Today more people are joining to #bugbounty community, because they are paid well and don't require a lot of computer skill at first, for example, you can focus to learn one kind of vulnerability like #XSS and try to exploit that on different targets, you don't need to have 10 years on #infosec to know how to exploit #XSS vulnerability and you can be paid a good amount of money for that, but you always need to do #recon first and is really important. If you can achieve a decent #recon to focus only on the potential targets you increase the possibility to find a #XSS vulnerability without distraction.