Swagger / OpenAPI discovery TL;DR: Spec docs reveal endpoints, parameter types, and required scopes — a free attack surface map. Stub — to be filled in. What it is TODO Preconditions / where it applies TODO Technique TODO Detection and defence TODO References https://book.hacktricks.wiki/en/network-services-pentesting/pentesting-web/swagger-api.html