API7:2023 Server Side Request Forgery
Welcome to the 8th post in our weekly series on the new 2023 OWASP API Security Top-10 list, with a particular focus on security practitioners.…
Category: Mix
The World’s Largest Live Hacking Event
h1-2010 Live Hacking Video Recap Thu, 12/10/2020 – 18:43 Sam Spielman How can we make this one different? For organizations that operate in the digital…
HACK HARD. HAVE FUN. INCREASE SECURITY
Amazon’s Live Hacking Event with HackerOne At Amazon, ensuring security is essential for earning customers’ trust. As part of Amazon’s ongoing public Vulnerability Research Program (VRP),…
H1 Community Team: Your Hacker Allies
Jessica Sexton, Director of Community (Twitter/LinkedIn) “I am excited to build a team and strategic programs that focus on human connection, growth, and personalized…
Hacker’s Health: Adverse Effects of Doomscrolling
Question: “I spend the majority of my time researching and keeping up with current affairs. I don’t feel like anything is wrong, but then I…
PayPal’s Third LHE Brings Top Global Hackers to the Virtual Stage
PayPal has been partnering with the hacker community since launching a bug bounty program in 2012 and in April 2022, they returned for their third…
H1-702 Las Vegas Day 0: Setup
Hackers! We have made it to Las Vegas! We are here for a live hacking event (LHE). All live hacking events are amazing, but this…
H1-702 Las Vegas Day 1: H@cktivitycon
After a day of prep, we were ready to launch into our first day of H1-702! What makes today special is the return of…
Wallarm Presenting at BSides Albuquerque
If you’re in the Albuquerque area this Friday and/or Saturday, we hope you’re planning on going to BSides ABQ – it promises to be a…
H1-702 Las Vegas Day 3: Switching Up Scopes
It is a new day with new challenges. Scope has shifted for the next part of our LHE. Today, you can feel the focus. These…
Generative AI and Cybersecurity [The Hacker Perspective]
Future Risk Predictions In a recent presentation at Black Hat 2023, HackerOne Founder, Michiel Prins, and hacker, Joseph Thacker aka @rez0, discussed some of the…
[tl;dr sec] #198 – Building a Detection as Code Pipeline, NIST on CI/CD Supply Chain Security, Finding Malware with LLMs
I hope you’ve been doing well! ⏰ Time Between having a full time job and writing this newsletter, I can get a bit busy 😅 …