Dafydd Stuttard
@dafyddstuttard.bsky.social
Founder and Chief Swig at PortSwigger. Creator of Burp Suite and the Web Security Academy. Author of The Web Application Hacker's Handbook.
Not leaking any teasers, other than to say that @albinowax.bsky.social’s research for Black Hat USA is absolutely world class, probably his most impactful yet. Prepare to hear a LOT of talk about this in August.
Just submitted my talk proposal to Black Hat USA! This research was an especially wild ride and is causing some full spectrum chaos! Can't wait to share it :)
April 3, 2025 at 12:18 PM
Not leaking any teasers, other than to say that @albinowax.bsky.social’s research for Black Hat USA is absolutely world class, probably his most impactful yet. Prepare to hear a LOT of talk about this in August.
Super excited to be launching Burp Suite's first AI-powered features.
Developing these features has been all about delivering genuine value. Not gimmicks, not trying to replace humans, but actually useful features that you can trust.
Developing these features has been all about delivering genuine value. Not gimmicks, not trying to replace humans, but actually useful features that you can trust.
Burp AI is here ✨
We believe AI has the power to transform pentesting - not by replacing human testers, but by augmenting them.
Burp AI, a set of powerful features designed to enhance your testing workflow, reduce noise, and give you deeper insight into vulnerabilities is now available. 🧵
#BurpAI
We believe AI has the power to transform pentesting - not by replacing human testers, but by augmenting them.
Burp AI, a set of powerful features designed to enhance your testing workflow, reduce noise, and give you deeper insight into vulnerabilities is now available. 🧵
#BurpAI
March 31, 2025 at 3:44 PM
Super excited to be launching Burp Suite's first AI-powered features.
Developing these features has been all about delivering genuine value. Not gimmicks, not trying to replace humans, but actually useful features that you can trust.
Developing these features has been all about delivering genuine value. Not gimmicks, not trying to replace humans, but actually useful features that you can trust.
Reposted by Dafydd Stuttard
We're excited to announce we're partnering with SAP to strengthen the security of their cloud services.
Burp Suite’s leading DAST technology delivers automated, precise security testing, helping SAP meet their security needs at scale.
Read more 👉 bit.ly/41yMgCc
Burp Suite’s leading DAST technology delivers automated, precise security testing, helping SAP meet their security needs at scale.
Read more 👉 bit.ly/41yMgCc
February 26, 2025 at 2:26 PM
We're excited to announce we're partnering with SAP to strengthen the security of their cloud services.
Burp Suite’s leading DAST technology delivers automated, precise security testing, helping SAP meet their security needs at scale.
Read more 👉 bit.ly/41yMgCc
Burp Suite’s leading DAST technology delivers automated, precise security testing, helping SAP meet their security needs at scale.
Read more 👉 bit.ly/41yMgCc
Read my thoughts on how AI is going to transform web security testing, and how @portswigger.net is proud to be leading the charge.
portswigger.net/blog/why-its...
portswigger.net/blog/why-its...
Why it's time for AppSec to embrace AI: How PortSwigger is leading the charge
AI has the power to transform penetration testing by augmenting your human knowledge and expertise.
portswigger.net
February 14, 2025 at 2:37 PM
Read my thoughts on how AI is going to transform web security testing, and how @portswigger.net is proud to be leading the charge.
portswigger.net/blog/why-its...
portswigger.net/blog/why-its...
Bambdas essentially let you modify Burp Suite on the fly, by typing code into the UI, which gets compiled and executed in place within the native functionality.
portswigger.net/burp/release...
portswigger.net/burp/release...
Professional / Community 2023.10.3
This release introduces Bambdas into the HTTP history filter, the ability to export BChecks, the rollout of notes in other areas of Burp, TLS passthrough for out-of-scope items, and the ability to inc
portswigger.net
October 18, 2023 at 1:37 PM
Bambdas essentially let you modify Burp Suite on the fly, by typing code into the UI, which gets compiled and executed in place within the native functionality.
portswigger.net/burp/release...
portswigger.net/burp/release...
This is only the very beginning for Bambdas. They are going to be epic.
The new 'Bambda' feature that just landed in @burpsuite.bsky.social 2023.10.3 early-adopter is crazy powerful.
I just filtered through 250,000 requests in my proxy history to find ~70 with an incorrect response Content-Length!
I just filtered through 250,000 requests in my proxy history to find ~70 with an incorrect response Content-Length!
October 18, 2023 at 7:02 AM
This is only the very beginning for Bambdas. They are going to be epic.
Reposted by Dafydd Stuttard
Reposted by Dafydd Stuttard
Reposted by Dafydd Stuttard
Saw an internal preview of @albinowax.bsky.social’s Black Hat USA talk, Smashing the State Machine. Very accessible, super powerful, and will unleash an avalanche of previously hidden race condition vulnerabilities. Don’t miss.
August 4, 2023 at 4:27 PM
Saw an internal preview of @albinowax.bsky.social’s Black Hat USA talk, Smashing the State Machine. Very accessible, super powerful, and will unleash an avalanche of previously hidden race condition vulnerabilities. Don’t miss.
Reposted by Dafydd Stuttard
