Overall Results
Reports | Hackerone | Bugcrowd | Private Programs |
---|---|---|---|
P1-P2 | 2 | 1 | 1 |
P3 | 2 | 0 | 0 |
P4-P5 | 20 | 5 | 1 |
Duplicated | 9 | 2 | 0 |
Pending | 1 | 0 | 0 |
Traiged | 8 | 0 | 0 |
Total paid bounty $ 5,828 USD ( - )
Pending bounty $ 4500 USD ( - )
Est. Unconfirmed bounty $ 4000 USD (+ 1000)
Thoughts
Learn how to reverse engineering properly
The key of look for hidden apis in server side testing , is digging through server side api , you can do it via
- React / JS script - on web
- Jadx-tool - on android
- For android pen-testing, it may requires more effort to break this thing up.
A little break doesnt kill your progress
Take a break is fine. Just take a break and come back with this.
You are not going to build your wealth with sacrificing your health.. that wont work in either way.