Introducing HackerOne Automations | HackerOne
Efficiency and accuracy are crucial in vulnerability remediation. Yet, repetitive and manual handling of tasks throughout the vulnerability lifecycle remains...
Read more →Category: Mix
How to Accelerate Vulnerability Remediation with Hai
The Challenge of Vulnerability Remediation When a vulnerability is identified, teams must determine the best approach to fixing it. This...
Read more →
How to Streamline Your SDLC With Hai
Addressing Inconsistencies in Vulnerability Scanning One of the primary challenges of vulnerability scanning is maintaining consistent results. Inconsistencies can lead...
Read more →
NIS2: Next Step Forward on EU Security Requirements
NIS2 focuses on strengthening EU resilience through new and amended obligations for cybersecurity risk management practices, incident reporting, and security...
Read more →
7 Problems With Traditional Pentests
Pentesting has been around for decades, but it hasn’t undergone the revolution that other security practices have. Organizations tend to...
Read more →
How To Find Broken Access Control Vulnerabilities in the Wild
What Is Broken Access Control? BAC is a class of application vulnerability where a function or asset in the application...
Read more →
How an IDOR Vulnerability Led to User Profile Modification
According to the 7th Annual Hacker-Powered Security Report, IDOR makes up 7% of the vulnerabilities reported via the HackerOne platform. Government...
Read more →
The Recruitment Process: What to Expect When You Apply at HackerOne
If you’re considering applying, here’s a look at what you can expect from the process, from the initial application to...
Read more →
Exploiting Markdown Syntax and Telescope Persistent XSS through Markdown (CVE-2014-5144)
Exploiting Markdown Syntax Markdown is wonderful. In fact, this blog post itself is written in Markdown. I don’t need to...
Read more →
Abusing URL Shortners to discover sensitive resources or assets
September 23 2015 · websec bruteforce As of late, a fair few companies and startups have been using dedicated URL...
Read more →
Measure Your AI Risk Preparedness with This Interactive Self-Assessment Tool
Effectively managing these risks requires human expertise and strategic oversight. That’s where the AI Risk Readiness Self-Assessment Tool comes in —...
Read more →
Using ngrok to proxy internal servers in restrictive environments
When gaining shell access to a machine on a network, a promising attack vector is to check the internal network...
Read more →