I don’t think @anshuman_bh could’ve said it any better. I’d like to add that also if subdomains are in scope, start with those, rather than going straight for the main site (especially if you are late to the party). So you are looking elsewhere while everyone is pentesting the main target such as a dashboard and so on.