When Moving To the Cloud, Don’t Leave Basic Security Behind
We were inspired by a recent TestLabs post that outlined how to break into serverless applications on AWS. It’s an interesting read for hacking enthusiasts.…
Category: Mix
Newly Added Security Tests, February 3, 2017: WordPress plugins and Elastic search
Security never stands still, which is why we update our service on a regular basis to help you keep up with the latest vulnerabilities. We…
Cloud Security Alliance Webinar Recap: Avoid the Breach with Shopify’s Andrew Dunbar
In this Cloud Security Alliance (CSA) fireside chat, Shopify’s VP of Security Engineering and IT sat down with HackerOne’s Luke Tucker to talk about how…
Meet the Hacker: Peter Jaric, Software Developer: “I got two board games for the first bug I reported”
Our Detectify Crowdsource hacker Peter Jaric is a well-established profile in the developer community in Sweden, organizer of Javascript meetups, and a bug bounty hunter…
Improving Your Workflows and Analysis with Custom Fields
Today, HackerOne is thrilled to release Custom Fields, the latest way to sharpen security workflows and software development cycles. Custom Fields empowers teams to gain…
Detectify Team Offsite – Detectify Blog
On a crisp January morning, the Detectify team got on a bus and headed towards Stockholm’s archipelago. We had a delicious breakfast on the bus…
The HackerOne Top 10 Most Impactful and Rewarded Vulnerability Types
HackerOne customers have received more than 120,000 (and counting!) valid security vulnerabilities across more than 1,400 programs of all sizes. Combined, they represent a clear…
How SSL affects SEO – Detectify Blog
Implementing an SSL certificate is a basic security measure that allows your website’s visitors to browse using a secure connection. Websites that use SSL get…
Breaking Down the Benefits of Hacker-Powered Pen Tests
Forrester Consulting recently published “The Total Economic Impact Of HackerOne Challenge: Improved Security And Compliance”. This blog takes a look at some of Forrester’s main…
Newly Added Security Tests, February 15, 2017: MongoDB
Security never stands still, which is why we update our service on a regular basis to help you keep up with the latest vulnerabilities. We…
Verizon Media Webinar Recap: Attack Surface Visibility & Reducing Risk
Chris Holt, Senior Bug Bounty Operations Lead at Verizon Media is a Paranoid. The Paranoids, as the Verizon Media security team is known, exist to…
Why agencies should work with security (Part 1)
Why it’s time for agencies to start working with security The main reason to add security to your offer is not that you will make…