Install and Use ParamSpider (a parameter miner)

Hey guys,

In this blog, we are going to see how to install and use the ParamSpider. A tool to mine parameters on a website.

ParamSpider is a python script which is used to find parameters from web archives of the domain. Also it could mine parameters from the subdomains as well.

Lets see how to get it installed and its usage. It might be useful for your bug hunting journey.

Everything is in the github page of the tool, this is just a simple guide. You can also follow it up from the github page.

First lets clone the repository,

git clone https://www.github.com/devanshbatham/ParamSpider
Cloning the Repository

Then we can move on to the directory to view the contents,

cd ParamSpider
ls
Contents in the directory

There is a requirements.txt file which specifies the modules needed to run the script. Lets take a look at it.

cat requirements.txt
Paramspider module requirements

If you have these python modules installed, go ahead and skip the following step, but it doesn’t hurt to run the commands though you have these installed.

pip install -r requirements.txt
Installing Modules

If you want to install it to /usr/lib/python3.x run it using sudo , it will be accessible by all users, without sudo, it will be installed to the ~/.local/python3.x directory, accessible only to the user that installed it.

And yeah, everything is set and now we may run the python script.

python3 paramspider.py
Running Paramspider

This shows the usage of the tool and some additional options, lets see more of the options.

python3 paramspider.py -h
Paramspider help

Lets test run it against google.com

python3 paramspider.py -d google.com
Simple test run against Google

This produces a lot of output.

The parameters

Wow, This script is amazing, it found 731 results, and look at the beauty of the output. the parameter is already appended with FUZZ, so you can directly use the output to fuzzers like wfuzz, ffuf etc..,

By default, the output is saved to output directory, created by the script and the file name as the domain name that we provided.

You can manipulate these using the -o option to put custom name, also you could exclude certain extensions from being displayed using the -e <extension> option.

This script offers a lot, its time for you to explore it. Go ahead.

Thanks for reading. Hope you learned something.

If you have any problems, please watch the video

https://www.youtube.com/watch?v=iS0LIhNHV2M

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store