Skip to main content

Application Security

Learn how to prevent vulnerabilities in your applications. We cover current practices in application security, cloud security, API testing, and more.

Application Security, Penetration Testing, Vulnerability Management

Introducing Unified HackerOne Scope Management with Burp Suite Support

This post will start with the basics of defining scope and how ethical hackers and testers use it in their testing workflow. If you’re already...

How Wix Uses HackerOne to Improve Their Cybersecurity Posture
Customer Stories, Application Security, Best Practices, Bounty, Vulnerability Management

How Wix Improves Their Security Posture with Ethical Hackers

Reducing risk is fundamental to Wix’s approach to cybersecurity, and as the threat landscape evolves, they...

top 5 cloud
Application Security

The Top 5 Cloud Security Risks: How Hacker-Powered Security Can Help

Widespread digital transformation means increased cloud security risk. Learn how human intelligence—hacker...

HAC AWS
Penetration Testing, Ethical Hacker, Application Security

HackerOne Announces Hacker-Powered Cloud Security Capabilities for AWS Customers 

HackerOne announces new capabilities for AWS customers looking to improve security in their cloud applications...

DOD seal
Vulnerability Disclosure, Customer Stories, Best Practices, Application Security, Response

The DOD Improves Their Security Posture Through the DIB-VDP

One of the primary missions of the Defense Counterintelligence and Security Agency (DCSA) is to provide...

How the Industry’s First Hacker-Powered API Helps Hackers Automate Workflows
Application Security

How the Industry’s First Hacker-Powered API Helps Hackers Automate Workflows

Today, HackerOne is launching the industry’s first hacker API. This release is now out of beta and is...
Spotlight on the Server-Side
Application Security, Data and Analysis

Spotlight on the Server-Side

Server-side request forgery (or SSRF) vulnerabilities are particularly dangerous because they can lead to...

Reddit's Bug Bounty Program Kicks Off
Application Security, Bounty, New Program Launch

Reddit's Bug Bounty Program Kicks Off: Q&A with Reddit's Allison Miller and Spencer Koch, and Top Program Hacker @RENEKROKA

HackerOne sat down with Reddit’s CISO and VP of Trust, resident Security Wizard, and top hacker to discover...

5 Learnings From A Conversation With OP Financial Group's CISO And @mrtuxracer
Application Security, Customer Stories, Bounty, Vulnerability Disclosure, Response

5 Learnings From A Conversation With OP Financial Group's CISO And @mrtuxracer

On 20 January, HackerOne’s CEO, Marten Mickos, sat down for a chat with European hacker, Julien Ahrens a.k.a...