This is a brief whitepaper that goes over some tooling that can be of assistance while performing reconnaissance against a web application prior to attack.
You can download it from the following link: https://packetstormsecurity.com/files/download/161668/Web_App_Recon_And_Mapping.pdf
Source: https://packetstormsecurity.com/files/161668/Web-Application-Reconnaissance-And-Mapping.html