#parameters

plution on offsec.tools
plution

Prototype pollution scanner using headless chrome.

qsinject on offsec.tools
qsinject

Allows you to quickly substitute query string values with regex matches, one-at-a-time.

gitscraper on offsec.tools
gitscraper

Scrapes public GitHub repositories for common naming conventions in variables, folders and files.

BlackWidow on offsec.tools
BlackWidow

Web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.

XSpear on offsec.tools
XSpear

Powerfull XSS Scanning and Parameter analysis tool&gem.

See-SURF on offsec.tools
See-SURF

Detect Vulnerable SSRF parameters.

param-miner on offsec.tools
param-miner

Identifies hidden, unlinked parameters, useful for finding web cache poisoning vulnerabilities.

parameth on offsec.tools
parameth

Brute discover GET and POST parameters.

GAP on offsec.tools
GAP

A Burp Suite extension to find potential endpoints and parameters.

fuzzagotchi on offsec.tools
fuzzagotchi

A fuzzing tool written in Go. It helps your pentesting journey.

Arjun on offsec.tools
Arjun

HTTP parameter discovery suite.

ParamSpider on offsec.tools
ParamSpider

Mining parameters from dark corners of Web Archives.

xnLinkFinder on offsec.tools
xnLinkFinder

A python tool used to discover endpoints and potential parameters for a given target.

X8 on offsec.tools
X8

Hidden parameters discovery suite.