TBD: 1a Crawl websites and search for endpoints -POST -GET -Request Headers (cookies,etc.)
1b Develop payload for each vulnerability EG: - SQLI : mysql, sqlite - Command Injection: Windows,Linux
2 Inject Payload - For each endpoint, inject payloads. - Determine if endpoint-payload is exploitable. - if so, output in JSON Format - generate script to automate the exploit