Today we've added vision capabilities to Hai, HackerOne’s conversational AI! Extract, transform, and query information stored in files on HackerOne has never been easier with Hai! This new feature is currently being rolled out to users that have opted-in to the Hai beta.

👉 In our latest HackerOne Community blog, sec researcher Haoxi Tan provides all the tips and tools for setting up the ultimate web hacking environment 🙌. Whether you’re a newbie or a seasoned pro, you’ll find something valuable to up your hacking game! sprou.tt/1gfq7jnQC8u

🤖 Today is the final day of Hack Week at HackerOne! I’ve been working on a project to integrate Hai into our bug bounty program as early as possible. We’re also planning to open-source it. I’ll keep you updated!

Congratulations to the entire GitHub team for this incredible milestone! 🙌 The continued dedication to driving transparency, hacker rewards, and a strong presence in the community continues to be a leading example of innovation in security. bit.ly/4bYergH

Hey hackers! 🗣️ Grab Singapore just kicked off an exciting campaign that gives you an opportunity to earn up to a 1.5X multiplier on your critical reports.💰 This is your opportunity to help fortify their digital infrastructure. 💪 See the details here: bit.ly/3Cmt8dC

Exciting milestone alert! Join me in congratulating the GitHub team for the 10-year anniversary of their Bug Bounty Program. 💪 sprou.tt/1hPVp4A2rZz

In this vulnerability deep dive, security researcher Haoxi Tan breaks down a Remote Code Execution (RCE) vulnerability, explaining how attackers can exploit this bug and how security teams can identify and remediate it. sprou.tt/1xKlLULhpQ3

While loop without an exit condition in real life 😅

In our latest blog, security researcher Haoxi Tan discusses his tips, tricks, best practices, and preferred tools for finding different XSS vulnerabilities. 🧑‍💻 📖 ➡️ Check it out! bit.ly/3L950PH

Critical Thinking - Bug Bounty Podcast If you're interested, here is the page on how to get it: criticalthinkingpodcast.io/p/how-to-go-fu…

Did you know waiting for pentest results can feel like waiting for Christmas? It usually takes 4-7 weeks! HackerOne’s latest blog dives into the fast lane of pentesting. Check out our cool matrix for the best pentest methods for your needs. See 👉 bit.ly/3OS9FrH

Fresh from the oven! The new slick design makes the HackerOne program policy page easier to navigate. Good for both hackers and customers! As always, feedback is welcome!

That was fast. Within hours of publicly releasing the new Program Declarations, MetaMask.eth 🦊 has already adopted the Open Scope and Fast Payment declarations. Great programs move with a high sense of urgency! hackerone.com/metamask?type=…

This is an exciting development in autonomous vulnerability discovery. 👀 See you at the DEF CON 32 Bug Bounty Village next month! :)

Yay, Adobe has officially launched its public bug bounty program! 🙌 Congrats to the Adobe security team for opening its program to further protect its products, services, and customers. 💪 See the full details in their latest post: adobe.ly/4fgxOUl

Welcome Kara!

🚨 A time zone change broke our platform! Here's how Kazakhstan's decision to unify its time zones led to an unexpected cascade of issues. A thread from some interesting debugging performed earlier this year🧵👇