Reconnaissance plays a huge role in finding [high-level and critical bugs] efficiently. While there are 100s of different tools available to make this process easier, you may not be maximizing your recon process without a working methodology. This talk details successful methodologies for creating an automated process that will actively surface vulnerabilities using OSINT and other well known recon tools. I use real-life examples from companies such as Airbnb, Snapchat, Yahoo, etc with total of $40k raised in 90 days!