UPDATED: Please note that we updated this post on 5/5 with even more blogs our hackers suggested. Thank you!
Hackers in our community often share overviews of their security research in their blogs, and we love checking them out. Knowledge sharing is something we value at HackerOne, which is why we encourage all hackers and companies to publicly disclose resolved vulnerability reports. Check out our Hacktivity page that now surfaces all these reports on HackerOne.
In the spirit of sharing more hacker knowledge, we've compiled a list of hacker blogs that we regularly read. These are full of interesting and relevant security research.
A quick note: HackerOne doesn't have any influence over the content of these blogs. We can't take responsibility for what you find there.
- Detectify Blog
- Security Shizzle — Inti De Ceukelaire
- fin1te: Bug Bounty Participant
- Security & Code Blog
- Philippe Harewood
- ARNE SWINNEN'S SECURITY BLOG
- Daniel LeCheminant
- We Hack People
- IT-Securityguard Blog
- The misunderstood X-XSS-Protection
- Bug Bounty Findings by Meals
- Respect XSS
- Graceful Security!
- Fooling the Interpreter
- Klikki Oy
The blogs below are not updated as regularly but still have interesting content:
Is your blog or one of your favorites missing from our list? Please feel free to email us directly at firstname.lastname@example.org and we'll add it! Hack on!
HackerOne is the #1 hacker-powered security platform, helping organizations find and fix critical vulnerabilities before they can be criminally exploited. As the contemporary alternative to traditional penetration testing, our bug bounty program solutions encompass vulnerability assessment, crowdsourced testing and responsible disclosure management. Discover more about our security testing solutions or Contact Us today.