PortSwigger2 天
Order Quotation for Burp Suite Professional
Please enter the new license details below to start your Burp Suite Professional quotation.
PortSwigger3 天
Using Burp to Test for Open Redirections
Open redirections are potential vulnerabilities for web applications in which a redirection is performed to a location specified in user-supplied data. By redirecting or forwarding a user to a ...
PortSwigger9 天
Manually generated issue
Attack surface visibility Improve security posture, prioritize manual testing, free up time. CI-driven scanning More proactive security - find and fix vulnerabilities earlier. Application security ...
PortSwigger9 天
Professional / Community 2024.9
We've introduced a feature that enables you to create HTTP match and replace rules using Bambdas. This enables you to handle complex or bulk changes more flexibly and easily. For example, you could ...
PortSwigger15 天
Lab: Bypassing access controls using email address parsing discrepancies
This lab validates email addresses to prevent attackers from registering addresses from unauthorized domains. There is a parser discrepancy in the validation logic and library used to parse email ...
PortSwigger17 天
API Security: The 6 biggest challenges AppSec teams face, and how to solve them.
AppSec teams face a wide range of challenges when securing their API estate against attack threats. In our recent webinar, which demonstrated the enhanced API scanning features in Burp Suite ...
PortSwigger17 天
Copy As Python-Requests
This extension copies selected request(s) as Python-Requests invocations. Please note that JavaScript must be enabled to display rating and popularity information ...
PortSwigger21 天
Display Switcher
This extension adds a new context menu item in Burp Suite to switch between defined Display Settings Profiles. Features: The currently used Display settings may be saved to a new Display Settings ...
PortSwigger23 天
Param Miner
This extension identifies hidden, unlinked parameters. It's particularly useful for finding web cache poisoning vulnerabilities, and requires Burp Suite v2021.9 or later. It combines advanced diffing ...
PortSwigger24 天
Configuring issue management settings
This section explains how to configure the way Burp Suite Enterprise Edition handles false positives, accepted risks, and issues with edited severities. You can configure whether Burp Suite Enterprise ...
PortSwigger28 天
Burp Suite Professional video tutorials
Get to grips with all the basics of Burp Suite Professional with our video tutorials. Covering product essentials such as intercepting HTTP requests and responses, scanning a website, and a guide to ...