quarta-feira, 26 de agosto de 2020

Parth - Heuristic Vulnerable Parameter Scanner


Some HTTP parameter names are more commonly associated with one functionality than the others. For example, the parameter ?url= usually contains URLs as the value and hence often falls victim to file inclusion, open redirect and SSRF attacks. Parth can go through your burp history, a list of URLs or it's own disocovered URLs to find such parameter names and the risks commonly associated with them. Parth is designed to aid web security testing by helping in prioritization of components for testing.

Usage

Import targets from a file
This option works for all 3 supported import types: Burp Suite history, newline delimited text file or a HTTP request text file.
python3 parth.py -i example.history

Find URLs for a domain
This option will make use of CommonCrawl, Open Threat Exchange and Waybackmachine to find URLs of the target domain.
python3 parth.py -t example.com

Ignore duplicate parameter names
Same parameter names across all URLs are ignored.
python3 parth.py -ut example.com

Save parameter names
This option will write all the parameter names found in a file with name params-{target}.txt for later use.
python3 parth.py -pt example.com

JSON Output
The following command will save the result as a JSON object in the specified file.
python3 parth.py -t example.com -o example.json

Credits
The database of parameter names and the risks associated with them is mainly created from the public work of various people of the community.




via KitPloit
This article is the property of Tenochtitlan Offensive Security. Verlo Completo --> https://tenochtitlan-sec.blogspot.com
More info

  1. Hack Tools
  2. Hacking Tools Name
  3. Hacking Tools Github
  4. Github Hacking Tools
  5. New Hack Tools
  6. Hacking Tools For Windows
  7. Hak5 Tools
  8. Hacking Tools And Software
  9. Hack Tools
  10. Hacker Tools Online
  11. Pentest Tools Github
  12. Pentest Automation Tools
  13. Hacking Tools For Windows 7
  14. Hack Tools Download
  15. Pentest Tools For Android
  16. Hack And Tools
  17. Hacking Tools 2019
  18. Underground Hacker Sites
  19. Hack Tools For Games
  20. Pentest Tools Tcp Port Scanner
  21. Game Hacking
  22. Pentest Tools Port Scanner
  23. How To Install Pentest Tools In Ubuntu
  24. Hacker Tools Mac
  25. Hacker Tools Linux
  26. Hacker Tools For Windows
  27. Pentest Tools Github
  28. Hack And Tools
  29. Hacking Tools Usb
  30. Blackhat Hacker Tools
  31. Hacking Tools Windows
  32. Hack Tool Apk
  33. Bluetooth Hacking Tools Kali
  34. Pentest Tools Alternative
  35. Hack Tools Github
  36. Hacker Tools Free Download
  37. Hacking Tools Usb
  38. Pentest Tools Url Fuzzer
  39. Best Pentesting Tools 2018
  40. Hacker Tools 2020
  41. Pentest Tools Download
  42. Pentest Tools Port Scanner
  43. Pentest Tools Website Vulnerability
  44. Hacking Tools 2019
  45. Nsa Hack Tools Download
  46. Hacking Tools For Mac
  47. Hacker Tools Online
  48. Pentest Tools For Mac
  49. Pentest Tools Apk
  50. Github Hacking Tools
  51. Pentest Tools Port Scanner
  52. Hacker Tools For Ios
  53. Hack Tool Apk No Root
  54. Underground Hacker Sites
  55. Beginner Hacker Tools
  56. Pentest Tools Nmap
  57. Pentest Tools Kali Linux
  58. Pentest Tools Url Fuzzer
  59. Hacking Tools Windows 10
  60. Wifi Hacker Tools For Windows
  61. Hack Tools For Ubuntu
  62. Install Pentest Tools Ubuntu
  63. Pentest Tools For Windows
  64. Best Pentesting Tools 2018
  65. Hacking Tools Pc
  66. Hack Tools For Pc
  67. Hacking Tools And Software
  68. Hacks And Tools
  69. Pentest Tools Website
  70. Hacker
  71. Hacking Tools For Windows
  72. Hacker Tools Mac
  73. Hackers Toolbox
  74. Pentest Tools Download
  75. Pentest Tools Tcp Port Scanner
  76. Nsa Hack Tools Download
  77. Hacking Apps
  78. Pentest Automation Tools
  79. Pentest Tools Download
  80. Hacking Tools 2020
  81. Nsa Hacker Tools
  82. Pentest Tools Url Fuzzer
  83. Pentest Recon Tools
  84. What Are Hacking Tools
  85. Hacker Tools Free
  86. Hack Tools Online
  87. Hacker Tools Apk Download
  88. Pentest Tools Windows
  89. Hacker Tools Online
  90. Pentest Tools For Windows
  91. Pentest Tools For Ubuntu
  92. Pentest Tools Download
  93. Hack Tools Download
  94. What Are Hacking Tools
  95. Hack App
  96. Growth Hacker Tools
  97. Beginner Hacker Tools
  98. Hacker Tools List
  99. What Are Hacking Tools
  100. Hack Tools For Windows
  101. Pentest Tools Open Source
  102. Pentest Tools For Windows
  103. Hack Tool Apk No Root
  104. Pentest Tools Nmap
  105. Hacker Tools Hardware
  106. Hack Tools
  107. Hack App
  108. Hack Tools For Windows
  109. Pentest Tools Website
  110. Pentest Tools Bluekeep
  111. Pentest Tools Open Source
  112. Pentest Tools Bluekeep
  113. Hack Tool Apk No Root
  114. Pentest Tools Url Fuzzer
  115. Beginner Hacker Tools
  116. Hacker Tools For Windows
  117. Pentest Tools Kali Linux
  118. Nsa Hacker Tools
  119. Hacker Search Tools
  120. Hacking App
  121. Hacker Tools 2020
  122. Pentest Tools For Ubuntu
  123. Nsa Hacker Tools
  124. Hacking Tools Software
  125. Pentest Tools For Windows
  126. Pentest Tools For Windows
  127. Hacking Tools 2020
  128. Pentest Tools Port Scanner
  129. Nsa Hack Tools
  130. Hack Tools For Ubuntu
  131. Hacks And Tools
  132. Kik Hack Tools
  133. Termux Hacking Tools 2019
  134. Free Pentest Tools For Windows
  135. Hacker Tools For Windows
  136. Pentest Tools Kali Linux
  137. Hacker Search Tools
Postado por Henrique Schunck às 09:11

Nenhum comentário:

Postar um comentário

Assinar: Postar comentários (Atom)