Bug Bounty Hub
  • πŸš€WELCOME
    • Bug Bounty Hub
    • BBH - Values
    • About the author
  • πŸ•ΈοΈPENTESTING WEB
    • Information Gathering
      • Enumerating ASN and IP blocks
      • Reverse IP Lookup
      • Scanning Open Ports/Services
      • Subdomain Enumeration
        • Active Subdomain Enumeration
        • Passive Subdomain Enumeration
        • Subdomain Permutations
        • Check Alive Subdomains
      • Subdomain Takeover
      • Fuzzing
      • JavaScript Files
      • Endpoints
      • Input Parameters
      • Mapping Attack Surface - Crawling/Spider
      • Fingerprinting
      • Potential Vulnerabilities - Nuclei
    • Client-Side Injection Attacks
    • Server-Side Vulnerabilities
      • Path Traversal/File Inclusion
      • Access Control
      • Authentication
      • Server-side Request Forgery (SSRF)
      • File upload vulnerabilities
      • OS Command Injection
      • SQL Injection
        • MySQL Injection
        • SQLi with SQLMap
    • Authentication
    • Insecure Direct Object Reference (IDOR)
    • Cross-Site Request Forgery Attacks
    • Business Logic Flaws
    • HTTP Verb Tampering
    • Bypass 401 & 403
    • Evading WAFs
    • Reporting
  • 🐣THE BASICS OF WEB
    • HTTP Methods
    • HTTP Response Codes
    • HTTP Headers
      • AWS S3 Buckets Headers
    • HTTP Cookies
    • Encoding
      • URL encoding
      • HTML encoding
      • Base 64 encoding
      • Unicode encoding
    • Web Browsers
      • Same-Origin Policy (SOP)
      • Content Security Policy (CSP)
      • Subresource Integrity Check (SIC)
    • Web Proxies
  • πŸ“šRESOURCES
    • Books
    • Web resources
    • CTF Platforms
  • πŸ”οΈBug Bounty Platforms
Powered by GitBook
On this page
  • Enumerating Input Parameters
  • Arjun
  • Generating Custom Wordlist

Was this helpful?

  1. PENTESTING WEB
  2. Information Gathering

Input Parameters

Input parameters are values sent through URLs that websites use to process user requests, often seen in GET and POST requests. Identifying these parameters is crucial in bug bounty hunting, as they can reveal vulnerabilities like SQL injection, XSS, or IDOR. This guide outlines techniques to efficiently discover input parameters using tools like Arjun and custom wordlist generation from web archives.

Enumerating Input Parameters

Arjun

arjun -u $URL -t 10

Generating Custom Wordlist

The following command searches Web Archives for URL parameters (identified by =) across all subdomains. It then removes duplicate parameters:

echo $domain | gau | unfurl --unique keys

PreviousEndpointsNextMapping Attack Surface - Crawling/Spider

Last updated 5 months ago

Was this helpful?

πŸ•ΈοΈ