RedPacket SecurityHackerOne Bug Bounty Disclosure: webauthn-app-was-updated-based-on-public-key-se-en - https://www.redpacketsecurity.com/hackerone-bugbounty-disclosure-webauthn-app-was-updated-based-on-public-key-se-en/
HackerOne Bug Bounty Disclosure: mqtt-protocol-packet-injection-via-unchecked-connack-remaining-length-pajarori - https://www.redpacketsecurity.com/hackerone-bugbounty-disclosure-mqtt-protocol-packet-injection-via-unchecked-connack-remaining-length-pajarori/
HackerOne Bug Bounty Disclosure: information-disclosure-via-logback-configuration-injection-in-gocd-agent-aigirl - https://www.redpacketsecurity.com/hackerone-bugbounty-disclosure-information-disclosure-via-logback-configuration-injection-in-gocd-agent-aigirl/
HackerOne Bug Bounty Disclosure: user-enumeration-via-timing-attack-in-django-mod-wsgi-authentication-backend-leads-to-account-discovery-stackered - https://www.redpacketsecurity.com/hackerone-bugbounty-disclosure-user-enumeration-via-timing-attack-in-django-mod-wsgi-authentication-backend-leads-to-account-discovery-stackered/
HackerOne Bug Bounty Disclosure: previous-commentor-on-post-can-still-comment-even-after-comment-permission-is-changed-to-disabled-allenjo - https://www.redpacketsecurity.com/hackerone-bugbounty-disclosure-previous-commentor-on-post-can-still-comment-even-after-comment-permission-is-changed-to-disabled-allenjo/
HackerOne Bug Bounty Disclosure: improper-access-control-access-to-active-hiring-premium-feature-filter-results-minex - https://www.redpacketsecurity.com/hackerone-bugbounty-disclosure-improper-access-control-access-to-active-hiring-premium-feature-filter-results-minex/
Juustoperse@FlohEinstein @CryptoLek @turkusec As I didn't see you posting one, (missed in timeline) I thought it would be as reply here. it wasn't. So here you go - another one.
FlohEinsteinMy Swiss brain is so tuned to associate stuff that ends in "...one" with certain chocolate products that I just mispronounced Hackerone (thereby confusing my colleagues).
#hackerone #toblerone #justswissthings #chocolate #Switzerland #infosec #photoshopped #notaigenerated
#hackerone #toblerone #justswissthings #chocolate #Switzerland #infosec #photoshopped #notaigenerated
Tarnkappe.info📬 Wegen KI-Spam: curl stellt Bug-Bounty ein
#ITSicherheit #Kommentar #KünstlicheIntelligenz #Apache #BugBounty #curl #hackerone #kispam #log4j https://sc.tarnkappe.info/22820d
#ITSicherheit #Kommentar #KünstlicheIntelligenz #Apache #BugBounty #curl #hackerone #kispam #log4j https://sc.tarnkappe.info/22820d
Kevin Karhan 
@bagder personally, I find that platforms like @Hacker0x01 don't move things much further.
- Neither are companies on there more receptible nor do things get fixed quicker as far as I can see, tho my sample size is not scientific.
Either a company / organization / project has a "#SecurityCulture" or not.
- For most corpos #HackerOne is just a checkbox to tick when it comes to "vulnerability managment"…