How users and applications stay safe on the Internet: it’s proxy servers all the way down
An overview of how proxy servers form the basis of online anonymity, and how their use in various forms helps both users and web applications.…
Category: Mix
Prompt Injection Attacks and Mitigations · rez0
I recently participated as a panelist on a HackerOne press panel where there was a lot of discussion about AI and security. In preparation, I…
Use Hackerone’s Enhanced Pentest as a Service to Streamline Security Testing
New capabilities improve pentesting to increase attack resistance The enhanced features drive robust security testing practices with the ability to launch, test, identify, retest, and…
How to interpret your Detectify score
Detectify is aiming to make security understandable and easy to work with. That is why we visualize your security status in several ways in the…
NO. 366 | T-Breach, Siri++, Conception Ages…
Exploring the intersection of security, technology, and society—and what might be coming next… Standard Web Edition | January 23, 2023 🎙️If you’re not subscribed to…
Migrating to the cloud but without screwing it up, or how to move house
A practical guide to moving to cloud services with minimal downtime, using AWS examples. For an application that’s ready to scale, not using managed cloud…
Announcing the Results of Hack U.S.
On July 4th, 2022, Chief Digital and Artificial Intelligence Office (CDAO), Directorate for Digital Services (DDS), DoD Cyber Crime Center (DC3), and HackerOne publicly launched…
Why is securing the external attack surface a hot topic for security experts right now?
Gone are the days when gate-based security processes were the most effective way to ensure security of an organization’s external attack surface. Getting the security…
Summary: Andrej Karpathy on Lex Fridman’s Podcast (Late 2022)
This is member content. Thank you for being a subscriber. .memberful-global-teaser-content p:last-child{ -webkit-mask-image: linear-gradient(180deg, #000 0%, transparent); mask-image: linear-gradient(180deg, #000 0%, transparent); } This is…
Secure application architecture basics: separation, configuration, and access
A starting point for building secure application architecture, for busy developers. Software developers today are encouraged to focus on building, and that’s a great thing.…
Bug Bytes #196 – Prompt Injection, Self Healing Code, Access Control and Hacker Motivation
Bug Bytes is a weekly newsletter curated by members of the bug bounty community. The second series is curated by InsiderPhD. Every week, she keeps…
Let’s Celebrate the Hacker Community
October is Cybersecurity Awareness Month, but at HackerOne, we’ve decided it should be Hacker Awareness Month. We want to spend October celebrating the individuals that…