Screenshots

• gowitness

Inspection

Leave Burp on and browse the app

• Screenshots: abnormalities/errors
• Technologies used and their versions
• User roles and capabilities
• Inputs/Entry points and services, e.g. file uploads/ information update

Discovery

Directories

Technology in-/depended

Endpoints

• gau
• waybackurls
• hakrawler
• gf
• Google dorks with specific inurl parameters and file extensions
• js files
  • Secrets, new endpoints
  • Fuzz for JS files in the JS file path (e.g. /static/_js/, check source code)
• Information disclosure
  • Using search engines for fun and bounties

Vulns