View on GitHub

Analysis of top25-parameter

For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon.

Download this project as a .zip file Download this project as a tar.gz file

The statistical parameter analysis is a super power. The more we can do it, the better testers we can be.


What is top25-parameter?

For basic researches, top 25 vulnerable parameters based on frequency of use with reference to various articles. These parameters can be used for automation tools or manual recon. Although the prevalence percentages of these parameters cannot be proven precisely, they were prepared by the TR Bug Hunters Community, which I founded, and myself.

This repo contains common parameters of the following vulnerabilities:

- Cross-Site Scripting (XSS)
- Server-Side Request Forgery (SSRF)
- Local File Inclusion (LFI)
- SQL Injection (SQLi)
- Remote Code Execution (RCE) - [for GET and POST methods]
- Open Redirect

ToC


Top 25 Cross-Site Scripting (XSS) Parameters for @trbughunters @openbugbounty

{
    "flags": "-iE",
     "patterns": [

        "q=",
        "s=",
        "search=",
        "id=",
        "lang=",
        "keyword=",
        "query=",
        "page=",
        "keywords=",
        "year=",
        "view=",
        "email=",
        "type=",
        "name=",
        "p=",
        "month=",
        "image=",
        "list_type=",
        "url=",
        "terms=",
        "categoryid=",
        "key=",
        "l=",
        "begindate=",
        "enddate="
]
}

Top 25 Server-Side Request Forgery (SSRF) Parameters for @trbughunters

{
    "flags": "-iE",
     "patterns": [

        "dest=",
        "redirect=",
        "uri=",
        "path=",
        "continue=",
        "url=",
        "window=",
        "next=",
        "data=",
        "reference=",
        "site=",
        "html=",
        "val=",
        "validate=",
        "domain=",
        "callback=",
        "return=",
        "page=",
        "feed=",
        "host=",
        "port=",
        "to=",
        "out=",
        "view=",
        "dir="
]
}

Top 25 Local File Inclusion (LFI) Parameters for @trbughunters


{
    "flags": "-iE",
     "patterns": [

        "cat=",
        "dir=",
        "action="
        "board=",
        "date=",
        "detail=",
        "file=",
        "download=",
        "path",
        "folder=",
        "prefix=",
        "include=",
        "page=",
        "inc=",
        "locate=",
        "show=",
        "doc=",
        "site=",
        "type=",
        "view=",
        "content=",
        "document=",
        "layout=",
        "mod=",
        "conf="
]
}

Top 25 SQL Injection Parameters for @trbughunters

{
    "flags": "-iE",
     "patterns": [

        "id=",
        "page=",
        "report=",
        "dir=",
        "search=",
        "category=",
        "file=",
        "class",
        "url=",
        "news=",
        "item=",
        "menu=",
        "lang=",
        "name=",
        "ref=",
        "title=",
        "view=",
        "topic=",
        "thread=",
        "type=",
        "date=",
        "form=",
        "main=",
        "nav=",
        "region="
]
}

Top 25 Remote Code Execution (RCE) Parameters [GET based] for @trbughunters

{
    "flags": "-iE",
     "patterns": [

        "cmd=",
        "exec=",
        "command=",
        "execute=",
        "ping=",
        "query=",
        "jump=",
        "code",
        "reg=",
        "do=",
        "func=",
        "arg=",
        "option=",
        "load=",
        "process=",
        "step=",
        "read=",
        "feature=",
        "exe=",
        "module=",
        "payload=",
        "run=",
        "print="
]
}

Top 25 Open Redirect Parameters for @lutfumertceylan

{
    "flags": "-iE",
     "patterns": [

        "next=",
        "url=",
        "target=",
        "rurl=",
        "dest=",
        "destination=",
        "redir=",
        "redirect_uri",
        "redirect_url=",
        "redirect=",
        "out=",
        "view=",
        "to=",
        "image_url=",
        "go=",
        "return=",
        "returnTo=",
        "return_to=",
        "checkout_url=",
        "continue=",
        "return_path="
]
}