Recursive Request Exploits (RRE) is a new technique that automates the tracing of API chains to identify vulnerabilities in digital entitlements, such as video streams. By following the app's business logic, it allows users to discover unauthenticated requests that could be exploited to bypass access controls. The associated Burp extension simplifies this process, enabling security professionals to effectively trace and exploit low-trust inputs for high-value outputs.