Explore the intersection of web application security vulnerabilities and Open Source Intelligence (OSINT) in this BSides Boston 2015 conference talk. Delve into an experiment that reveals the potential risks of sharing personal data on fitness tracking platforms. Examine how seemingly innocuous information can be exploited through techniques like source code analysis and large-scale data requests. Follow along as the speaker demonstrates OSINT techniques to uncover detailed profiles of individuals using popular fitness apps. Investigate the double standards in data privacy and the social motivations behind oversharing. Learn how to use tools like Recon-ng for efficient OSINT gathering across multiple platforms. Discover unexpected uses of fitness apps beyond their intended purposes, including nature preserve patrols and soft drink promotions. Conclude with practical advice on protecting your online presence and understanding your own OSINT profile.