Hello everyone my post is about my struggle in the world of ethical hacking. I have been hacking for 10 months now and i have found nothing. I was originally a data scientist and i thought that was hard, but this is 10x harder than i thought. To me when everyone out there flexes their bounties and constant success in this field i feel left out or somehow think it’s too late all the bugs i am searching for are all gone.
I have searched and searched for answers and nothing really helps i have paid for online training and that did not help much. I have a subscription to chef secure who has a program named the “Ultimate XSS Course” that turned out to be a bust. Sure i learned many things about XSS on a training simulator. But in the real world its not that simple there are so many defenses no matter if you hunt manually or use tools.
There were a few times i wanted to quit due to the lack of anything i did not get into this to strike it rich by any means. I got into to this to try something different and prove to myself i can be something in this world. I don’t need any pity or sympathy i just want to find bugs and report them i know there is no magic bullet.
These are the only vulnerabilities i am interested in pursuing for now.
- – SQL Injection
- – Command Injection
- – Cross-Site Scripting
I know there are hundreds more, but these are the most interesting to me and someday will strike gold on. That is why i am here to hopefully learn more so i can finally earn my first valid bounty, thank you.