Skip to main content

Application Security

Learn how to prevent vulnerabilities in your applications. We cover current practices in application security, cloud security, API testing, and more.

Application Security, Penetration Testing, Vulnerability Management

Introducing Unified HackerOne Scope Management with Burp Suite Support

This post will start with the basics of defining scope and how ethical hackers and testers use it in their testing workflow. If you’re already...

Public Bug Bounty Program
Application Security, New Program Launch

Tor Project Launches Public Bug Bounty Program | Q&A with Tor Browser Team Lead, Georg Koppen

In January 2016, the Tor Project launched its first private bug bounty program on HackerOne. Today the Tor...

Hacker-Powered Security
Application Security, Best Practices

451 Research Defines 7-Step Roadmap for Hacker-Powered Security Success

One of the top IT research and advisory companies, 451 Research, recently authored a new “pathfinder report”...

Your Grab public bug bounty program is arriving now
Application Security, New Program Launch

Your Grab public bug bounty program is arriving now

Any hackers out there ever hunt for bugs on your mobile phone while riding in a car? Well, now our thousands...

GitHub Hacker-Powered Security
Application Security, Customer Stories, Bounty

GitHub Embraces Hacker-Powered Security To Protect 55 Million Projects

You’ve probably heard of GitHub, but you might not know they support more than 20 million people learning...

How To: Server-Side Request Forgery (SSRF)
Application Security

How To: Server-Side Request Forgery (SSRF)

Server-Side Request Forgery, SSRF for short, is a vulnerability class that describes the behavior of a server...

It’s Phab-tastic! HackerOne integrates with Phabricator
Application Security, New Features

It’s Phab-tastic! HackerOne integrates with Phabricator

Like many companies in Silicon Valley, we at HackerOne believe in using what we build. (This is sometimes...
Secure Software Development
Application Security, Customer Stories, Bounty

GitLab's Brian Neel on Secure Software Development and Bug Bounties

Brian Neel, GitLab’s Security Lead, looks at how the software security apparatus has grown over time, and how...

The Visual Guide to Bug Bounty Success
Application Security, Company Resources, Best Practices

The Visual Guide to Bug Bounty Success

We have created the most comprehensive, educational, practical, and valuable resource ever about the ins and...