Some people asked me about publishing a comparison between x8 and other major tools for parameter discovery: Arjun and Param Miner, so he

Parameter discovery tools comparison

submited by
Style Pass
2021-07-10 18:00:04

  Some people asked me about publishing a comparison between x8 and other major tools for parameter discovery: Arjun and Param Miner, so here it is!

  Parameter discovery tools help to find parameters that can be vulnerable or able to reveal some hidden features. In this post, I am going to check the speed and accuracy of these tools. For tests, I used a wordlist with 26k parameters. If you don't have time to read the whole post - you can go directly to the summary at the end of a page.

  Used -c 256 flag because the initial amount of parameters per request is too huge and some pages ignore the rest of the parameters or throw some errors. Also, I modified error_handler.py:29 because it causes the tool to stop on 400 HTTP code.

  Used disable origin cachebuster, disable basic wordlist, force bucketsize = 256 (sometimes works very bad and sends 6-12 parameters per request), disable response (this flag allows the tool to search parameters in every response. I don't like it because sometimes it increases the number of requests by a few times), use custom wordlist flags.   Default request: GET /PATH HTTP/1.1 Host: host User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/83.0.4103.97 Safari/537.36 Accept-Charset: utf-8, iso-8859-1;q=0.5, *;q=0.1 Accept-Language: en-US, *;q=0.5 Accept: */*

Leave a Comment