Developers need to bring security into their workflows without pivoting to separate security tools to get vulnerability information. HackerOne has created an integration with GitHub to streamline the process…
Finding a zero-day (0-day) is probably one of the best feelings in the world for a hacker, and sometimes we receive these submissions through Detectify…
Wondering what vulnerability scanning is? We will explain how it works, why you need to do it, and how to do it right. What is…
Karim Rahal, Detectify Crowdsource hacker, is a 17-year-old web-hacker who has been hacking for the greater part of his teenager years. At age 13, he…
I’m not going to define DevSecOps in yet another blog post. There are plenty of great resources for that. I do want to set the…
Detectify now has a built-in detection for vBulletin RCE CVE-2019-16759, thanks to a report from our Crowdsource community. Last week, a proof-of-concept exploit for a…
What is the Difference Between Bug Bounties and Penetration Testing? Organizations offer ongoing bug bounties to freelance ethical hackers to discover security vulnerabilities. Alternatively, penetration testing…
Head of Crowdsource, Johanna Ydergård, joined Detectify to work on solving the information gap in cybersecurity by scaling the knowledge of ethical hackers and helping…
Evolving the HackerOne Support Experience We are excited to announce that, after many years of using ZenDesk as a Support ticketing tool, HackerOne is moving…
October is Cyber Security Awareness month, and a good time for organizations and anyone who uses the Internet (yes that means everyone) to review security…
Evolving the HackerOne Support Experience We are excited to announce that, after many years of using ZenDesk as a Support ticketing tool, HackerOne is moving…
tl;dr – CVE-2019-11043 PHP-FPM & NGINX RCE was publicly disclosed and a Proof-of-Concept exploit code was made available on GitHub. We received the report from…
