Web Security Academy - your questions answered
We're nearly at 200 labs on our ever-popular Web Security Academy, so before we hit that magic number we wanted to give you the chance to get your questions answered. This blog post answers your most-
Burp Suite Professional - evolving the future of web security testing
With every new release of Burp Suite Professional, we bake in the latest research findings to ensure that you are able to catch vulnerabilities, faster. We always recommend updating to the latest vers
Hack your APIs: interview with Corey Ball - API security expert
Corey Ball is a Cybersecurity Consulting Manager, and author of the forthcoming book Hacking APIs (working title - No Starch Press). As well as being a long-time API hacking enthusiast, Coreyβs role g
Burp Suite roadmap for 2021
This roadmap has now been updated. Please see our July 2021 roadmap update. Weβre all hoping that 2021 will prove to be a better year for humanity. And weβre also planning a great year for Burp Suite!
Get started with DevSecOps: insights from Aleksandr Krasnov - Product Security Engineer
Recently, we caught up with Aleksandr Krasnov - who is a product security engineer at Dropbox, and an all-round DevSecOps expert. Having worked on multiple Silicon Valley DevSecOps implementations, Al
How to enable dark mode in Burp Suite
To enable dark mode in Burp Suite, go to the "User options" > "Display" tab. In the "User Interface" section, you can select either the light or dark theme from a drop-down menu. This option is ava
Flying high in the Web Security Academy
We caught up with three high-flyers in our Web Security Academy - at the time of interview, they were ranked 2nd, 4th, and 6th out of thousands of users. If you want the full story, including some ins
What are AppSec leaders prioritizing in 2021? The survey results are in
The events of 2020 created a catalyst for technology adoption at every level of business. From accelerating digital transformations, growing online web application estates, to increasing reliance on r
Burp Suite Professional: become an early adopter
Are you a creative and experimental user of Burp Suite Professional, who wants to see the newest features and improvements before most users? Now you can. With the release of v2021.2.1, you can become
7 Burp Suite Professional-exclusive features to help you test smarter
Welcome to the Pro user community So, you've downloaded Burp Suite Professional. What now? It's a big piece of software, and there's a lot of functionality you're probably not aware of - even if you'v
Web application cartography: mapping out Burp Suiteβs crawler
At the core of Burp Suite is Burp Scanner - a powerful tool designed to reduce the number of manual steps users have to take to discover vulnerabilities in their targets. Burp Scanner was first releas
API Scanning with Burp Suite
Both Burp Suite Professional and Burp Suite Enterprise Edition contain Burp Scanner - allowing users to easily scan web applications for vulnerabilities. Other blog posts cover how Burp Scannerβs craw
Browser powered scanning in Burp Suite
Since the release of Browser powered scanning back inΒ Burp Suite Professional 2020.8.1 we have had a lot of customers asking us about our motivation for choosing to integrate with Chromium and fo
Improved CI/CD integrations in Burp Suite Enterprise Edition
Burp Suite Enterprise Edition was designed to support your DevSecOps needs. One of the ways it does this is via our pre-built and generic CI/CD driver. This allows users to integrate with tooling of t
PortSwigger teams up with HackerOne for AppSec workshop - 6 April
Tuesday 6 April, 2021 | 10 AM PT / 1 PM ET / 6 PM GMT Update: this webinar can now be viewed on HackerOne's site, here. AppSec is a tricky business. While expertise remains scarce, threats are only ge
Simplified cloud deployment for Burp Suite Enterprise Edition
Last year, we made Burp Suite Enterprise Edition cloud-friendly. Organizations migrating to the cloud, or taking a cloud-first approach, are able to deploy Burp Suite Enterprise Edition to AWS or Azur
AppSec experts share Burp Suite automation secrets and best practices
Webinar recording: How to Perform Effective Web Application Security Assessments On 6 April, PortSwigger teamed up with HackerOne to bring you AppSec insights from industry expert Burp Suite users. Le
Recorded logins in Burp Scanner
If youβre using Burp Suite to test your website, itβs probably got some way for users to log in - and chances are itβs more complicated than filling in a username and password and hitting submit. Burp
Experience Burp Suite Enterprise Edition in a new live demo
Quick link: Burp Suite Enterprise Edition live demo. Deploying enterprise-grade software isn't always easy. We wanted a quick way for people to see the core features of Burp Suite Enterprise Edition w