Hey fellow researchers, I got into and have been reading up and training in web app hacking for at least a year now (in my free time), with some hands on bug bounty hunting in some public programs in the last 3 months. In fact I did some poking around last year itself, but realized I needed more reading and training.
Having said that, I would appreciate some advice on how to approach public programs as a beginner.
I would like to spend more time on programs that offer bounties. After all bug hunting an be tedious and frustrating.
Most public programs have so many reports submitted and reports resolved already, moreover they also become quite robust in security. Your valuable advice on how, maybe, such programs can be approached? As in, lets say, I am testing a program that already has many issues resolved. Would it be okay, if I nevertheless, tested it in a robust manner, right from sign up, password reset, session management and so on…?? I know I am being sort of “not specific” here, but I feel lost many a times while testing public programs. Advice would be greatly appreciated