Files node. The information is displayed in a JavaScript Files tab.

How to View the JavaScript Files Node in Invicti Standard
  1. Open Invicti Standard
  2. Start a Scan or open a previously saved scan.
  3. The Knowledge Base is displayed on the right of the Scan Summary Dashboard. (If it is hidden, display it again using the Knowledge Base icon on the View tab on the ribbon. Alternatively, click the Reset Layout icon on the View tab, then close the Activity/Progress/Logs panes to give maximum viewing space.)

  1. Ensure that the Knowledge Base Viewer is also displayed. (If it is hidden, you can display it again using the Knowledge Base Viewer button on the View tab. You may also want to close the Activity/Progress/Logs panes.)
  2. Click the JavaScript Files node in the Knowledge Base. All detected JavaScript Files are displayed in the Knowledge Base Viewer.