← LibraryTechnique entry
W-ENV-FILEDiscovery
.env / .git / .DS_Store Exposure
Source-control or dev files served by the webserver — .git lets you `git-dumper` the full repo, .env leaks all secrets.
§ Where this technique fits
W-ENV-FILE is catalogued under the Discovery tactic of the offensive-security kill-chain. It appears in 0 approved dossiers in the registry, typically.