Week 6 - A break for this & found 2 new issues

Overall Results

Reports Hackerone Bugcrowd Private Programs
P1-P2 2 1 1
P3 2 0 0
P4-P5 20 5 1
Duplicated 9 2 0
Pending 1 0 0
Traiged 8 0 0

Total paid bounty $ 5,828 USD ( - )
Pending bounty $ 4500 USD ( - )
Est. Unconfirmed bounty $ 4000 USD (+ 1000)

Thoughts

Learn how to reverse engineering properly

The key of look for hidden apis in server side testing , is digging through server side api , you can do it via

  • React / JS script - on web
  • Jadx-tool - on android
  • For android pen-testing, it may requires more effort to break this thing up.
A little break doesnt kill your progress

Take a break is fine. Just take a break and come back with this.
You are not going to build your wealth with sacrificing your health.. that wont work in either way.