Hacktivity is HackerOne's community feed that showcases hacker activity on HackerOne. You can view:
- Reports of disclosed vulnerabilities
- The hacker that submitted the vulnerability
- The associated program
- The awarded bounty amount
There are 2 pages to Hacktivity:
|Popular||The activity that is currently trending|
|New||The latest activity|
You can also filter the activity you want to see by these filters:
|Disclosed||Vulnerability reports that have been disclosed to the public. You can view contents and details of the vulnerabilities of each report.|
|Bug Bounty||Vulnerability reports that were only submitted to programs that provide bounties.|
|Published||Vulnerability reports that are from external sources outside of HackerOne. See: Publishing External Vulnerabilities|
|All||All activities that appear on Hacktivity.|
How Do Activities Appear on Hacktivity?
Hacktivity only showcases activity for public programs. Hacker activity populates on the Hacktivity feed when disclosed and undisclosed reports are marked as:
- Bounty awarded
- Swag awarded
Note: Undisclosed reports appear with a redacted title.
You and other hackers can also publish your findings from external sources outside of HackerOne. To learn more, see: Publishing External Vulnerabilities.
You can search for reports regarding programs and weaknesses you're interested to read about in the search bar to better learn how specific weaknesses were exploited in various programs.
You can upvote hacker activities that you find interesting by clicking on the arrow next to the activity. Your upvotes help members of the platform discover what the most popular hacker activities are. Anyone with an account can upvote, but you can only upvote once on each activity. When you hover over the upvote count, you can see the top 10 hackers (ranked by Signal) that voted on the activity.
There is currently no downvoting capability, but you can retract your upvote by clicking on the arrow again.
How are Activities Ranked on Hacktivity?
Activities on each page are ranked differently.
On the Popular page, vulnerabilities are ranked primarily by their aggregated upvotes. The vote is weighted slightly more if it comes from a hacker with high Signal. Additionally, each activity gets an initial boost if it is resolved and/or receives an above average bounty.
On the New page, activities are ordered chronologically with the latest activity being listed on top. A previously appeared vulnerability goes back to the top when there is new activity on the report.
If you want to see downvoting, a commenting feature, or a new feature request, send HackerOne a feature request.