Home

Newsletter

About

A collection of write-ups from the best hackers in the world on topics ranging from bug bounties…

Follow publication

Member-only story

How to find hidden parameters in your bug bounty target

Learn how to find hidden parameters in bug bounty target

loyalonlytoday

Published in

InfoSec Write-ups

3 min read4 days ago

FREE LINK ACCESS

Finding hidden parameters will increase your chance of finding bugs. that are helps to bypass waf’s and many more.

So, let’s start with how to find hidden parameters in different ways.

Click on the link below ⬇️. TOOL CREDITS: somd3v

GitHub - s0md3v/Arjun: HTTP parameter discovery suite.

HTTP parameter discovery suite. Contribute to s0md3v/Arjun development by creating an account on GitHub.

github.com

Use the below command to install this tool.

pipx install arjun

Paste this above command and click on enter.

Arjun help command⬇️

arjun -h

Create an account to read the full story.

The author made this story available to Medium members only.
If you’re new to Medium, create a new account to read this story on us.

Continue in app

Or, continue in mobile web

Already have an account? Sign in

Published in InfoSec Write-ups

55K Followers

Last published 16 hours ago

A collection of write-ups from the best hackers in the world on topics ranging from bug bounties and CTFs to vulnhub machines, hardware challenges and real life encounters. Subscribe to our weekly newsletter for the coolest infosec updates: https://weekly.infosecwriteups.com/

Written by loyalonlytoday

357 Followers

230 Following

OSINT & BUG BOUNTY HUNTING

Responses (1)

Write a response

What are your thoughts?

Also publish to my profile

AbhirupKonwar

4 days ago (edited)

the output format of arjun is not good for mass scale testing, can you provide some oneliners or mini scripts that takes thousands of endpoints and saves all urls along with the hidden parameters found in a separate file? and also with multiple threads