{"skill":{"slug":"bookforge-web-application-attack-surface-mapping","displayName":"Web Application Attack Surface Mapping","summary":"Systematically map a web application's content, entry points, technologies, and attack surface during authorized security testing or security-focused code re...","tags":{"bookforge":"1.0.0","latest":"1.0.0","tags:":"1.0.0"},"stats":{"comments":0,"downloads":28,"installsAllTime":0,"installsCurrent":0,"stars":0,"versions":1},"createdAt":1777463027718,"updatedAt":1777463806601},"latestVersion":{"version":"1.0.0","createdAt":1777463027718,"changelog":"Initial release — enables systematic web application attack surface mapping before active security testing.\n\n- Maps application content, functional paths, hidden directories/files, and user-input entry points via spidering, source/code analysis, and HTTP traffic review.\n- Fingerprints server-side technologies from HTTP responses, codebase artifacts, and file naming conventions.\n- Produces a structured attack surface map: enumerated URLs, entry points, technology stack details, and a prioritized vulnerability checklist.\n- Designed for authorized security assessment scenarios (penetration tests, bug bounties, secure code review).\n- Focuses on reconnaissance and mapping only — does not perform or automate active exploitation.\n- Provides clear input requirements, use cases, scope boundaries, and step-by-step methodology for practitioners.","license":"MIT-0"},"metadata":{"os":null,"systems":null},"owner":{"handle":"quochungto","userId":"s176b6gfk8djgcz320d83ta4e184bx1v","displayName":"Hung Quoc To","image":"https://avatars.githubusercontent.com/u/88069966?v=4"},"moderation":null}