Params tab

This shows a summary of the parameters and response header fields a site uses. Sites can be selected via the toolbar or the Sites tab.

For each parameter you can see:

The type - Cookie, FORM, URL, or Header
The name of the parameter (or response header)
The number of times it has been used
The number of unique values
The percentage change, where 0 means only one value has been used and 100 means all values are unique
The flags - including cookie flags and anticsrf and session
Some of the values - the full set of values may not all be visible

Right click menu

Right clicking on a node will bring up a menu which will allow you to:

This will show all examples of the parameter selected in the Search tab.

Flag as Anti CSRF token

This will flag the parameter as an Anti CSRF token.

Unflag as Anti CSRF token

This will remove the Anti CSRF token flag from the parameter.

Flag as Session token

This will mark the parameter as a Session token for the current Site and will notify the HTTP Sessions tool accordingly.

Unflag as Session token

This will unmark the parameter as a Session token for the current site and will notify the HTTP Sessions tool accordingly.

See also

UI Overview for an overview of the user interface