1. Directory Enumeration
   1. Dirsearch
   2. FFUF
   3. Wordlists
2. Technology Fingerprinting
   1. Wappalyzer Plugin
   2. Whatweb
3. Port Scanning
   1. NMap
   2. Naabu
4. Broken Link Hijacking
   1. BurpSuite Plugin
   2. Tool
5. JavaScript Files for Hardcoded APIs & Secrets
   1. Automated tools for finding hardcoded information
   2. Automated tools for finding params, endpoints, etc.
   3. Compare JS files (current and old)
   4. Tools
      1. JFScan
      2. LinkFInder
      3. DetectDynamicJS
      4. Retire.js (Burp Plugin/Browser Extension/Standalone)
      5. JSLink Finder (Burp Plugin)
      6. SecretFinder
6. Parameter Discovery
   1. ParamSpider
   2. Arjun
7. Wayback History
   1. Wayback Machine
   2. Waybackurls
   3. gau
8. Domain-Specific GitHub & Google Dorking
   1. Google Hacking DB
   2. GitDocker
   3. GitRob
   4. GirHound
   5. Interesting GitHub Dorks List
9. Data Breach Analysis
   1. Intelx
   2. Hacking Forums
   3. Darkweb/Darknet Analysis
10. Misconfigured Cloud Storage
    1. S3 Misconfig Article
11. If any outdated software is found , then check for CVEs
12. by : Software Odyssey
13. Reference : Harsh Bothra Mind Map