Intelligence gathering and enumerating a target with various data sources are essential techniques during the reconnaissance phase that gives a broader scope to investigate different sets of infrastructure and provides plenty of assets to build a solid attack vector. And you'll have the advantage to find more vulnerability from a target source. But gathering intelligence from a target always isn't so simple, especially while collecting subdomains, it requires connecting the target with different data sources.
In this article, I'll discuss my favourite recon tools which I often use in Bug Bounty. And a few years ago, I posted a Twitter post by sharing my RECON steps for Bug Bounty with essential tools and that Twitter post got some serious attention and people from all over the world from security saw that post. And the thread got more than 40,000 views, till today also people are following that thread, really appreciated it.
Information Gathering is the most important stage of every penetration testing so that you will have a better understanding about your target to exploit vulnerabilities and information like (IP addresses, Subdomain, Open ports and etc.) but to gather information you need proper reconnaissance tools and there are many recon tools which are available on Github but among them, I found Top 10 Recons tools which you can use to gather all of this information about your target.