AppSecExplained
Search
⌃K

Content discovery / recon

Content discovery is a significant part of web application penetration testing or bug bounty hunting. This process involves identifying and mapping out components, endpoints, directories, functionality, and subdomains of a target web application.
Thigns we want to look at are:
  • Subdomains
  • Technology stack
  • Directories and endpoints
  • Parameters
  • Functionality
  • APIs
  • JavaScript / fontend analysis
  • Other open ports / services
​