Audit the Security Posture of DevOps with HackerOne Source Code Assessments
Use Source Code Assessments to Audit DevOps DevOps teams may care about security, but it is not their area of expertise and it is not…
Category: Mix
New Security Inbox & Dashboard
At HackerOne, we’re on a mission to empower the world to build a safer internet. Better security begins with a quality vulnerability coordination process, and…
HackerOne Reputation – Increasing Valid Bug Submissions and Signals
Edited on 12/11/2015 to reflect the latest Reputation implementation. One of the primary challenges when running a vulnerability coordination program is distinguishing signal from noise.…
Jingle Bugs – How to Rock in a Hard Place
A Look at 2014, Recommendations and New Year’s Resolutions for Security in 2015 and Beyond With the end of 2014 dashing to a close and…
The Tale of the Privacy Pink Panther
Last Friday, on my way home from 31c3, a funny thing happened on my way through Charles de Gaulle airport in Paris: I was required…
Q1-2023 API ThreatStats™ Report
According to a Mar-2022 API survey by Gartner, 98% of organizations use or are planning to use internal APIs – up from 88% in 2019.…
Computer Fraud and Abuse Act | Proposed CFAA Changes
Many security professionals, hackers, lawyers, law enforcement, and members of the media are keenly interested in the White House’s proposed changes to laws affecting Internet…
What’s in a Name? | HackerOne
While there are many interpretations of the word “hacker,” we choose to pay homage to the original MIT hackers by using the term in our…
The Wolves of Vuln Street
Research Highlights HackerOne has been working with economics and policy researchers from MIT and Harvard to study the economic forces behind the 0day market. Here’s…
Hacker E-Book| Helping You Hack, Learn and Earn
A world wide war is being waged in which the most able-bodied soldiers are being discouraged from enlisting. It is an information security war, and…
Where’s that Security@? | HackerOne
All technology contains bugs. These bugs frequently have security implications that may be exploited by criminals, but are more often discovered by friendly parties —…
Improving Signal Over 10,000 Bugs
On July 2nd, 2015, HackerOne reached 10,000 valid security vulnerabilities resolved on our platform – that’s 10,000 fewer ways for attackers to exploit users, steal…