Description
Web and API content can be discovered contextually during authorized security testing.
It is useful for finding routes, endpoints, and hidden application behavior in systems you are allowed to assess. Content discovery can look like reconnaissance or attack traffic, so do not run it against third-party services without permission.