When attacking a web application, it is important to gather information about it. That will allow us to have a solid understanding of its components and how to move forward. Each component we test could hide security vulnerabilities or contains information leakage, which we try to uncover in this reconnaissance phase.