A New Years resolution I've made (and already begun working on) is to find my first bug and collect my first bug bounty in 2015. I've downloaded and run through a few Burp Suite tutorials, eBooks, and the Kali Linux setup guide (this has been brewing for a few weeks), and have started plugging away at sites that have given the OK via intermediaries like bugcrowd, bugsheet, and Hackerone, in addition to testing stuff that's deliberately vulnerable, like DamnVulnerableWebApp and Google Gruyere.<p>Any advice, other than to just keep hacking? I'm already learning some truths about the field (scanners are fun, but rarely catch anything significant, etc.) but of course know it'll take persistence.<p>Any other tech that I haven't mentioned that would be useful?