Automic VaultAutomic Vault

brew

使用 Homebrew, apt, Nix 安装 arjun

查看 arjun 的安装路径、可执行文件、元数据以及面向 AI 代理工作流的安全说明。

安装

其他安装命令

macOS

Homebrew已验证 · 100%
brew install arjun

local Homebrew formula metadata

Linux

Debian apt已验证 · 92%
sudo apt install arjun

Debian stable package indexes · arjun · 来源: deb.debian.org

Nix已验证 · 92%
nix profile install nixpkgs#arjun

nixpkgs package indexes · pkgs/by-name/ar/arjun/package.nix · 来源: api.github.com

概览

软件包摘要

HTTP parameter discovery suite

命令和别名

  • arjun

历史

项目历史与用法

Arjun is an HTTP parameter discovery suite for reconnaissance and application-security testing. Its README describes the core job plainly: find valid query or body parameters for URL endpoints, using a large built-in parameter-name dictionary while trying to keep request counts low.

项目历史

Arjun is maintained in the s0md3v/Arjun GitHub repository and distributed as a Python CLI. The official README positions it around practical web testing tasks: GET, POST, JSON, and XML request probing; timeout and rate-limit handling; output to Burp Suite, text, or JSON; and target import from files, Burp, or raw HTTP requests.

The project release stream visible from the official GitHub releases shows 1.x releases by 2018-2019, a 2.0 beta in 2020, and continued 2.2.x releases through 2024. The README's installation recommendation is pipx, with pip as a fallback for older Python environments.

采用历史

The supplied package facts show Arjun packaged for Homebrew, Debian, Ubuntu, and Nix, which is typical for Python security tooling that becomes useful enough to install from OS and developer package managers rather than only from source.

Arjun's adoption niche is bug bounty, recon, and API testing workflows where hidden or undocumented parameters can change endpoint behavior. Its README credits Common Crawl, SecLists, Param Miner, and data-payloads as sources or relatives for the parameter wordlists, tying it to the broader web-security wordlist ecosystem.

使用方式

The executable is arjun. Users normally point it at one URL or a list of targets, choose request methods and headers as needed, and export discovered parameters for later manual testing or Burp-centered workflows.

The official README does not document a persistent config file or credential store. Operationally, options are passed on the command line or through imported request/target files.

为什么软件包爱好者会关心

Arjun is package-nerdy because it turns a common recon step into a repeatable CLI primitive. It is small, Python-packaged, and easy to drop into Homebrew, distro packages, Nix shells, or security-tool images.

Its value is not a framework or scanner platform; it is the narrow, automatable act of parameter discovery. That narrowness is why it fits well beside tools like Burp, SecLists, Param Miner, ffuf, httpx, and other recon CLIs.

时间线

  • 2018: Official GitHub releases show Arjun 1.1.
  • 2019: Official releases show 1.2-beta through 1.6.
  • 2020: Official releases show 2.0-beta.
  • 2024: Official releases show 2.2.x releases through 2.2.7.

Related projects

  • Related projects and data sources named by the README include SecLists, PortSwigger Param Miner, Common Crawl-derived wordlists, Burp Suite, and data-payloads.
  • In workflows it commonly sits near HTTP probing, fuzzing, and recon tools rather than full vulnerability scanners.

安全态势

尚未找到受保护工具覆盖

没有找到 arjun 的匹配本地密钥处理 manifest。Nucleus 软件包元数据仍在此发布,以便未来覆盖拥有稳定的软件包 URL。

安装行为

  • formula 元数据中未记录 Homebrew post-install 钩子。
  • Homebrew bottle 元数据适用于 1 个平台目标。
  • 安装时包含 2 个运行时依赖。

建议审查

在无人值守的代理使用前,请检查该工具是否读取明文凭据、写入远程状态、发布制品或调用插件。

可执行文件

已安装的可执行文件

命令类型暴露范围备注
arjuncli全局可执行文件

新鲜度

版本和新鲜度

这些信号区分页生成时间、软件包管理器活动和上游发布比较。只有存在证据 URL 和可比较版本时,才会提示版本落后。

页面生成时间2026-07-10
管理器版本2.2.7
管理器更新时间2026-06-22
本地数据OK
上游not checked
检测到的最新版本未检测到

https://github.com/s0md3v/Arjun

安装元数据

软件包元数据

软件包键brew:arjun
版本2.2.7
软件包管理器Homebrew
软件包管理器页面https://formulae.brew.sh/formula/arjun
主页https://github.com/s0md3v/Arjun
仓库https://github.com/s0md3v/Arjun
上游文档https://github.com/s0md3v/Arjun#readme
许可证AGPL-3.0-only
源码归档https://files.pythonhosted.org/packages/04/22/c5b969720d2802de2248c2aac0414ee5ae234887cfe150564d591c73fb23/arjun-2.2.7.tar.gz
最后更新2026-06-22T10:12:13-04:00
Pulseupdated
依赖certifi, python@3.14
Bottle可用 (于 all)
Homebrew post-install未定义
服务未声明

注册表事实

源数据库详情

Source DatabaseHomebrew formula API
Taphomebrew/core
Full Namearjun
Version Scheme0
Revision7
Bottle Stable Root URLhttps://ghcr.io/v2/homebrew/core
Deprecatedno
Disabledno
Keg Onlyno
URL Keys
  • stable

源数据库匹配

其他软件包管理器记录

匹配项来自外部软件包管理器索引,并与本地 Automic Vault 软件包链接分开显示。

Debian apt95%

arjun 2.2.7-1

HTTP parameter discovery suite

https://github.com/s0md3v/Arjun

sudo apt install arjun
  • Section: misc
  • Architecture: all
  • 4 依赖
  • normalized package name match
  • 匹配方式:Arjun
Debian stable package indexes · deb.debian.org · Debian stable package indexes: arjun from https://deb.debian.org/debian/dists/stable/main/binary-amd64/Packages.xz
Nix95%

arjun

nix profile install nixpkgs#arjun
  • normalized package name match
  • 匹配方式:Arjun
nixpkgs package indexes · api.github.com · nixpkgs package indexes: pkgs/by-name/ar/arjun/package.nix from https://api.github.com/repos/NixOS/nixpkgs/git/trees/master?recursive=1
Ubuntu apt95%

arjun 2.2.1-2

HTTP parameter discovery suite

https://github.com/s0md3v/Arjun

sudo apt install arjun
  • Section: universe/misc
  • Architecture: all
  • 3 依赖
  • normalized package name match
  • 匹配方式:Arjun
Ubuntu 24.04 LTS package indexes · archive.ubuntu.com · Ubuntu 24.04 LTS package indexes: arjun from https://archive.ubuntu.com/ubuntu/dists/noble/universe/binary-amd64/Packages.gz

来源线索

由仓库数据生成

此页面由 av-webscripts/generate-pkg-sqlite.py 生成的私有软件包 SQLite 工件提供。

使用的来源

  • Geiger risk classifier
  • Nucleus package database
  • av.db category and tag curation
  • cross-ecosystem install command graph
  • curated package history
  • external package-manager database matches
  • package relationship graph
  • package version freshness
  • package-page enrichment