The 2022 Attack Resistance Report

Nearly half of organizations lack confidence to close security gaps according to a new report.

Check out the report

Introducing Attack Resistance Management

Learn how to find and protect all your assets.

Discover how it works

Security@ 2022: Achieve Attack Resistance

October 12-13, San Diego | October, 13, London | Virtual

Save the date

Code review pioneer PullRequest is now part of HackerOne

PullRequest will power new developer-first security testing solutions.

Learn about the acquisition

Application Security

Learn how to prevent vulnerabilities in your applications. We cover current practices in application security, cloud security, API testing, and more.

Category
All
All
Blog
Penetration Testing, Application Security

What Your Organization Gains by Understanding the Value of App Security Testing Averages

Daily and weekly agile software releases include bug fixes and security patches alongside new functionality. As a result, new vulnerabilities are...

Popular posts
AWS SH

How a New HackerOne Integration with AWS Security Hub Accelerates Vulnerability Remediation Time

Company News, Ethical Hacker
The ICO’s 12-Step Guide to GDPR Compliance

The ICO’s 12-Step Guide to GDPR Compliance

Vulnerability Disclosure, Security Compliance, Company Resources, GDPR, Compliance
Hack The Pentagon Turns One on HackerOne

Hack The Pentagon Turns One on HackerOne

Ethical Hacker, Challenge, News, Customer Stories, Bounty
Key Findings From The Hacker-Powered Security Report: It’s Not Just For Tech (1 of 6)

Key Findings From The Hacker-Powered Security Report: It’s Not Just For Tech (1 of 6)

Security Compliance, Hacker Powered Security Report
Discover more with topics that matter to you most.
Application Security
Ethical Hacker
Company News
From The CEO
Security Compliance
Penetration Testing
Vulnerability Management
top 5 cloud
Application Security

The Top 5 Cloud Security Risks: How Hacker-Powered Security Can Help

Widespread digital transformation means increased cloud security risk. Learn how human intelligence—hacker...

HAC AWS
Penetration Testing, Ethical Hacker, Application Security

HackerOne Announces Hacker-Powered Cloud Security Capabilities for AWS Customers 

HackerOne announces new capabilities for AWS customers looking to improve security in their cloud applications...

Explore the solution
DOD seal
Vulnerability Disclosure, Customer Stories, Best Practices, Application Security, Response

The DOD Improves Their Security Posture Through the DIB-VDP

One of the primary missions of the Defense Counterintelligence and Security Agency (DCSA) is to provide...

See what's happening four months into the DIB-VDP pilot
How the Industry’s First Hacker-Powered API Helps Hackers Automate Workflows
Application Security

How the Industry’s First Hacker-Powered API Helps Hackers Automate Workflows

Today, HackerOne is launching the industry’s first hacker API. This release is now out of beta and is...
Spotlight on the Server-Side
Application Security, Data and Analysis

Spotlight on the Server-Side

Server-side request forgery (or SSRF) vulnerabilities are particularly dangerous because they can lead to...

Read More
Reddit's Bug Bounty Program Kicks Off
Application Security, Bounty, New Program Launch

Reddit's Bug Bounty Program Kicks Off: Q&A with Reddit's Allison Miller and Spencer Koch, and Top Program Hacker @RENEKROKA

HackerOne sat down with Reddit’s CISO and VP of Trust, resident Security Wizard, and top hacker to discover...

Learn More
5 Learnings From A Conversation With OP Financial Group's CISO And @mrtuxracer
Application Security, Customer Stories, Bounty, Vulnerability Disclosure, Response

5 Learnings From A Conversation With OP Financial Group's CISO And @mrtuxracer

On 20 January, HackerOne’s CEO, Marten Mickos, sat down for a chat with European hacker, Julien Ahrens a.k.a...

LINE on Securing the Application Development Lifecycle with Bug Bounties
Application Security, Customer Stories, Bounty

LINE on Securing the Application Development Lifecycle with Bug Bounties

HackerOne has a large hacker community and the platform necessary to operate LINE’s bug bounty program. By...

From Around the Blog