Information Gathering (Web)

This category contains notes related to information gathering techniques and tools for web applications. It includes methods for discovering subdomains, enumerating directories, and identifying technologies used by a web application.

📄️ Web Application Reconnaissance

Web application reconnaissance is one of the most crucial stages of a penetration test or bug bounty engagement. A thorough recon process helps uncover technologies, exposed functionality, and likely attack vectors.

📄️ External Web Reconnaissance

External web recon is the first stage of web security testing: identify assets, technologies, and exposure before deeper testing.