Best Practices & Guidance

Advice and guidance from hacker-powered security experts.

33:45
Building VDP for Success - NA
- Facebook
- Twitter
- Email
- LinkedIn
Watch Video
Security Leaders Handbook

A guide for making meaningful progress on improving your security posture
- Facebook
- Twitter
- Email
- LinkedIn
Read More
VDP Guide for Financial Services
- Facebook
- Twitter
- Email
- LinkedIn
Read More
Bug Bounty Field Manual for Financial Services
- Facebook
- Twitter
- Email
- LinkedIn
Read More
The Hacker-Powered Security Report 2019
- Facebook
- Twitter
- Email
- LinkedIn
Read More
The Hacker-Powered Security Report 2019: Financial and Insurance
- Facebook
- Twitter
- Email
- LinkedIn
Read More
Worldwide Security Coverage for Unlimited Reach

Cybercriminals aren’t bound by borders, resulting in nearly $600 billion in losses every year. Hackers are your best defense against risks.
- Facebook
- Twitter
- Email
- LinkedIn
Read More
Vulnerability Disclosure Policy. What is it. Why you need one. How to get started.

This three-part series answers all your questions on VDP best practices.
- Facebook
- Twitter
- Email
- LinkedIn
Read More
Vulnerability Disclosure Policy Basics: 5 Critical Components

12-page booklet providing advice for creating a vulnerability disclosure page - along with great quotes about why this matters.
- Facebook
- Twitter
- Email
- LinkedIn
Read More
Guidance for Financial Services on Vulnerability Disclosure Policy Basics

Specific to Finserv on details needed to implement a complete and compliant policy. Takes the VDP guide and updates with finserv intro and Goldman Sachs policy example
- Facebook
- Twitter
- Email
- LinkedIn
Read More
The Beginners' Guide to Hacker-Powered Security

17-page booklet that highlights how hacker-powered security can work alongside established security efforts.
- Facebook
- Twitter
- Email
- LinkedIn
Read More
Secure from the Start: The Complete Guide for Entrepreneurs

Secure from the Start: The Complete Guide for Entrepreneurs summarizes the key security topics that every technology entrepreneur needs to understand.
- Facebook
- Twitter
- Email
- LinkedIn
Read More
The Hacker-Powered Security Report 2018: Financial Services + Insurance

Vulnerability data and hacker-powered security adoption metrics for the financial services industry.
- Facebook
- Twitter
- Email
- LinkedIn
Read More
Next-Gen Application Security Launch Effective Agile Security for Agile Development

Improving application security by incorporating bug bounties and crowdsourced pen tests into DevOps pipeline.
- Facebook
- Twitter
- Email
- LinkedIn
Read More
Top 20 Public Bug Bounty Programs

In this list, you’ll see which programs on the HackerOne platform ranked highest on the total amount of bounties awarded to hackers over the life of the program.
- Facebook
- Twitter
- Email
- LinkedIn
Read More
7 Common Security Pitfalls to Avoid When Migrating to the Cloud

12-page booklet that defines the most common security pitfalls when migrating to the cloud and how to prevent security regression.
- Facebook
- Twitter
- Email
- LinkedIn
Read More
Yelp's First 100 Days of a Public Bug Bounty Program
- Facebook
- Twitter
- Email
- LinkedIn
Read More
Wordpress Q&A With Security Team Lead
- Facebook
- Twitter
- Email
- LinkedIn
Read More
Shopify's Customer Story
- Facebook
- Twitter
- Email
- LinkedIn
Read More
Salesforce Customer Story
- Facebook
- Twitter
- Email
- LinkedIn
Read More
Loading More...

Best Practices & Guidance

Building VDP for Success - NA

Security Leaders Handbook

A guide for making meaningful progress on improving your security posture

VDP Guide for Financial Services

Bug Bounty Field Manual for Financial Services

The Hacker-Powered Security Report 2019

The Hacker-Powered Security Report 2019: Financial and Insurance

Worldwide Security Coverage for Unlimited Reach

Cybercriminals aren’t bound by borders, resulting in nearly $600 billion in losses every year. Hackers are your best defense against risks.

Vulnerability Disclosure Policy. What is it. Why you need one. How to get started.

This three-part series answers all your questions on VDP best practices.

Vulnerability Disclosure Policy Basics: 5 Critical Components

12-page booklet providing advice for creating a vulnerability disclosure page - along with great quotes about why this matters.

Guidance for Financial Services on Vulnerability Disclosure Policy Basics

Specific to Finserv on details needed to implement a complete and compliant policy. Takes the VDP guide and updates with finserv intro and Goldman Sachs policy example

The Beginners' Guide to Hacker-Powered Security

17-page booklet that highlights how hacker-powered security can work alongside established security efforts.

Secure from the Start: The Complete Guide for Entrepreneurs

Secure from the Start: The Complete Guide for Entrepreneurs summarizes the key security topics that every technology entrepreneur needs to understand.

The Hacker-Powered Security Report 2018: Financial Services + Insurance

Vulnerability data and hacker-powered security adoption metrics for the financial services industry.

Next-Gen Application Security Launch Effective Agile Security for Agile Development

Improving application security by incorporating bug bounties and crowdsourced pen tests into DevOps pipeline.

Top 20 Public Bug Bounty Programs

In this list, you’ll see which programs on the HackerOne platform ranked highest on the total amount of bounties awarded to hackers over the life of the program.

7 Common Security Pitfalls to Avoid When Migrating to the Cloud

12-page booklet that defines the most common security pitfalls when migrating to the cloud and how to prevent security regression.

Yelp's First 100 Days of a Public Bug Bounty Program

Wordpress Q&A With Security Team Lead

Shopify's Customer Story

Salesforce Customer Story