🕵️‍♂️ Find API keys 🕵️‍♂️ Directory listing vulnerabilities 🕵️‍♂️ Exposed Configuration files 🕵️‍♂️ Exposed Database files 🕵️‍♂️ Find WordPress 🕵️‍♂️ Exposed log files 🕵️‍♂️ Backup and old files 🕵️‍♂️ Login pages 🕵️‍♂️ SQL errors 🕵️‍♂️ Index of MYSQL folder 🕵️‍♂️ Database .yml files 🕵️‍♂️ Publicly exposed documents 🕵️‍♂️ phpinfo() 🕵️‍♂️ Finding Backdoors 🕵️‍♂️ Install / Setup files 🕵️‍♂️ Open Redirects 🕵️‍♂️ Apache STRUTS RCE 🕵️‍♂️ Find Pastebin entries 🕵️‍♂️ Target Emails 🕵️‍♂️ Userlist 🕵️‍♂️ ASP Userlist 🕵️‍♂️ .htaccess sensitive files 🕵️‍♂️ Files containing Passwords 🕵️‍♂️ Password.txt Files 🕵️‍♂️ Employees on LINKEDIN 🕵️‍♂️ Find Subdomains 🕵️‍♂️ Find Sub-Subdomains 🕵️‍♂️ Find WordPress #2 🕵️‍♂️ Find WordPress [Wayback Machine] 🕵️‍♂️ Search in GITHUB 🕵️‍♂️ Search in OpenBugBounty 🕵️‍♂️ Search in Reddit 🕵️‍♂️ Test CrossDomain 🕵️‍♂️ Check in ThreatCrowd 🕵️‍♂️ Find .SWF file (Google) 🕵️‍♂️ Find .SWF file (Yandex) 🕵️‍♂️ Search SWF in WayBack Machine 🕵️‍♂️ Search in WayBack Machine #2 🕵️‍♂️ Search in WayBack Machine #3 🕵️‍♂️ Search in WayBack Machine [List/All] 🕵️‍♂️ Check in crt.sh 🕵️‍♂️ Check in CENSYS [IP4] | [DOMAINS] | [CERTS] 🕵️‍♂️ Search in SHODAN