https://leikah.haoyingcao.xyz/en/categories/web-enumeration/Recent content in Web Enumeration on LEIKAHHugoenhttps://leikah.haoyingcao.xyz/en/docs/enumeration/web_enum/Mon, 01 Jan 0001 00:00:00 +0000https://leikah.haoyingcao.xyz/en/docs/enumeration/web_enum/<p>The primary goals of web recon are to:</p> <ul> <li><strong>Identify assets</strong> (web pages, subdomains, IP address, tech stacks, etc.)</li> <li><strong>Discover hidden information</strong></li> <li><strong>Analyze the attack surface</strong></li> <li><strong>Gather information</strong> that can be leveraged for further exploitation.</li> </ul> <p>Similar to recon targeted toward other environments and services, web recon can be categorized into <strong>passive</strong> and <strong>active</strong> recon.</p> <ul> <li><strong>Passive Recon</strong> avoids interacting with the target(s) directly.</li> <li><strong>Active Recon</strong> interacts with the target(s) directly.</li> </ul> <p>This article will mainly go over Active Recon techniques.</p>