Polykill.js is a free and open source JavaScript monitoring service for every website. Its purpose is simple: Automatically inventory all JavaScript files and provide a complete report on the risk associated with each file running across all user sessions.
Polykill inventories and analyzes:
- All static and dynamic scripts running on the page
- XHR and beacon calls made to 3rd parties
- Sensitive data harvesting capabilities
- Breach history of script domain owner
- Domain name transfer activity
- and much more
1. Add the script
polykill.js passively sends an inventory of running JavaScript files to the risk API for analysis.
2. Log in to polykill.io and review
- Risk analysis on full JavaScript domain, path and parameters
- Risk analysis of 3rd party payload, breach history and more
- Reports can be sent automatically via email
Please send me an email when the JS option is ready - I would like to use it on my site.