HackerOne Blog

Offensive Security

What Are Bug Bounties and How Do They Work?

December 4th, 2025

Bug bounties give security researchers a structured way to report vulnerabilities. This guide explains how bug bounty programs work and why organizations use them.

Read Now

All

Cloud Security

Code Security

Crowdsourced Security

Culture & Talent

Defense in Depth

From the CEO

HackerOne News

Offensive Security

Public Policy

Return on Mitigation

Security Compliance

Security Research

Exposure Management

Offensive Security

Stanford’s Test Proves the Point: Agentic AI Is Transforming Offensive Security, but Real Defense Still Requires a Hybrid of AI and Human Expertise

December 17th, 2025

Independent research shows where agentic AI excels and where human judgment remains essential in penetration testing, underscoring the need for a hybrid security model.

Crowdsourced Security

Offensive Security

Bug Bounty

What Are Bug Bounties and How Do They Work?

December 4th, 2025

Bug bounties give security researchers a structured way to report vulnerabilities. This guide explains how bug bounty programs work and why organizations use them.

Offensive Security

AI Red Teaming

Inside the AI Red Teaming CTF: What 200+ Players Taught Us About Breaking and Defending LLMs

October 23rd, 2025

200+ players, 10 days, 11 challenges. See what the HackerOne × Hack The Box AI red teaming CTF uncovered about breaking and defending LLMs.

Offensive Security

Pentest as a Service

External Network Penetration Testing and Best Practices

August 6th, 2025

Learn how external network penetration testing hardens internet-facing assets. Get best practices, common risks, and how HackerOne PTaaS reduces risk fast.

Offensive Security

API Pentesting and Best Practices

July 29th, 2025

HackerOne's community-driven Pentest as a Service (PTaaS) uncovers vulnerabilities specific to APIs, leveraging expert methodologies and tailored testing approaches.

Offensive Security

Pentest as a Service

The Leading CISO Strategy to Pentest as a Service

July 17th, 2025

Security leaders are redefining penetration testing as a service to uncover vulnerabilities and protect every layer of enterprise risk.

Offensive Security

Pentesting for Android Mobile Applications

May 6th, 2025

Currently, Android is the leading mobile operating system worldwide, claiming 71.65% of the market share...

Offensive Security

Pentesting for AI and Large Language Models

April 11th, 2025

Today, technological advancements in Large Language Models (LLMs) and the artificial intelligence (AI) behind them have reignited discussions around Turing's original concept.

Offensive Security

AI Red Teaming

How Anthropic’s Jailbreak Challenge Put AI Safety Defenses to the Test

March 3rd, 2025

Last month, Anthropic partnered with HackerOne to complete an AI red teaming challenge on a...