The challenges faced by AppSec managers in the current digital landscape are numerous and ever-growing. However, we’d be willing to bet that every challenge you’re facing has been staring another wear

It's been 8 years now since Neil MacDonald coined the term "DevSecOps" (originally "DevOpsSec") - and 11 since Patrick Debois came up with the term "DevOps" itself. We've been thinking a lot recently

What’s the deal with AppSec? The inherent separation between AppSec and other factions of an organization can make effective security enablement an illustrious and flighty target. In too many organiza

More and more people are getting into bug bounty hunting. In fact, HackerOne’s 2020 report showed that “the hacker community nearly doubled last year to more than 600,000”. With so many people involve

In his own words, Stök is "that hacker that your friends told you about". In other words, he's a content creator with over 25 years of experience in the IT industry. He creates education, tutorial, an

The PortSwigger team is excited to announce that we have been recognized as a Customers’ Choice in the October 2020 Gartner Peer Insights ‘Voice of the Customer’: Application Security Testing. Our cor

Over the past six months, we've added a number of new features to Burp Suite Enterprise Edition. We're also pleased to announce that the software is now being used by 572 organizations, across 63 coun

At PortSwigger, we are research obsessed - from the training and labs we produce to the features we put into our Burp Suite products. Everything revolves around research - from the latest and most com

We're nearly at 200 labs on our ever-popular Web Security Academy, so before we hit that magic number we wanted to give you the chance to get your questions answered. This blog post answers your most-

With every new release of Burp Suite Professional, we bake in the latest research findings to ensure that you are able to catch vulnerabilities, faster. We always recommend updating to the latest vers

Corey Ball is a Cybersecurity Consulting Manager, and author of the forthcoming book Hacking APIs (working title - No Starch Press). As well as being a long-time API hacking enthusiast, Corey’s role g

This roadmap has now been updated. Please see our July 2021 roadmap update. We’re all hoping that 2021 will prove to be a better year for humanity. And we’re also planning a great year for Burp Suite!

Recently, we caught up with Aleksandr Krasnov - who is a product security engineer at Dropbox, and an all-round DevSecOps expert. Having worked on multiple Silicon Valley DevSecOps implementations, Al

To enable dark mode in Burp Suite, go to the "User options" > "Display" tab. In the "User Interface" section, you can select either the light or dark theme from a drop-down menu. This option is ava

We caught up with three high-flyers in our Web Security Academy - at the time of interview, they were ranked 2nd, 4th, and 6th out of thousands of users. If you want the full story, including some ins

The events of 2020 created a catalyst for technology adoption at every level of business. From accelerating digital transformations, growing online web application estates, to increasing reliance on r

Are you a creative and experimental user of Burp Suite Professional, who wants to see the newest features and improvements before most users? Now you can. With the release of v2021.2.1, you can become

Welcome to the Pro user community So, you've downloaded Burp Suite Professional. What now? It's a big piece of software, and there's a lot of functionality you're probably not aware of - even if you'v

At the core of Burp Suite is Burp Scanner - a powerful tool designed to reduce the number of manual steps users have to take to discover vulnerabilities in their targets. Burp Scanner was first releas