Hacking Notes | Welcome 👋

NMAP

While searching for API's, Nmap will allow you to find http server that can help you forther more to enumerate and find information about the targeted API

Documentation

- `/api`
- `/swagger/index.html`
- `/openapi.json`

AMASS

AMASS allow you to gather information from various source to enumerate a website or in this case an API

You can also try to get an API key (from a website/service that offer you one and sync it with amass to find all the possibiliy of this API) and insert it in the command.

amass enum -list
amass enum -active -d TARGET | grep api (OPTIONAL)  ---> Will expose API Subdomains

Debugger Mode

Check website in debugger mode (In console)

Search for API, V1,V2,...
Use beautifier.io if needed

Directory Brute Force (Gobuster)

Gobuster allow you to enumerate directory to try to find some API folder

More information ---> Red Team/3-Web Hacking/1-Brute Force/2-Fuzz/Gobuster

Ssh Port Forwarding Passive Reconnaissance API