The 2022 Attack Resistance Report

Nearly half of organizations lack confidence to close security gaps according to a new report.

Check out the report

Introducing Attack Resistance Management

Learn how to find and protect all your assets.

Discover how it works

Meet with HackerOne at Infosecurity Europe 21-23 June

Close the gaps in your attack resistance

Book a 1:1 Meeting

Code review pioneer PullRequest is now part of HackerOne

PullRequest will power new developer-first security testing solutions.

Learn about the acquisition

Application Security

Learn how to prevent vulnerabilities in your applications. We cover current practices in application security, cloud security, API testing, and more.

Category
All
All
DevOps DevSecOps
Application Security

DevSecOps vs DevOps: What is the Difference?

DevSecOps can dramatically reduce cyber risk for organizations—particularly those that rely on internal development for a competitive advantage.

Popular posts
AWS SH

How a New HackerOne Integration with AWS Security Hub Accelerates Vulnerability Remediation Time

Company News, Ethical Hacker
The ICO’s 12-Step Guide to GDPR Compliance

The ICO’s 12-Step Guide to GDPR Compliance

Vulnerability Disclosure, Security Compliance, Company Resources, GDPR, Compliance
Hack The Pentagon Turns One on HackerOne

Hack The Pentagon Turns One on HackerOne

Ethical Hacker, Challenge, News, Customer Stories, Bounty
Key Findings From The Hacker-Powered Security Report: It’s Not Just For Tech (1 of 6)

Key Findings From The Hacker-Powered Security Report: It’s Not Just For Tech (1 of 6)

Security Compliance, Hacker Powered Security Report
Discover more with topics that matter to you most.
Application Security
Ethical Hacker
Company News
From The CEO
Security Compliance
Penetration Testing
Vulnerability Management
DevOps DevSecOps
Application Security

DevSecOps vs DevOps: What is the Difference?

DevSecOps can dramatically reduce cyber risk for organizations—particularly those that rely on internal...

What is Confluence CVE-2022-26134 and How Do I Fix It
Application Security

Severe Confluence Vulnerability is an Active Threat (CVE-2022-26134)

Background The vulnerability allows unauthenticated remote code execution (RCE). Exploitation occurs by...
pullrequest5ways
Application Security

5 Ways I Provide Value as a PullRequest Reviewer When I Start Reviewing a New Project

Important reviewer traits for providing a great code review include prior knowledge and experience, expertise...

HackerOne announces PullRequest acquisition
Company News, Application Security

Why HackerOne Acquired Pull Request and What It Means to Our Customers

Security vulnerabilities are a significant workflow disruption when discovered near the end of development...
How Wix Uses HackerOne to Improve Their Cybersecurity Posture
Customer Stories, Application Security, Best Practices, Bounty, Vulnerability Management

How Wix Improves Their Security Posture with Ethical Hackers

Reducing risk is fundamental to Wix’s approach to cybersecurity, and as the threat landscape evolves, they...

Read More
top 5 cloud
Application Security

The Top 5 Cloud Security Risks: How Hacker-Powered Security Can Help

Widespread digital transformation means increased cloud security risk. Learn how human intelligence—hacker...

HAC AWS
Penetration Testing, Ethical Hacker, Application Security

HackerOne Announces Hacker-Powered Cloud Security Capabilities for AWS Customers 

HackerOne announces new capabilities for AWS customers looking to improve security in their cloud applications...

Explore the solution
DOD seal
Vulnerability Disclosure, Customer Stories, Best Practices, Application Security, Response

The DOD Improves Their Security Posture Through the DIB-VDP

One of the primary missions of the Defense Counterintelligence and Security Agency (DCSA) is to provide...

See what's happening four months into the DIB-VDP pilot
From Around the Blog