Most Recent Flipbooks
Zomato Case Study
APAC case study. India-based Zomato runs a public bug bounty program. This pdf overviews their 1-year recap launch and how they've paid out over $100K to 350+ hackers.
Quick blog recap and linkout to the Yelp engineering blog after their first 100 days of their public program. Good analysis and comparison of private to public transition.
Q&A their security team lead did with us on the blog, reprinted
SumoLogic Case Study
Sumo Logic chose to augment their pen tests with time-bound bug bounty programs using HackerOne Challenge.
The Shopify Case Study
Follow Shopify's hacker-powered security journey from the beginning: how responding to an external developers vulnerability report evolved to the model public bug bounty program that it is today.
Salesforce Case Study
Product security lead, Vinayendra Nataraja, recently shed some light on the success of their private bug bounty program.
Good short recap of "why they pay hackers to break them"
Alex Gantman VP, Engineering, Qualcomm Technologies, Inc. Q&A from June 2017 designed in a “case study” like format.
Nextcloud Case Study
EMEA case study. Germany-based cloud security firm Nextcloud uses bug bounties to expand their security efforts and address GDPR compliance.
Alex Ulsh goes into detail of running their bug bounty program
U.S. Department of Defense
The story of the work we've done and are doing for the Federal Government.
GM Case Study
How GM works with hackers to enhance their security. This is a customer story for GM, recasting the already published Gizmodo article and the 2-year anniversary blog we did into a case study format.
EU Commission, Singapore MINDEF, U.S. Department of Defense and The Pentagon, US Army, US Air Force
This asset tells the success stories of how the US DoD, EU Commission, Singapore MINDEF and others, trust HackerOne to manage their hacker-powered security programs.
$50K bounty announcement
GitHub case study
The story for a mature and advanced Bounty program that switched to HackerOne from an in-house alternative.