Overview
Stop manually searching source code. Start hunting. LPR (Live Params & Redirects) is an all-in-one reconnaissance and…
Stop manually searching source code. Start hunting. LPR (Live Params & Redirects) is an all-in-one reconnaissance and vulnerability scanning assistant designed for Bug Bounty Hunters, Penetration Testers, and Web Developers. Instead of wasting time inspecting elements and grepping through minified JavaScript files, LPR automatically extracts and categorizes every potential injection point and hidden asset on the page. π Key Features: π΅οΈβοΈ Deep Parameter Extraction: Automatically scrapes parameters from HTML forms, DOM inputs, and JavaScript variables (var, let, const). π Advanced Asset Discovery: Digs into external .js files to find full URLs (S3 buckets, API endpoints) and hidden Routes (e.g., /api/v1/admin) that are invisible in the UI. βοΈ XSS & Security Scanner: proactively hunts for Dangerous Sinks (innerHTML, eval), React/Vue bypass patterns, and javascript: URIs to speed up your XSS discovery. π IDOR Hunting: Instantly lists all ID-related patterns (e.g., user_id, order_uuid, account_id) found in the source code with line numbers. π Redirect Analysis: Detects potential Open Redirect vulnerabilities by scanning for window.location, meta refresh, and navigation sinks. πΎ Accumulative Scanning: Data is saved as you browse. The extension prevents accidental tab closing to ensure you never lose your reconnaissance data during a session. Why LPR? Whether you are looking for hidden API endpoints, testing for IDORs, or hunting for DOM-based XSS, LPR gives you a bird's-eye view of the target's attack surface in seconds. Happy Hunting!
Details
- Version0.6
- UpdatedDecember 12, 2025
- Offered byAriZionX
- Size14.52KiB
- LanguagesEnglish
- DeveloperAri ZionX
Saray Cumhuriyet, Mimar Sinan Cd No:32 Pursaklar, Ankara 06146 TREmail
arizionx@gmail.com - Non-traderThis developer has not identified itself as a trader. For consumers in the European Union, please note that consumer rights do not apply to contracts between you and this developer.
Privacy
LPR - Ultimate Recon & Bug Hunting Tool has disclosed the following information regarding the collection and usage of your data. More detailed information can be found in the developer's privacy policy .
LPR - Ultimate Recon & Bug Hunting Tool handles the following:
This developer declares that your data is
- Not being sold to third parties, outside of the approved use cases
- Not being used or transferred for purposes that are unrelated to the item's core functionality
- Not being used or transferred to determine creditworthiness or for lending purposes
