u/Affectionate-Cod8134

Hello everyone, Im gonna talk about my experience with bug bounty.

23y, bachelor degree in a system/network administration and security. Started hunting on YesWeHack around november 2025. I started reporting everything (theoretical issues, normal API keys in frontend, AI hallucinations) then I learnt from my mistakes and now I hunt vulnerabilities with at least an obvious medium impact, I take the time to read the scope, and I got 2 bounty for Open Redirects ! I’m currently waiting for an IDOR to be triaged.

So, few bucks came and it’s a really cool feeling but I’m now a bit stucked during my hunts. I have cheatsheets, I just look for parameters, try everything I know, look in devtools for files and potential information disclosure etc etc

I feel like I’m missing something, I lack of methodology, there’s techniques I don’t know about and idk where I can learn about these ones, it’s like im in a loop where I always do the same things.

Hi, 24y, soon starting a master degree in cybersec, learned almost everything on this damn thinkpad running fedora. The more time passes, the thicker the brainfog becomes. It really feels like I'm not learning efficiently anymore. Tbh, AI didn't help AT ALL. AI drains my energy so fast I can't describe how nor why. Tried reading books on my laptop and my phone but it's really a PAIN.

I really feel that going back to learn things in a book with the feeling of the paper on my fingers might be the cure. Even for computer related stuff.

I just want to move slow and take the time. I want the information to be deeply wrote in my brain.

A laptop or a phone CAN'T be minimalistic it's a pure source of distraction and I notice now how much it damaged my brain.