Best Practices & Guidance

Advice and guidance from hacker-powered security experts.

33:45
Building VDP for Success - NA
- Facebook
- Twitter
- Email
- LinkedIn
Watch Video
Security Leaders Handbook

A guide for making meaningful progress on improving your security posture
- Facebook
- Twitter
- Email
- LinkedIn
Read More
VDP Guide for Financial Services
- Facebook
- Twitter
- Email
- LinkedIn
Read More
Bug Bounty Field Manual for Financial Services
- Facebook
- Twitter
- Email
- LinkedIn
Read More
The Hacker-Powered Security Report 2019
- Facebook
- Twitter
- Email
- LinkedIn
Read More
The Hacker-Powered Security Report 2019: Financial and Insurance
- Facebook
- Twitter
- Email
- LinkedIn
Read More
Vulnerability Disclosure Policy. What is it. Why you need one. How to get started.

This three-part series answers all your questions on VDP best practices.
- Facebook
- Twitter
- Email
- LinkedIn
Read More
Vulnerability Disclosure Policy Basics: 5 Critical Components

12-page booklet providing advice for creating a vulnerability disclosure page - along with great quotes about why this matters.
- Facebook
- Twitter
- Email
- LinkedIn
Read More
Guidance for Financial Product: Product: Services on Vulnerability Disclosure Policy Basics

Specific to Finserv on details needed to implement a complete and compliant policy. Takes the VDP guide and updates with finserv intro and Goldman Sachs policy example
- Facebook
- Twitter
- Email
- LinkedIn
Read More
The Beginners' Guide to Hacker-Powered Security

17-page booklet that highlights how hacker-powered security can work alongside established security efforts.
- Facebook
- Twitter
- Email
- LinkedIn
Read More
Secure from the Start: The Complete Guide for Entrepreneurs

Secure from the Start: The Complete Guide for Entrepreneurs summarizes the key security topics that every technology entrepreneur needs to understand.
- Facebook
- Twitter
- Email
- LinkedIn
Read More
The Hacker-Powered Security Report 2018: Financial Product: Product: Services + Insurance

Vulnerability data and hacker-powered security adoption metrics for the financial services industry.
- Facebook
- Twitter
- Email
- LinkedIn
Read More
Next-Gen Solutions: Application Security Launch Effective Agile Security for Agile Development

Improving application security by incorporating bug bounties and crowdsourced pen tests into DevOps pipeline.
- Facebook
- Twitter
- Email
- LinkedIn
Read More
Top 20 Public Bug Product: Bounty Programs

In this list, you’ll see which programs on the HackerOne platform ranked highest on the total amount of bounties awarded to hackers over the life of the program.
- Facebook
- Twitter
- Email
- LinkedIn
Read More
7 Common Security Pitfalls to Avoid When Migrating to the Cloud

12-page booklet that defines the most common security pitfalls when migrating to the cloud and how to prevent security regression.
- Facebook
- Twitter
- Email
- LinkedIn
Read More
Yelp's First 100 Days of a Public Bug Product: Bounty Program
- Facebook
- Twitter
- Email
- LinkedIn
Read More
Wordpress Q&A With Security Team Lead
- Facebook
- Twitter
- Email
- LinkedIn
Read More
Shopify's Customer Story
- Facebook
- Twitter
- Email
- LinkedIn
Read More
Salesforce Customer Story
- Facebook
- Twitter
- Email
- LinkedIn
Read More
Riot Games' Customer Story
- Facebook
- Twitter
- Email
- LinkedIn
Read More
Loading More...

Best Practices & Guidance

Building VDP for Success - NA

Security Leaders Handbook

A guide for making meaningful progress on improving your security posture

VDP Guide for Financial Services

Bug Bounty Field Manual for Financial Services

The Hacker-Powered Security Report 2019

The Hacker-Powered Security Report 2019: Financial and Insurance

Vulnerability Disclosure Policy. What is it. Why you need one. How to get started.

This three-part series answers all your questions on VDP best practices.

Vulnerability Disclosure Policy Basics: 5 Critical Components

12-page booklet providing advice for creating a vulnerability disclosure page - along with great quotes about why this matters.

Guidance for Financial Product: Product: Services on Vulnerability Disclosure Policy Basics

Specific to Finserv on details needed to implement a complete and compliant policy. Takes the VDP guide and updates with finserv intro and Goldman Sachs policy example

The Beginners' Guide to Hacker-Powered Security

17-page booklet that highlights how hacker-powered security can work alongside established security efforts.

Secure from the Start: The Complete Guide for Entrepreneurs

Secure from the Start: The Complete Guide for Entrepreneurs summarizes the key security topics that every technology entrepreneur needs to understand.

The Hacker-Powered Security Report 2018: Financial Product: Product: Services + Insurance

Vulnerability data and hacker-powered security adoption metrics for the financial services industry.

Next-Gen Solutions: Application Security Launch Effective Agile Security for Agile Development

Improving application security by incorporating bug bounties and crowdsourced pen tests into DevOps pipeline.

Top 20 Public Bug Product: Bounty Programs

In this list, you’ll see which programs on the HackerOne platform ranked highest on the total amount of bounties awarded to hackers over the life of the program.

7 Common Security Pitfalls to Avoid When Migrating to the Cloud

12-page booklet that defines the most common security pitfalls when migrating to the cloud and how to prevent security regression.

Yelp's First 100 Days of a Public Bug Product: Bounty Program

Wordpress Q&A With Security Team Lead

Shopify's Customer Story

Salesforce Customer Story

Riot Games' Customer Story