• Subdomain enumeration
• Subdomain Takeover
• Gather all urls with
• Grep all php
• Grep js
• Burp config
• nuclei
• Firefox Extensions
• httpx
• Gttp request smuggling
• IIS
• Test
• Web Sockets
• Create account
• Dom-Invader
• check 0-auth
• Crack JWT
• Session
• IDOR and Business Logic
• Roles