HackerOne
HackerOneReviews from AWS customer
0 AWS reviews
-
5 star0
-
4 star0
-
3 star0
-
2 star0
-
1 star0
External reviews
71 reviews
from
and
External reviews are not included in the AWS star rating for the product.
A resource saving, reliable partner
What do you like best about the product?
We’ve been working with HackerOne to run our responsible vulnerability disclosure and bug bounty programs, and overall, it’s been a great experience.
The H1 triage team has saved my team a lot of time. They’re thorough, reliable, and always ready to assist when needed.
On top of that, HackerOne’s pricing is very competitive, especially for existing customers who want to upgrade their capabilities.
The H1 triage team has saved my team a lot of time. They’re thorough, reliable, and always ready to assist when needed.
On top of that, HackerOne’s pricing is very competitive, especially for existing customers who want to upgrade their capabilities.
What do you dislike about the product?
When our account manager changed, we went through a couple of months where support felt a bit lacking on this area. The triage team kept everything on track, but the transition could have been handled more smoothly.
What problems is the product solving and how is that benefiting you?
Helps us identify and address security vulnerabilities efficiently, keeping costs under control.
HackerOne saves us time by separating the wheat from the chaff
What do you like best about the product?
The platform is easy to setup and manage, and backed by a great customer support team.
For sensitive projects, it's also nice that we can handpick our hackers.
For sensitive projects, it's also nice that we can handpick our hackers.
What do you dislike about the product?
The H1 Triage team can be a bit inconsistent at times.
What problems is the product solving and how is that benefiting you?
The H1 Triage team reduce our workload by dealing with the many duplicates / out of scope reports.
Historically, we also had issues where hackers would find bugs and report them to whatever mailbox they could find. Often these would take a lot of time before they reached the right people internally.
The HackerOne Platform offers hackers a clear place to report bugs to, ensuring they are received and handled more quickly.
Historically, we also had issues where hackers would find bugs and report them to whatever mailbox they could find. Often these would take a lot of time before they reached the right people internally.
The HackerOne Platform offers hackers a clear place to report bugs to, ensuring they are received and handled more quickly.
Covering Blind Spots with Reliable Security and Support
What do you like best about the product?
HackerOne is an excellent platform for strengthening cybersecurity. The team is incredibly helpful, offering personalized advice to ensure you get the most out of the service. It is also a fantastic addition to any security strategy, filling gaps that traditional penetration tests might miss.
With a user-friendly interface and access to skilled ethical hackers, it’s a reliable and efficient way to manage vulnerabilities.
Highly recommend!
With a user-friendly interface and access to skilled ethical hackers, it’s a reliable and efficient way to manage vulnerabilities.
Highly recommend!
What do you dislike about the product?
At times, the triage process might struggle to reproduce an issue, which can require additional clarification.
Additionally, if your systems are highly locked down, setting up access and accounts for hackers can be time-consuming and require extra effort. This step is not inherently problematic but does demand proper planning to ensure the process runs smoothly and you can reap the benefits of using the program as soon as possible.
Additionally, if your systems are highly locked down, setting up access and accounts for hackers can be time-consuming and require extra effort. This step is not inherently problematic but does demand proper planning to ensure the process runs smoothly and you can reap the benefits of using the program as soon as possible.
What problems is the product solving and how is that benefiting you?
HackerOne is helping us uncover security issues we weren’t aware of, adding an extra layer of protection that enhances our overall security posture.
H1 BBP: Things to be desired occasionally, but always an important and valuable tool
What do you like best about the product?
As an organization that had paid limited attention to application security before contracting with HackerOne, it was easy to get started and immediately see clear value and return. We still have a relatively junior application security program, but we've made huge leaps thanks to the experience gained from the program. Researchers have shown us how to bypass major defensive controls, development groups have been caught violating best practices, and associated vendors with security assurances have been discovered to be not-so-secure.
It can be quite the investment, but we can feel our organization getting stronger because of this product.
It can be quite the investment, but we can feel our organization getting stronger because of this product.
What do you dislike about the product?
HackerOne Triage services can feel inadequate at times. Our contacts have always been receptive to hearing us out and adjusting things when needed, but it's always been an uphill battle to get consistent service. This applies to both the quality and speed of service. Sometimes submissions are processed before we even know they arrived, and sometimes the summaries by the triagers are better than the actual hacker's reports. However, the opposite end of the spectrum is also true in equal proportion, even when routinely working with the same triagers.
The platform also lacks important asset management settings, reward calculation options, and reliable metrics. The current system does the job, but more robust tools would be ideal given the need to be precise, ethical, and fair while issuing financial rewards and having to justify those figures back to your organization.
The platform also lacks important asset management settings, reward calculation options, and reliable metrics. The current system does the job, but more robust tools would be ideal given the need to be precise, ethical, and fair while issuing financial rewards and having to justify those figures back to your organization.
What problems is the product solving and how is that benefiting you?
HackerOne is our primary post-production monitoring solution, and we feel confident knowing there are always eyes on our public-facing applications. The researchers we work with are extremely motivated and creative, and the value of their efforts, along with our partners at H1, is evidenced by our continued usage and reliance on H1 BBP.
Strong platform, large hacker community,
What do you like best about the product?
Platform is full featured - good functionality for managing reports, multiple programs, bounties etc
Even for our unusual use-case, the broad hacker community was able to find vulnerabilities and deliver the ROI we were looking for
CSMs are knowledgable and great to work with
Even for our unusual use-case, the broad hacker community was able to find vulnerabilities and deliver the ROI we were looking for
CSMs are knowledgable and great to work with
What do you dislike about the product?
Relatively high base-platform fee - moslty offset by the platform/community features
What problems is the product solving and how is that benefiting you?
Ensure our products are vulnerability-free. Getting quick assessments when we have new products.
Helps us wrangle all our cats
What do you like best about the product?
It helps us coordinate our many repeat yearly pentests into one manageable platform.
What do you dislike about the product?
The user rights management is one of the convoluted I've ever used, for example I have to assign rights to a new pentest to every individual analyst working on it, every time.
There was also a period where we had a new technical contact ever 2-3 months, with a 3 month span where we just didn't seem to have one.
There was also a period where we had a new technical contact ever 2-3 months, with a 3 month span where we just didn't seem to have one.
What problems is the product solving and how is that benefiting you?
We have over a dozen individual application pentests we need to do every year, hackerone lets us scope, schedule, and repeat them in a relatively easy manner.
An Essential Platform for your Security Team
What do you like best about the product?
I find HackerOne's VDP incredibly valuable. It provides a crucial extension to our limited internal resources, allowing us to leverage the expertise of a vast network of security researchers to identify vulnerabilities we might otherwise miss. Given our recent experience with asset loss highlighting gaps in our security posture, a proactive approach like HackerOne is essential for mitigating risk and improving our overall security. The platform's structured process for vulnerability disclosure and remediation helps us manage and prioritize fixes efficiently, even with limited personnel. It's a cost-effective way to enhance our security program and gain valuable insights from a diverse range of perspectives.
besides, Once in some cases, HackerOne will help you facilitate the working progress between your company and security researchers.
besides, Once in some cases, HackerOne will help you facilitate the working progress between your company and security researchers.
What do you dislike about the product?
The budget for HackOner is not a big deal for a small company like us :D
What problems is the product solving and how is that benefiting you?
- HackerOne delivers us with External Pentest service which is an essential requirement of most security frameworks
- Besides, HackerOne VPD program help us to find out Product Vulnerability and Cyber Threats
- Besides, HackerOne VPD program help us to find out Product Vulnerability and Cyber Threats
A Trusted Ally for Proactive Vulnerability Management
What do you like best about the product?
I’ve been using H1 for a while, and one of the things I like is how easy it is to discovery and track of everything. It’s great in the moment to connect our team with security researchers, helping us find vulnerabilities before they turn into potential security incidents. What stands out to me the most is you can customize bounty programs to fit your goals.
What do you dislike about the product?
H1 is a great platform, but like anything, there’s room for improvement. Setting up a bug bounty program for the first time can feel a bit overwhelming, especially if you’re new to it and not sure where to start. But this is not a pitfall at all honestly.
What problems is the product solving and how is that benefiting you?
H1 has been a great helper for our team when it comes the moment to stay updated. It’s amazing how it connects us with talented and skillful security researchers from around the world, and how the H1 Analysts support us. Thanks to their insights, we’ve caught vulnerabilities that probably would’ve slipped through the cracks with regular security tests.
Sleep easy with hackerone!
What do you like best about the product?
From the bug bounty page customization, detailed analytics page to the number of valid reports we have recieved. Hacker one leaves little to be desired.
It has inspired us with the cofidence we need to deploy secure products and keep our customers protected.
Simply Amazing!
It has inspired us with the cofidence we need to deploy secure products and keep our customers protected.
Simply Amazing!
What do you dislike about the product?
Initially our inability to invite researchers with certain skillsets/interest.
But H1 later rolled out a feature allowing us, So no dislikes.
But H1 later rolled out a feature allowing us, So no dislikes.
What problems is the product solving and how is that benefiting you?
Actionable vulnerability disocvery in production environments through the power of crowdsourcing!
Every Business needs HackerOne.
What do you like best about the product?
HackerOne’s most helpful feature is its streamlined interface for managing bug bounties and coordinating with skilled ethical hackers. The platform enables us to submit, track, and prioritise vulnerabilities with ease, while detailed reporting helps our engineers to understand and fix issues quickly. Additionally, the platform’s vast network of researchers offers a diverse range of expertise, uncovering security gaps that might be missed in-house.
The key upsides of using HackerOne are the broad vulnerability coverage and the in-depth metrics that help us demonstrate program impact and effectiveness. The support from HackerOne’s team make the ongoing management of our program are seamless.
The key upsides of using HackerOne are the broad vulnerability coverage and the in-depth metrics that help us demonstrate program impact and effectiveness. The support from HackerOne’s team make the ongoing management of our program are seamless.
What do you dislike about the product?
Honestly, nothing. It is every improving and adding features, making it easier. New addition of Ai integration has made things faster for us too.
What problems is the product solving and how is that benefiting you?
HackerOne gives the business continuous, proactive vulnerability discovery with the help of a global community of ethical hackers. They bring diverse expertise of thousands of vetted hackers, which would be impossible to replicate in-house. They help us uncover a wider range of vulnerabilities than an in-house team could alone, especially as new threats emerge. The can and have scaled with us, as our business grows which maintains our security posture, aids us in compliance, and protects customer trust.
showing 21 - 30