m4ll0k / Aron
Licence: gpl-3.0
Aron is a GO script for finding hidden GET & POST parameters
Stars: ✭ 134
Programming Languages
go
31211 projects - #10 most used programming language
Aron
Aron is a simple GO script for finding hidden GET & POST parameters with bruteforce.
Installation
$ go get -u github.com/m4ll0k/Aron
$ ./Aron
Usage
Usage of ./aron:
-H string
Set headers ('name:value,name:value')
-d string
Set post data
-g Set get method
-h Show this Help
-p Set post method
-u string
Set target URL
-w string
Set your wordlist (default "dict.txt")
GET BRUTEFORCE:
$ ./aron -u http://www.test.com/index.php -g
$ ./aron -u http://www.test.com/index.php<[?|id=1|id=1&]> -g
$ ./aron -u http://www.test.com/index.php<[?|id=1|id=1&]> -g -w my_wordlist.txt
POST BRUTEFORCE:
$ ./aron -u http://www.test.com/index.php -p #basic fuzz with post method
$ ./aron -u http://www.test.com/index.php<[?id=1]> -p -d "user=1" #set post data
$ ./aron -u http://www.test.com/index.php<[?id=1]> -p -d "user=1" -H 'cookie: test=20,x-header: 10' #set headers name:value,name:value,...
$ ./aron -u http://www.test.com/index.php<[?|id=1|id=1&]> -p -d "user=1" -w my_wordlist.txt #set wordlist
Note that the project description data, including the texts, logos, images, and/or trademarks,
for each open source project belongs to its rightful owner.
If you wish to add or remove any projects, please contact us at [email protected].