? Retrieving API endpoints using WADL

[Father]

Let's say you find a / api endpoint that returns a 403 response. You try to fuzz additional / api / FUZZ endpoints, but you can't find anything. Try to check for leaking endpoints using WADL.

Wadl (Web Application Description Language) is very similar to a sitemap. It shows some web application endpoints and in some 'application.wadl' scripts if you put parameter 'detail = true' you get more details about endpoints:

https://example.com/api/application.wadl?detail=true.