Category: Mix

Like many companies in Silicon Valley, we at HackerOne believe in using what we build. (This is sometimes referred to…

Server-Side Request Forgery, SSRF for short, is a vulnerability class that describes the behavior of a server making a request…

We recently published The GitHub Bug Bounty Story and couldn’t be more excited to share it with you! TL;DR: Their…

If triaging vulnerability reports was a martial art, Zach Dando would be sensei master. Zach runs the triage team at…

Did you know 94% of the Forbes Global 2000 do not have known vulnerability disclosure policies? It’s true, and the…

Swag means a lot to HackerOne (and to you, our hackers). It’s not just apparel and stickers. It’s a badge…

This is the first in a six-part series expanding on the “key findings” of the Hacker-Powered Security Report 2017. Based…

Any hackers out there ever hunt for bugs on your mobile phone while riding in a car? Well, now our…

One of the top IT research and advisory companies, 451 Research, recently authored a new “pathfinder report” advising decision-makers on…

Let the countdown begin – Las Vegas awaits patiently for that amazing week of 0-days, conferencing, revelry, and networking. Read…

With hacker-powered security, it’s critical to open and maintain a line of communication with the hackers who are working to…

To learn more about how legal teams and federal enforcers view hacker-powered security, we invited Megan Brown, partner, and Matthew…