option to run heuristics scan only

[elig0n]

• this tool could be useful to run a heuristics scan exclusively
• in that case maybe it should support specifying a heuristics "page" (GET) in its own argument because sometimes the API itself and form page are different, but we need to combine them even when the request methods are different
• add an option(?) to save heuristics results in output file too as I've seen they are not included.
  Please see my suggested PR Write heuristics to output file #98

[s0md3v]

Hi @elig0n,

Thanks for pointing it out. We can make two changes to the Arjun

1. If there's a form in the HTML that uses a HTTP method different than the one user specified, we can let user know about that.
2. We can have a heuristics only scan but the parameters found through it should be saved in the existing params object, no need to create a separate key for that.

Let me know what you think about these propositions. Thanks again for the valuable PRs and suggestions.

[jianmuhtb]

In fact, you just need to change arjun's python module directory ——main——.py to this will solve your requirements： if found: num = len(found) if words_exist: print('%s Heuristic scanner found %i parameters' % (good, num),f'{str(found)}') else: s = 's' if num > 1 else '' print('%s Heuristic scanner found %i parameter%s: %s' % (good, num, s, ', '.join(found)),f'{str(found)}')