u/Plastic_Face3915

A little question : Should I stick with traditional bug bounty, or switch to LLM hacking?

I am a beginner currently learning web bug hunting. Lately, I've felt discouraged by all the "AI spam" (low-quality AI reports) on bug bounty platforms. It feels like it’s getting much harder for real researchers to get their work noticed. My original plan was to master web security first and learn LLMs later. Now, I’m wondering if I should just stop with web security and focus entirely on LLM and AI security instead. Does anyone have experience with this? Is it still better to learn the traditional basics first, or is the industry moving so fast that I should put all my energy into AI?

reddit.com
u/Plastic_Face3915 — 10 hours ago