Using Nmap to scan

nmap -sV --script=http-enum <target> -p 80,443,8000,8080

using amass

amass enum -active -d microsoft.com | grep api

using directory brute force

ffuf -u "<http://127.0.0.1:8888/FUZZ>" -w /usr/share/seclists/Discovery/Web-Content/directory-list-lowercase-2.3-medium.txt -fs 2835