EN
ENNA

ParamSpider

MIT

๐Ÿ•ธ Web Scanning ยท Python

ParamSpider is a Python tool designed to mine parameters from web archives for any given domain, identifying hidden attack surfaces. It automates the process of collecting URL parameters, which can be crucial for web application testing and vulnerability discovery. By leveraging archived web data, ParamSpider provides insights into potential entry points for security assessments.

3.0kstars
470forks
36issues
Updated 1mo ago
View on GitHub

Tags

parametersweb-archiveattack-surfacereconbugbountycontent-discoveryfuzzingosintparameterparameter-finderurls-parameters

Details

Category
๐Ÿ•ธ Web Scanning
Language
Python
License
MIT
Platforms
๐Ÿงlinux๐ŸŽmacos๐ŸชŸwindows

Links

GitHub Repository

github.com/devanshbatham/ParamSpider

Releases

github.com/devanshbatham/ParamSpider/releases

Issues

github.com/devanshbatham/ParamSpider/issues

Sponsored

Your ad here

Reach security professionals and developers - ads@en-na.com

More in Web Scanning

httpx

Go

Fast multi-purpose HTTP toolkit. Probes for running HTTP servers with retries and fallbacks.

http-probetech-detectionprojectdiscovery

Nikto

Perl

Classic web server scanner. Tests for dangerous files, outdated server software, and version-specific problems.

web-serverclassiccgi-scan

Gobuster

Go

Directory/file, DNS, and vhost busting tool. Brute-forces URIs, DNS subdomains, virtual host names, and S3 buckets.

directory-brutedns-brutevhost

Feroxbuster

Rust

Fast, recursive content discovery tool written in Rust. Like gobuster on steroids with auto-recursion.

directory-bruterecursiverust

Burp Suite Community

Java

Web vulnerability scanner and proxy. Intercept, modify, and replay HTTP/S traffic for web app testing.

proxyweb-appinterceptor

ffuf

Go

Fast web fuzzer written in Go. Fuzz anything - URLs, headers, POST data - with blazing speed.

fuzzingdirectory-brutefast