Newly added security tests, June 21, 2017: XSS and SQL injection modules
To bring you the most up-to-date security service and help you stay on top of threats, we update Detectify on a regular basis. Here are…
Category: Mix
Tell Your Hacker Story with the Redesigned Profile Pages
We are excited to announce new hacker profile pages on HackerOne! This redesign gives your profile a fresh new look and several new fields so…
Newly added security tests, June 28, 2017: vBulletin CVE-2015-7808
To bring you the most up-to-date security service and help you stay on top of threats, we update Detectify on a regular basis. Here are…
Through a Hacker’s Eyes: Recapping h1-604
For the first time ever, a hacker writes a live hacking recap blog, highlighting what it is like to attend a live event. Katie (@InsiderPhD)…
Newly added security tests, July 6, 2017: OpenVPN CRLF injection
To bring you the most up-to-date security service and help you stay on top of threats, we update Detectify on a regular basis. Here are…
HackerOne Congratulates the Department of Defense on 11K Vulnerability Reports
HackerOne and the U.S. Department of Defense began working together in 2016 with the launch of Hack the Pentagon. Announced at the third annual Security@…
How to become a Detectify Crowdsource hacker
Detectify Crowdsource is a platform where hackers can submit vulnerabilities in web applications. Their findings are reviewed by our security team, and built into our…
8 High-Impact Bugs and How HackerOne Customers Avoided a Breach: Privilege Escalation
Customers tell us that a big difference between hacker-powered security and traditional approaches is the impact. Since hackers make money for reporting vulnerabilities with a…
AWS S3 Misconfiguration Explained – And How To Fix It
A technical write-up explaining AWS S3 misconfiguration is available on our Labs blog. AWS Simple Storage Service (often shortened to S3) is used by companies…
Slack Increases Minimum Bounties for High and Critical Bugs for 30 Days
This blog post was contributed by Slack Staff Technical Program Manager Branden Jordan. Over the past five years, Slack and HackerOne have established a partnership…
Newly added security tests, July 26, 2017: CVE-2017-9791
To bring you the most up-to-date security service and help you stay on top of threats, we update Detectify on a regular basis. Here are…
Lowering Your Pentesting Fees with HackerOne
Each blog in the series “Breaking Down the Benefits of Hacker-Powered Pentests” has focused on one of the key findings in Forrester Consulting’s report The…