Want to report a scanner finding, but feel like writing it up is too tedious? 😔 Install the ReportLM extension and get Burp AI to do it for you! 👇

Tip: to get more success finding those SSRF vulnerabilities, you can configure your own Collaborator instance and use it inside Burp! Here's a full guide on how to do it ⬇️ https://t.co/jDqltEzQL5

Launching The Hab by @hapilabs_ai, a content hub for research, reflections, and real talk about cybersecurity. ✍ 1 Blog / month commitment 🎯 Fun, authentic, slightly unhinged 🤖 No AI slop, guaranteed First up: "Hacking with Burp AI in the Chesspocalypse" I explore our place

Using the Hackvertor extension, but looking for a quick and convenient way to make your own custom tags? Just ask Burp AI! Zero coding knowledge needed 😉

What's your favorite Burp AI-powered extension? Comment below 👇

What does IDOR stand for? Incorrect answers only! 😉 ⬇️

Haven't updated Burp Suite in a while? Here's a short summary of what's new in versions 2025.10 and 2025.10.1 - Updated default HTTP history filter to include less irrelevant requests - Made the site map more readable, with HTTP methods color-coded - Simpler data export from

Not sure about subscribing to Burp Suite Professional yet? Get a 30-day trial for free and find out hands-on why Burp Suite Professional is the best tool for the job 👇 https://t.co/Ht38hV0SUW

“At Microsoft, Burp Suite is what you use. It’s not up for consideration.” Read the full testimonial on why Microsoft chose Burp Suite here: https://t.co/R30xjvRT12

The PortSwigger team are out in full force (and full orange) at OWASP AppSec Global US today - come say hi at booth S3! We’re armed with tons of swag, and we’re raffling off AirPods Max 🎧 to anyone who attends a Burp Suite DAST demo! #AppSecDC #OWASP #AppSecGlobalUS

Burp AI 🤝 Burp Intruder Generate and run Intruder attacks just by prompting Burp AI. It will make a quick list of payloads that you can run straight away or fine tune through Intruder.

We have been loving watching folks make videos of their Burp AI use cases! There are loads of interesting use cases that we didn't even think of.

Heading to OWASP AppSec DC this week? Make sure to stop by booth S3. 🇺🇸 ✅ Live demos of Burp Suite DAST ✅ Exclusive swag pictured here ✅ A chance to win a brand-new pair of orange AirPods Max And yes – Burp Suite creator @DafyddStuttard be there too! Come chat with our

We got really sick of making Clickjacking PoCs... It's so tedious... Framing the page, lining up the buttons.. Sooo we got Burp AI to do it for us 🎉 get a working HTML page right from your Repeater tab!

It’s time you can stop asking: “Where is this error message coming from?!”. 🤷‍♂️ Use the Burp AI ‘Explainer’ feature on error messages to get an explanation of what it means and where it could be originating from.

Generating CSRF PoCs is a bit tricky... Not anymore! CSRF PoC generation could not be easier with Burp AI: just prompt it through repeater and receive a ready-to-go CSRF payload in no time!

Ekoparty day one, and we're sponsoring both @BugBountyArg and @BugBountyGirlsC 🇦🇷 👾 PortSwigger Research's @tincho_508 shared, 'Don’t get hacked while you hack: detecting prompt injection in the wild', and it's been great meeting the Burp community. We’ve got yerba mate

We’re heading to OWASP Global AppSec DC on November 6–7 🇺🇸 We’ll be running live demos of Burp Suite DAST, showing how it helps you scale your security program, all within the same Burp Suite ecosystem you're already using. Stop by booth S3, grab some swag, and see Burp Suite

Been stuck on this one lab you can’t solve? Maybe Burp AI can help! Here’s an example of how you can detect a SQL Injection vulnerability and gain valuable insight using Burp Suite’s powerful AI.

Yeeeeah you could manually figure out a payload for DOM XSS... or you could just ask Burp AI to do it for you.