In all of pentest learning videos which i watch they always say check the webserver to find directory browsing addresses u can find it via nikto or the robots.txt file.
I've find some directory browsing addresses in my friend's site during the pentest now what? What can i do with it? I just report it or have we some methods to penetrate with directory browsing?
Totally why directory browsing is important?