πŸ”’
There are new articles available, click to refresh the page.
βœ‡ PortSwigger Blog

Gin and Juice Shop: put your scanner to the test

β€”
"Word". We heard that a lot of you have been having problems finding a truly dope vulnerable web application to wave your scanner at. As makers of the web's OG vulnerability scanner, we couldn't be le
βœ‡ PortSwigger Blog

Confused by agents? We've cleaned up our jargon ...

β€”
Speaking to Burp Suite Enterprise Edition users, one thing has come up time and time again as a blocker to your understanding of the product. This has been our use of the term "agent" when describing
βœ‡ PortSwigger Blog

Burp Suite Enterprise Edition: config tips for scanning success

β€”
Burp Suite Enterprise Edition is the dynamic web vulnerability scanner that can help you to secure your whole portfolio. To help you achieve that, this article contains some advice on how to optimize
βœ‡ PortSwigger Blog

Burp Scanner can now crawl static sites between 6x - 9x faster

β€”
Burp Suite Professional version 2022.2.3 made Burp Scanner's crawler between 6x - 9x faster when used against static or stateless sites. This helps you to carry out automated reconnaissance much faste
βœ‡ PortSwigger Blog

Burp Suite Enterprise Edition Kubernetes deployment and auto-scaling

β€”
Burp Suite Enterprise Edition is the dynamic vulnerability scanner that can help you to secure your whole web portfolio. And with release 2022.3, we've taken those same flexible Burp scans and made th
βœ‡ PortSwigger Blog

Passive-aggressive scan checks

β€”
Here at PortSwigger, our goal is to enable the world to secure the web. Our scanner sits at the core of this value - quickly surfacing issues and vulnerabilities that may be present in a web applicati
βœ‡ PortSwigger Blog

Introducing the mystery lab challenge

β€”
For anyone who's used the Web Security Academy before, you'll be pretty familiar with the format. For those of you who haven't had the pleasure, the process goes a little bit like this: Select a set o
βœ‡ PortSwigger Blog

A modern, elastic design for Burp Collaborator server

β€”
When we launched Burp Collaborator back in 2015, PortSwigger deployed a public Collaborator server that anyone could use. This meant that OAST testing with Burp Collaborator was able to work straight
βœ‡ PortSwigger Blog

Burp Suite roadmap for 2022

β€”
With 2022 now underway, it's about time we gave you the latest on where Burp Suite is heading this year. Here we take a look at the powerful new Burp Suite features we'll be working on in 2022 - as we
βœ‡ PortSwigger Blog

The mystery of the missing Mac release

β€”
Some eagle-eyed users of Burp Suite have noticed that there is no Mac release of Burp Suite 2021.10.2. Why is this release missing in action? Well, the true story is rather mundane, and unfortunate. F
βœ‡ PortSwigger Blog

Burp Suite certification prices hacked for Black Friday

β€”
For the very first time, we've decided to join the rest of the world and run a Black Friday offer. Between 16 November 2021 and 30 November 2021, you can buy our Burp Suite Certified Practitioner exam
βœ‡ PortSwigger Blog

Improvements to Burp Suite authenticated scanning

β€”
Burp Suite's authenticated scanning feature enables users to scan privileged areas of target web applications even when a complex login sequence is required. This leverages Burp's browser - using the
βœ‡ PortSwigger Blog

Get Burp Suite certified for free...

β€”
Ready for the challenge? Buy your certification exam now... Burp Suite Certified Practitioner accreditation to enable our users to validate their self-taught skills as web security practitioners. We'v
βœ‡ PortSwigger Blog

Burp Suite Professional: feature roundup

β€”
The modern web is an increasingly complex beast. Each passing year brings with it new frameworks, technologies, and design trends - not to mention vulnerabilities. All of this adds to your testing wor
βœ‡ PortSwigger Blog

Burp extensions added to Burp Suite Enterprise Edition

β€”
Burp Extensions (and your own custom extensions) will now be supported by Burp Suite Enterprise Edition, brand new for the 2021.8 release. If you've had much experience with Burp Suite Professional, i
βœ‡ PortSwigger Blog

It's now easier than ever to scan at scale with Burp Suite Enterprise Edition

β€”
774 organizations in 68 countries are now using Burp Suite Enterprise Edition to improve and scale security across their web portfolios. As we pass the three-year anniversary of development on Burp Su
βœ‡ PortSwigger Blog

The history of OAST in Burp Suite

β€”
At PortSwigger, we pride ourselves on pushing the boundaries of web security. Just take a peek at some of our researchers' recent and upcoming talks from the likes of Black Hat and DEF CON if you'd li
βœ‡ PortSwigger Blog

Introducing the Burp Suite Certified Practitioner accreditation

β€”
We launched the Web Security Academy in April 2019, as a means of providing free training and learning materials for security professionals. We now have 200 labs, and last year the Web Security Academ
βœ‡ PortSwigger Blog

Burp Suite roadmap update: July 2021

β€”
This roadmap has now been updated. Please see our January 2022 roadmap update. Apparently we're halfway through 2021 already (where does the time go?). Here's an update on what we've added to our prod
❌