The Best Bug Bounty Recon Methodology

Learn how to locate and identify a company's sensitive data on GitHub. An absolute game changer and the foundation of many bug findings.

The first of Katie's How to Do Recon series. Talking about all things recon, why you might want to do recon, what tools you need, and how to actually find bugs with all this data. Check out her inclusive community.

Michael discuss the fundamentals of doing recon and OSINT on a corporation using the Rapid7 Open Data project, and DNSGrep. Part of the awesome BugCrowd community.

An ongoing yearly installment on the newest tools and techniques for bug hunters and red teamers. Also featured in my must-watch InfoSec talks of 2020.

A run-down of (mostly) passive reconnaissance techniques; some well-known, some not-so-well-known.

Abhijeth demonstrates effective techniques to do better information gathering, while also sharing the stories behind the bugs found.

Create an automated process that will actively look for vulnerabilities using OSINT and other well known recon tools. Join the Nahomies.

Optimize the hunt for security vulnerabilities, through unlimited storage, scalable serverless infrastructure, and machine learning powered by collaborative filtering.

Delving deep into how enumeration techniques work, why they are effective, the tooling around them, and also the mitigation techniques.

This talk covers methods to easily implement data sources of all sorts into the amass engine, to make it the all-in-one recon tool that fits everyone's needs.

One of the more creative and unorthodox recon methodologies I've seen. It introduced me to new tools and websites.

Definitely a game changer for me. His way of thinking, and his methodology makes this a must-watch. I had to watch this one a couple of times to catch all the intricacies.

A rare appearance and boy was it worth the wait. It's jam packed with information. His friendly demeanor, and automation are highly sought after. Check out my NahamSec interview notes.

Corben goes into detail of how he does recon and which tools he uses, including his own tool GAU and explaining the reasoning behind it.

Tom chats with STÖK, sharing his command line recon methodology and how he uses his own tools. One of the main reasons why I started using Vim. I used it as a guide and played it on repeat for a while.

Naffy hitting you with that real talk, emphasizing the importance of time spent, a good foundation, and not to rely on tools.

Jason walks through his entire recon methodology on a live target, sharing how there's a class of hidden bounties.

Patrik walks us through his recon process, sharing his love for amass. He also covers how he uses SecurityTrails, and more. Representing the HackerOne community.

Want to know the ins and outs of amass? Amass creator Jeff shows you all there is to know. Did you know there was an Amass community?.

In this talk, Ben give a crash-course on axiom and how to use it. He also perform a live demo of axiom using 170 instances. Founder of 0x00sec community.

Presentation by rez0 for NahamCon 2021 on the topic of the web fuzzer ffuf

Ever want to build your very own high performance recon tooling? Come learn some of the techniques to use and mistakes to avoid when writing your own recon tools.

The Bug Bounty Reconnaissance Framework (BBRF) can be used to coordinate your reconnaissance workflows across multiple devices.