Security Reconnaissance and Testing Methodology Router

v20260506

recon-for-sec

This router serves as the initial guide for comprehensive security assessments on new targets or unknown attack surfaces. It helps users map the scope, discover hidden assets, perform detailed technology fingerprinting, build endpoint inventories, and strategically plan the optimal testing path before diving into specific vulnerability checks (e.g., API, Auth, Injection).

Security Reconnaissance Methodology Penetration Testing Asset Discovery Fingerprinting

Get Skill

112 downloads

Overview

Recon and Methodology Router

This is the starting router for new targets and unknown attack surfaces.

When to Use

You just received a new target and do not yet know what to test first
You need to begin with asset discovery, tech fingerprinting, endpoint inventory, and test-route planning
You want to build follow-up testing on structured methodology instead of random payload enumeration

Skill Map

Recon and Methodology
Insecure Source Code Management — .git/.svn/.hg exposure detection
Dependency Confusion — Supply chain reconnaissance for internal package names

Recommended Flow

First confirm in-scope assets and target type
Then perform asset discovery, port/service identification, technology fingerprinting, and endpoint collection
Route based on collected findings to api-sec, auth-sec, injection-checking, or business-logic-vuln

Info

Category Development

Name recon-for-sec

Version v20260506

Size 1.35KB

Source yaklang/hack-skills

Updated At 2026-05-08