Author Archives: PortSwigger Blog

It’s been a year since we launched our Burp Suite Certified Practitioner exam, so we’ve been reflecting on some of the improvements and developments we’ve made across both our preparation materials an Continue reading Burp Suite certification: a year in review→

With six (and a bit) months of 2022 already gone, it’s time to bring you an update on the latest happenings down at Burp Towers. Find out what we’ve been up to, and where we’re going between now and 2 Continue reading Burp Suite roadmap update: July 2022→

Thank you to those who attended our recent PortSwigginar on Burp Suite Enterprise Edition. Below is the video of the session, which included; A recap on “what’s new” within the product for those who h Continue reading PortSwigginar – 13 July→

If you use Burp Suite Professional or Burp Suite Community Edition for manual security testing, then you’ll be familiar with tools like Burp Repeater and Burp Intruder. They make life as a tester much Continue reading New Repeater features to help you test more efficiently→

Thank you to those who attended our recent PortSwigginar on Burp Suite Enterprise Edition. Below is the video of the session, which included: A recap on “what’s new” within the product for those who h Continue reading PortSwigginar – 22 June→

Last year we made it significantly easier to find DOM XSS, when we introduced a brand new tool called DOM Invader. This year, we’ve improved DOM Invader to make finding CSPP (client-side prototype pol Continue reading Finding client-side prototype pollution with DOM Invader→

If you’ve ever installed any Burp extensions from the BApp Store, you’ll know that it’s a great way to extend your capabilities and tailor Burp Suite to your every need. If you’ve not, then what are y Continue reading How to see the impact installing BApps might have on Burp Suite→

Thank you to those who attended our recent PortSwigginar on Burp Suite Enterprise Edition. Below is the video of the session, which included; A recap on “what’s new” within the tool for those who have Continue reading Launching the PortSwigginar→

“Word”. We heard that a lot of you have been having problems finding a truly dope vulnerable web application to wave your scanner at. As makers of the web’s OG vulnerability scanner, we couldn’t be le Continue reading Gin and Juice Shop: put your scanner to the test→

Speaking to Burp Suite Enterprise Edition users, one thing has come up time and time again as a blocker to your understanding of the product. This has been our use of the term “agent” when describing Continue reading Confused by agents? We’ve cleaned up our jargon …→