When the Defense Industrial Base Vulnerability Disclosure Program (DIB-VDP) 12-month Pilot concluded, HackerOne sat down with the pilot’s collaborating agencies and the ethical hackers who worked on the pilot. The discussion centered on pilot results, the most exciting vulnerabilities that surfaced, and learning why the federal government continues to engage hackers to secure the digital assets of the United States government.
I don’t like salesishness, so let’s be clear about two things: I’m trying to get this site to where it can support itself by referral…
September 22, 2015 · websec bruteforce As of late, a fair few companies and startups have been using dedicated URL shortner services to use for…
Table of Contents #1 #2 #3 2025.08.26 OWASP Seoul Meetup Recap At the recent OWASP Seoul Meetup, I had the opportunity to speak on the…
Table of Contents What is Scope? Listing Assets in Your Program Scope Removes the Guessing Game How to list your Assets for your program’s Scope:…
Table of Contents Deciding between closed- vs open-source CMS platforms: How to secure your CMS or blog site: Expert point of view: how secure are…
The moment when you realize what was previously impossible is now trivial I just wrote a new piece about the two primary limitations to creativity.…
