1) Manual Discovery
Robots.txt
Sitemap.xml
Favicon (https://wiki.owasp.org/index.php/OWASP_favicon_database)
HTTP Header (curl $URL -v)
2) OSINT
Google Hacking
Wappalyzer (https://www.wappalyzer.com/)
WayBackMachine (https://archive.org/web/)
GitHub
S3 Bucket
3) Automated Discovery
Seclists
ffuf (ffuf -w /usr/share/wordlists/seclists/Discovery/Web-Content/common.txt -u http://URL/FUZZ)
dirb (dirb http://URL/ /usr/share/wordlists/seclists/Discovery/Web-Content/common.txt)
gobuster (gobuster dir -u http://URL/ -w /usr/share/seclists/Discovery/Web-Content/common.txt)
No comments:
Post a Comment