Mozilla has a great security team and they have recently moved to HackerOne https://hackerone.com/. I don't understand where you get the basis for saying that mozilla employees don't work on weekends. Any facts or substantiation or just speculation? Source: 11 months ago
You pick a target, for example hackerone.com. Source: about 1 year ago
There are many resources online nowadays to learn security. You can do challenges on https://root-me.org, https://www.hackthebox.com/, https://overthewire.org/wargames/, etc. You can participate in security competitions (CTFs), see https://ctftime.org for a list of upcoming events. And finally if you are more interested in web security you can look for bugs on websites and get paid for it by https://hackerone.com... Source: about 1 year ago
Do Bug bounty on https://hackerone.com. You'll get paid if you really know how to hack and write a report.alot oh cash rains in the thousands if you can pwn a computer that is in scope .plus its legal as long as you stay in scope. Source: about 1 year ago
Depending on what type of cybersecurity you want to do, there's other ways to set yourself apart as well. Another way I'd get confidence in someone's abilities is if they've made bug bounties on bugcrowd.com or hackerone.com, for example. Even then, at big companies those people still have to go through HR just like everybody else. Source: over 1 year ago
Haha nah. Immunefi is essentially the https://hackerone.com of crypto that's all. Source: about 2 years ago
Often in the world of bug bounties exploits are marked as previously known issues when they probably aren't. As far as people being sued for hacking, it is unlikely that they had permission from a collaborative program such as you would see on https://hackerone.com. Source: about 2 years ago
They do this by setting up bounty programs where individual programmers get paid to find hidden problems. Websites like HackerOne and Bugcrowd regularly have opportunities to make money doing this. - Source: dev.to / about 2 years ago
Yeah. Sometimes I like to try and find vulnerabilities on companies using https://hackerone.com to try and earn some money. Source: about 2 years ago
Huge thanks to the yangyuan and guys from HearthSim community for making it all possible: jleclanche for introducing me to HackerOne bug bounty program, Patashu for making Combo Priest Simulator among other things, and the whole community for their dedication to finding Hearthstone bugs and writing amazing stuff like Advanced rulebook! Source: about 2 years ago
I'm new to this and I started learning about bug bounties last year with hackerone.com and portswigger.net. Now I'm shifting gears and learning about pentesting on tryhackme.com and in the future hackthebox.eu. It looks like bug bounty hunters usually work on a platform like hackerone and get paid per each finding and how severe it is; and pentesters can find work on Linkedin like a contractor and get paid for... Source: about 2 years ago
Hackerone.com its up to 100k for exploit on vanguard now. Source: over 2 years ago
Something else that looks great on a resume is bug bounties. There are a number of responsible disclosure websites like HackerOne and BugCrowd where you can find companies willing to either pay or provide thanks for responsibly disclosing security flaws in their products. Look up some tips on bug bounty hunting and if you get lucky you might be able to find something! Source: over 2 years ago
Hackerone.com and bugcrowd.com but you need hacking skills. Source: almost 3 years ago
Check out https://bugcrowd.com and https://hackerone.com For a work in infosec my recommendation would be a little bit of formal education. Assume that in an interview there'll be some jargon -- you need to understand the questions and answer appropriately. Most of the work in infosec is about protecting against attacks, not necessarily pentesting. This said, passion is everything, if you have that, there's no... - Source: Hacker News / about 3 years ago
Assist in maintaining bug bounty program hosted on hackerone by directly engaging security researchers and awarding bounties. Source: about 3 years ago
Lastly, please don't run port scans against unauthorized targets. It's illegal in some countries. Try websites like hackerone.com or bugcrowd.com to find legal targets you're free to scan. Source: about 3 years ago
Do you know an article comparing HackerOne to other products?
Suggest a link to a post with product alternatives.
This is an informative page about HackerOne. You can review and discuss the product here. The primary details have not been verified within the last quarter, and they might be outdated. If you think we are missing something, please use the means on this page to comment or suggest changes. All reviews and comments are highly encouranged and appreciated as they help everyone in the community to make an informed choice. Please always be kind and objective when evaluating a product and sharing your opinion.
HackerOne is a leading platform in the cybersecurity industry that helps organizations find and fix vulnerabilities before they can be exploited. Known for its bug bounty and vulnerability coordination services, HackerOne has made a significant contribution to improving the security posture of countless organizations. Through its platform, ethical hackers from around the world can collaborate with organizations to identify and rectify security loopholes, often receiving financial rewards for their efforts. This crowd-sourced approach to cybersecurity is innovative and can be incredibly effective, leveraging the collective knowledge and expertise of a global community of hackers.