πŸ”’
There are new articles available, click to refresh the page.
Before yesterdayPortSwigger Blog

Burp 2.0: Where is the scan queue?

2 October 2018 at 14:00
Burp 1.x had a fairly prominent view of the active scan queue, which you could monitor to see how your scanning was progressing. Where has this gone? Burp 1.x Previously, the top-level Scanner tab let

Burp 2.0: How do I scan individual items?

3 October 2018 at 14:00
When manually testing an application you often want to perform a scan of a single item of interest or a small range of requests. Burp 2 gives you more powerful ways of doing this. Burp 1.x In Burp 1.x

Burp 2.0: Where is live scanning?

4 October 2018 at 14:00
Burp 1.x had some features tucked away within the Spider and Scanner tools that controlled the automated processing that Burp performed on traffic passing through the Proxy. Where have these features

Burp 2.0: How do I throttle requests?

10 October 2018 at 15:04
When performing scans, you might want to limit the rate at which requests are made. Burp 1.x had settings for request throttling within the Spider and Scanner tools. These settings applied to all requ

Introducing the Web Security Academy

2 April 2019 at 13:00
We are pleased to announce the launch of the Web Security Academy.Β  This isΒ a brand new learning resource providingΒ training on web security vulnerabilities, techniques for finding and

Burp Suite roadmap for 2020

15 January 2020 at 10:40
We have big plans for Burp Suite during 2020, aimed at improving its value to professional testers, software development teams, and businesses with web assets to protect. Here, we’re sharing some key

A one million milestone for the Web Security Academy

26 May 2020 at 13:55
13 years ago, I wrote The Web Application Hacker’s Handbook. Fast forward to today, two editions and the release of the Web Security Academy later, it's clear that people still have a huge appetite fo

Burp Suite roadmap update: July 2020

14 July 2020 at 11:22
We’re half-way through 2020, and we’ve made a lot of progress towards the Burp Suite roadmap that we announced in January. We’d like to update everyone on our progress so far, and add some new items t

What steps can you take toward evolving your organization's security maturity?

17 July 2020 at 13:25
The problem DevSecOps evolves the DevOps philosophy to include security earlier in the development process. Shifting it "left", if you will. This holds the promise of removing downstream bottlenecks,

Three priorities every AppSec leader should be focused on

27 July 2020 at 13:50
The challenges faced by AppSec managers in the current digital landscape are numerous and ever-growing. However, we’d be willing to bet that every challenge you’re facing has been staring another wear

The state of DevSecOps: the latest stats and trends in 2020

31 July 2020 at 15:49
It's been 8 years now since Neil MacDonald coined the term "DevSecOps" (originally "DevOpsSec") - and 11 since Patrick Debois came up with the term "DevOps" itself. We've been thinking a lot recently

Security is everybody's problem: The key to breaking the AppSec barrier.

20 August 2020 at 15:00
What’s the deal with AppSec? The inherent separation between AppSec and other factions of an organization can make effective security enablement an illustrious and flighty target. In too many organiza

Finding your first bug: bounty hunting tips from the Burp Suite community

26 August 2020 at 12:25
More and more people are getting into bug bounty hunting. In fact, HackerOne’s 2020 report showed that β€œthe hacker community nearly doubled last year to more than 600,000”. With so many people involve

Burp Suite tips from power user and "hackfluencer" StΓΆk

29 September 2020 at 14:29
In his own words, StΓΆk is "that hacker that your friends told you about". In other words, he's a content creator with over 25 years of experience in the IT industry. He creates education, tutorial, an

PortSwigger is recognized as a 2020 Gartner Peer Insights Customers' Choice for Application Security Testing*

13 November 2020 at 14:42
The PortSwigger team is excited to announce that we have been recognized as a Customers’ Choice in the October 2020 Gartner Peer Insights β€˜Voice of the Customer’: Application Security Testing. Our cor

Burp Suite Enterprise Edition: six months of new features

30 November 2020 at 15:20
Over the past six months, we've added a number of new features to Burp Suite Enterprise Edition. We're also pleased to announce that the software is now being used by 572 organizations, across 63 coun

The latest PortSwigger research is coming to Black Hat Europe 2020

2 December 2020 at 15:44
At PortSwigger, we are research obsessed - from the training and labs we produce to the features we put into our Burp Suite products. Everything revolves around research - from the latest and most com

Web Security Academy - your questions answered

3 December 2020 at 15:31
We're nearly at 200 labs on our ever-popular Web Security Academy, so before we hit that magic number we wanted to give you the chance to get your questions answered. This blog post answers your most-

Burp Suite Professional - evolving the future of web security testing

15 December 2020 at 15:58
With every new release of Burp Suite Professional, we bake in the latest research findings to ensure that you are able to catch vulnerabilities, faster. We always recommend updating to the latest vers
❌