πŸ”’
There are new articles available, click to refresh the page.
Before yesterdayPortSwigger Blog

A modern, elastic design for Burp Collaborator server

21 January 2022 at 14:40
When we launched Burp Collaborator back in 2015, PortSwigger deployed a public Collaborator server that anyone could use. This meant that OAST testing with Burp Collaborator was able to work straight

Burp Suite roadmap for 2022

13 January 2022 at 15:45
With 2022 now underway, it's about time we gave you the latest on where Burp Suite is heading this year. Here we take a look at the powerful new Burp Suite features we'll be working on in 2022 - as we

The mystery of the missing Mac release

2 December 2021 at 16:23
Some eagle-eyed users of Burp Suite have noticed that there is no Mac release of Burp Suite 2021.10.2. Why is this release missing in action? Well, the true story is rather mundane, and unfortunate. F

Burp Suite certification prices hacked for Black Friday

17 November 2021 at 16:13
For the very first time, we've decided to join the rest of the world and run a Black Friday offer. Between 16 November 2021 and 30 November 2021, you can buy our Burp Suite Certified Practitioner exam

Improvements to Burp Suite authenticated scanning

29 October 2021 at 12:22
Burp Suite's authenticated scanning feature enables users to scan privileged areas of target web applications even when a complex login sequence is required. This leverages Burp's browser - using the

Get Burp Suite certified for free...

21 October 2021 at 13:44
Ready for the challenge? Buy your certification exam now... Burp Suite Certified Practitioner accreditation to enable our users to validate their self-taught skills as web security practitioners. We'v

Get Burp Suite certified for free ...Β 

21 October 2021 at 13:44
We recently launched our Burp Suite Certified Practitioner accreditation to enable our users to validate their self-taught skills as web security practitioners. We've already created the software, so

Burp Suite Professional: feature roundup

30 September 2021 at 13:39
The modern web is an increasingly complex beast. Each passing year brings with it new frameworks, technologies, and design trends - not to mention vulnerabilities. All of this adds to your testing wor

Burp extensions added to Burp Suite Enterprise Edition

26 August 2021 at 13:56
Burp Extensions (and your own custom extensions) will now be supported by Burp Suite Enterprise Edition, brand new for the 2021.8 release. If you've had much experience with Burp Suite Professional, i

It's now easier than ever to scan at scale with Burp Suite Enterprise Edition

25 August 2021 at 14:00
774 organizations in 68 countries are now using Burp Suite Enterprise Edition to improve and scale security across their web portfolios. As we pass the three-year anniversary of development on Burp Su

The history of OAST in Burp Suite

17 August 2021 at 12:00
At PortSwigger, we pride ourselves on pushing the boundaries of web security. Just take a peek at some of our researchers' recent and upcoming talks from the likes of Black Hat and DEF CON if you'd li

Introducing the Burp Suite Certified Practitioner accreditation

27 July 2021 at 16:02
We launched the Web Security Academy in April 2019, as a means of providing free training and learning materials for security professionals. We now have 200 labs, and last year the Web Security Academ

Burp Suite roadmap update: July 2021

9 July 2021 at 10:50
This roadmap has now been updated. Please see our January 2022 roadmap update. Apparently we're halfway through 2021 already (where does the time go?). Here's an update on what we've added to our prod

Black Hat USA 2021: PortSwigger's latest research to be unveiled

6 July 2021 at 12:11
Two years ago, PortSwigger's director of research James Kettle presented "HTTP Desync Attacks" on-stage at BlackHat USA and kicked off a wave of request smuggling, but at that time HTTP/2 escaped seri

Introducing DOM Invader: DOM XSS just got a whole lot easier to find

30 June 2021 at 16:47
Of the three main types of XSS, DOM-based XSS is by far the most difficult to find and exploit. But we come bearing good news! PortSwigger just released a new tool for Burp Suite Professional and Burp

20 Burp Suite tips from the Burp user community

2 June 2021 at 11:23
The Burp Suite user community can easily be described as passionate, dedicated, and highly invested in the development of our product. That's why we love it when our users take it upon themselves to q

Some of the best Burp extensions - as chosen by you

27 May 2021 at 15:30
As we mentioned in our recent blog post on good resources for new Burp Suite Professional users, the BApp Store is one of the largest repositories of community-created user content you're likely to fi

Great getting started resources for new users of Burp Suite Professional

21 May 2021 at 12:37
If you're new to Burp Suite Professional, then congratulations. Not only have you just bought into the world's leading toolkit for web security testing - you've also joined a massive worldwide communi

Experience Burp Suite Enterprise Edition in a new live demo

7 May 2021 at 13:31
Quick link: Burp Suite Enterprise Edition live demo. Deploying enterprise-grade software isn't always easy. We wanted a quick way for people to see the core features of Burp Suite Enterprise Edition w
❌