r/websecurityresearch

11k members
View on Reddit
r/websecurityresearch is a subreddit with 11k members. The most common kinds of discussions are solution requests and pain & anger, and the community frequently discusses security, web, xss, rce, and vulnerabilities.
A community for sharing and discussing novel web security research.

Popular Themes in r/websecurityresearch

#1
Solution Requests
: "Checkout my P1 bug, OS command injection via SSRF"
36 posts
#2
Pain & Anger
: "Bypassing Firefox's HTML Sanitizer API"
22 posts
#3
Self-Promotion
: "of-CORS: a framework for hacking internal apps with open CORS via bug bounty"
5 posts
#4
Advice Requests
: "How to build custom scanners for web security research automation"
3 posts
#5
Ideas
: "Introducing CookieMonster: a tool for breaking stateless authentication"
3 posts
#6
News
: "HTTP/1.1 must die: the desync endgame"
2 posts

Popular Topics in r/websecurityresearch

#1

Security

: "Unexpected Security footguns in Go's parsers"
60 posts
#2

Web

: "Top 10 Web hacking techniques of 2021"
31 posts
#3

Xss

: "Hacking Swagger-UI - from Xss to account takeovers"
28 posts
#4

Rce

: "Escalating file write into Rce on Python"
28 posts
#5

Vulnerabilities

: "ParseThru: Exploiting HTTP Parameter Smuggling in Golang"
25 posts
#6

Exploiting

: "Exploiting GraphQL"
22 posts
#7

Exploit

: "Xalan-J: integer truncation in XSLTC - The Xalan Java XSLT library is vulnerable to an integer truncation issue when processing malicious XSLT stylesheets. This can be used to corrupt Java class files generated by the XSLTC compiler and execute arbitrary Java bytecode - SAML sig verif a vector"
17 posts
#8

Ssrf

: "Ssrf: Bypassing hostname restrictions with fuzzing"
16 posts
#9

Remote Code Execution

: "Remote Code Execution in cdnjs of Cloudflare"
16 posts
#10

Exploit Development

: "Exploring the World of ESI Injection"
14 posts

Member Growth in r/websecurityresearch

Yearly
+1k members(14.5%)

Similar Subreddits to r/websecurityresearch

/r/blueteamsec

r/blueteamsec

69k members
26.5% / yr
/r/bugbounty

r/bugbounty

87k members
52.4% / yr

r/Infosec

37k members
28.3% / yr

r/InfoSecNews

24k members
20.6% / yr
/r/InfoSecWriteups

r/InfoSecWriteups

2k members
85.9% / yr
/r/netsec

r/netsec

564k members
6.8% / yr
/r/SecOpsDaily

r/SecOpsDaily

12k members
540.1% / yr
/r/SecurityIntelligence

r/SecurityIntelligence

124 members
85.1% / yr

r/vrd

9k members
0.8% / yr

r/websec

8k members
2.1% / yr

About

GummySearch helps people research Reddit communities by organizing activity, growth, themes, and post-level signals into one place.

This page gives a focused view of r/websecurityresearch, including current member size, discussion patterns, product reviews, and related communities to explore.

This data is synced periodically so insights stay current and useful for ongoing research.

Last updated: June 20, 2026