Ethical Hacking

Az előző cikkben bemutattuk a NIS 2 irányelv követelményeit és a magyar vállalatokra gyakorolt hatását. Ebben a posztban részletesen tárgyaljuk a sérülékenység közzétételi irányelvet (VDP), amely a NIS 2 egyik kulcsfontosságú eleme. Megvizsgáljuk, miért nem elegendő egy egyszerű email cím a sérülékenységek bejelentésére, és miért van szükség jól felépített, strukturált VDP-re a vállalatok kiberbiztonsági pozíciójának erősítésére.

by Balazs Poznerin security-testing,ethical-hacking,news

Discover the importance of a well-structured Vulnerability Disclosure Policy (VDP) in the context of the NIS 2 Directive. Learn how VDPs enhance security, ensure legal compliance, boost reputation, and foster collaboration with the cybersecurity community.

by Balazs Poznerin security-testing,ethical-hacking,news

With the implementation of the EU’s AI Act, Hackrate and SplxAI are enhancing AI security through a combination of automation and ethical hacking. Their partnership ensures comprehensive assessments, identifying vulnerabilities and ensuring compliance with new regulations.

by Balazs Poznerin security-testing,ethical-hacking,news

2024. október 18-től a magyar vállalatoknak is alkalmazniuk kell a NIS2 védelmi intézkedéseket. Mi az a sérülékenység közzétételi irányelv (VDP) és miért fontos a NIS 2 megfeleléshez?

by Balazs Poznerin security-testing,ethical-hacking,news

As the NIS2 Directive deadline approaches, immediate action is crucial. The European Union faces increased vulnerabilities due to frequent, sophisticated cyber-attacks, rapid digitization, and the looming threat of conflict. This urgency has driven the modernization of the Network and Information Security (NIS) Directive, resulting in the introduction of the NIS2 Directive.

by Balazs Poznerin security-testing,ethical-hacking,news

What are the key factors SMBs and IT security teams must consider before defining the scope and budget for their penetration tests? Read our blog to find out.

by Balazs Poznerin hackrate,ethical-hacking,security-testing

Read about cybersecurity regulations shaping the fintech and banking landscape and the best practices to remain compliant and protect customer data.

by Balazs Poznerin security-testing,ethical-hacking,hackrate,news

We launched a survey to collect expert insights that will help us improve the features & functionalities of HackGATE™ — and increase transparency and accountability in security testing.

by Balazs Poznerin hackrate,ethical-hacking,security-testing,news

Discover our predictions for 2024's biggest cybersecurity trends and learn how to stay ahead with proactive security strategies.

by Balazs Poznerin hackrate,ethical-hacking,security-testing,news

Learn about key requirements of the UK’s new PTSI legislation, penalties for non-compliance, and how our managed VDP can help you adhere to the regulations.

by Balazs Poznerin hackrate,ethical-hacking,security-testing,news

Shift from outdated metrics to advanced methods to monitor the success of your Bug Bounty Programs. Learn how HackGATE's insights and control can help.

by Levente Molnarin hackrate,ethical-hacking,security-testing,news

Explore the importance of accountability in penetration testing. Learn how to choose the right provider, set security boundaries, and monitor testing activity.

by Balazs Poznerin hackrate,ethical-hacking,security-testing,news

Smoother compliance audits using HackGATE. From understanding compliance prerequisites to transparent security testing, documentation, and risk management.

by Balazs Poznerin hackrate,ethical-hacking,security-testing,news

Discover how HackGATE, an industry-first platform for monitoring penetration tests, can bring transparency and accountability to your bug bounty program.

by Levente Molnarin hackrate,ethical-hacking,security-testing,news

Traditional pentest and bug bounty both have their pros and cons — and for efficient security testing, making the right choice is crucial. Read our comparison.

by Levente Molnarin security-testing,ethical-hacking

Discover the key findings from our survey with security professionals, including the value of VDP for all organizations, the benefits of strong cybersecurity practices, and the importance of positive relationships with ethical hackers.

by Levente Molnarin security-testing,ethical-hacking,getting-started,ciso

While automated vulnerability scans provide a quick overview, they often leave critical gaps that can expose businesses to potential risks, giving you a false sense of security. Read our blog post on the limitations of automated vulnerability scans and the steps you can take for a holistic security approach.

by Levente Molnarin security-testing,ethical-hacking,getting-started,ciso

HackGATE, the industry's first managed gateway for monitoring security testing projects, allows organizations to streamline the auditing process, improve transparency, and separate ethical hackers from real-life attacks, empowering them to take control and ensure comprehensive security testing aligned with industry best practices.

by Balazs Poznerin security-testing,ethical-hacking,hackrate,news

Learn the key factors to consider when planning Penetration Testing as a Service. Discover how ethical hackers can help organizations comply with regulatory requirements and industry standards while improving customer confidence and trust in their products and services.

by Levente Molnarin security-testing,ethical-hacking

PostgreSQL Database Exfiltration through the abuse of PostgREST requests

by Samuele Gugliottain bug-bounty,security-testing,ethical-hacking,writeup

Full Account Takeover of ANY user via Insecure Direct Object Reference (IDOR) on reset password functionality

by Samuele Gugliottain bug-bounty,security-testing,ethical-hacking,writeup

BitNinja bug bounty program launched on our platform a few days ago, so far more than 100 ethical hackers have joined. Why the ethical hackers like this program? What are the most important factors in building up your bug bounty program?

by Balazs Poznerin bug-bounty,security-testing,ethical-hacking,hackrate

The purpose of the next few lines is to give some tips for those who just started diving into hacking. The topic is divided into two parts. Firstly, I would like to present one way to build an elementary knowledge base; then, I’ll give you an idea of how you can use it in bug bounty.

by Balazs Poznerin bug-bounty,ethical-hacking,getting-started

How can I measure the security level of our IT systems? Should I change our pentester company every year? Where should I store the results of pentest reports? Are these questions familiar to you? If so, keep reading.

by Balazs Poznerin bug-bounty,ciso,security-testing,ethical-hacking