This workflow is designed to help developers and security analysts identify hidden or undocumented API endpoints on dynamic websites, especially those built with modern frameworks. It combines traditional regex techniques and advanced AI-driven analysis to extract, validate, and organize API routes embedded within JavaScript files. Starting with fetching the website’s HTML content, the workflow extracts JavaScript file URLs and filters relevant files that potentially contain API endpoints. It then retrieves the content of these JS files and performs analysis with large language models (LLMs) to identify and describe API endpoints, including methods and parameters. The system iteratively generates and validates custom regex patterns to automate the extraction process further, ensuring high accuracy. This workflow is particularly valuable for security audits, reverse engineering, or uncovering undocumented API services for integration or testing in modern SPAs and complex web applications.
Automated Discovery of Hidden API Endpoints Using n8n and AI
| Node Count | >20 Nodes |
|---|---|
| Nodes Used | @n8n/n8n-nodes-langchain.agent, @n8n/n8n-nodes-langchain.lmChatOpenRouter, @n8n/n8n-nodes-langchain.outputParserAutofixing, @n8n/n8n-nodes-langchain.outputParserStructured, @n8n/n8n-nodes-langchain.toolWorkflow, convertToFile, executeWorkflowTrigger, extractFromFile, filter, html, httpRequest, if, manualTrigger, merge, noOp, readWriteFile, removeDuplicates, set, sort, splitInBatches, splitOut, stickyNote |
Be the first to review “Automated Discovery of Hidden API Endpoints Using n8n and AI”
Reviews
There are no reviews yet.