Long time lurker here, wondering if anyone has any advice for me, or maybe even a use for my skill-set. I'm a "hacker", been involved in the infosec scene for 12+ years now. As a kid I was a blackhat (wont get into that) but I've gotten myself a job with decent pay now, "gone legit", etc etc. Long story short, the company I work for is going down the tubes. Management is garbage, no one ever knows what's going on-- I'm trying to get out. Been applying all over my local area for something security-related, as well as any remote positions that I can find, having trouble getting hired though, when my entire resume basically consists of the professional equivalent of "I hacked stuff as a kid and didn't get caught". I've been slowly working on a certification in the infosec field (OSCP, for anyone that cares), but it's time consuming and I'm worried I wont finish before this company starts laying people off. I'm wondering if anyone has any experience in freelancing in the infosec world? I threw up a gig on Fiverr offering website pentesting just to test the waters, but only bites I've gotten are from kids wanting me to hack a video game so they can be on top... I've considered "bug bounties" but I haven't heard of anyone doing that full-time successfully (at least, not in the US). I haven't tried cold contacting webadmins to see if they want their sites tested, but I can't imagine that would be a huge hit... Thoughts?