title

Ask a hacker: ajxchapman

charset

utf-8

viewport

width=device-width, initial-scale=1

Content-Security-Policy

default-src 'self' https: http:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https: http: *.googletagmanager.com *.mutinycdn.com; style-src 'self' 'unsafe-inline' https: http:; object-src https: http:; base-uri 'self'; connect-src 'self' https: http: wss: ws: *.google-analytics.com *.analytics.google.com *.googletagmanager.com *.mutinyhq.com *.mutinyhq.io *.mutinycdn.com; frame-src 'self' https: http:; img-src 'self' https: http: data: *.google-analytics.com *.googletagmanager.com *.mutinycdn.com; manifest-src 'self'; media-src 'self' https: http:; child-src 'self' blob: https: http:; font-src 'self' https: http: data:;

format-detection

telephone=no

og:type

website

og:title

Ask a hacker: ajxchapman

og:description

We talk with bug bounty hunter Alex Chapman about his favorite type of vulnerability to research and the one piece of security advice he’d offer to the company he hacks.

og:image

https://res.cloudinary.com/about-gitlab-com/image/upload/v1749670926/Blog/Hero%20Images/bug-bounty-ask-a-hacker.png

og:url

https://about.gitlab.com/blog/ajxchapman-ask-a-hacker

twitter:card

summary_large_image

twitter:site

@GitLab

twitter:title

Ask a hacker: ajxchapman

twitter:image

https://res.cloudinary.com/about-gitlab-com/image/upload/v1749670926/Blog/Hero%20Images/bug-bounty-ask-a-hacker.png

twitter:description

We talk with bug bounty hunter Alex Chapman about his favorite type of vulnerability to research and the one piece of security advice he’d offer to the company he hacks.

alternate

/atom.xml

alternate

/all-releases.xml

alternate

/security-releases.xml

alternate

/releases.xml

apple-touch-icon

/images/ico/apple-touch-icon.png

en

https://about.gitlab.com/blog/ajxchapman-ask-a-hacker/

en-us

https://about.gitlab.com/blog/ajxchapman-ask-a-hacker/

x-default

https://about.gitlab.com/blog/ajxchapman-ask-a-hacker/