unSafe.sh - 不安全
我的收藏
今日热榜
公众号文章
导航
Github CVE
Github Tools
编码/解码
文件传输
Twitter Bot
Telegram Bot
Search
Rss
黑夜模式
Why it's time for AppSec to embrace AI: How PortSwigger is leading the charge
这篇文章探讨了人工智能(AI)在应用安全(AppSec)领域的潜力与挑战。尽管部分人对AI持怀疑态度或担心其安全性,作者认为AI可以增强而非取代人类渗透测试员的能力。PortSwigger公司已推出AI增强的Burp Suite功能,旨在提高效率、准确性和生产力。...
2025-2-14 14:23:55 | 阅读: 1 |
收藏
|
PortSwigger Blog - portswigger.net
burp
security
pentesters
adoption
portswigger
The future of security testing: harness AI-Powered Extensibility in Burp
PortSwigger推出AI驱动的扩展功能至Burp Suite Professional,利用Montoya API简化集成并保障数据安全。用户可免费获取10,000 AI积分用于实验与创新,并通过BApp Store分享成果。此功能提升安全测试效率与深度。...
2025-2-13 13:52:39 | 阅读: 7 |
收藏
|
PortSwigger Blog - portswigger.net
security
burp
hackvertor
montoya
Top 10 web hacking techniques of 2024
Published: 04 February 2025 at 15:01 UTC...
2025-2-4 15:2:32 | 阅读: 7 |
收藏
|
0day Fans - portswigger.net
security
orange
ten
dompurify
worstfit
Bypassing character blocklists with unicode overflows
Published: 28 January 2025 at 13:58 UTC...
2025-1-28 13:58:28 | 阅读: 8 |
收藏
|
PortSwigger Research - portswigger.net
overflow
0x10000
codepoint
truncation
0x4e41
The complexities of scaling AppSec teams and how to address them in 2025
Tom Ryder |28 January 2025 at 13:08...
2025-1-28 13:8:23 | 阅读: 4 |
收藏
|
PortSwigger Blog - portswigger.net
appsec
security
burp
portfolios
dast
Stealing HttpOnly cookies with the cookie sandwich technique
Published: 22 January 2025 at 14:45 UTC...
2025-1-22 14:45:11 | 阅读: 5 |
收藏
|
PortSwigger Research - portswigger.net
sandwich
param1
deadbeef
param2
sessionid
Make Burp Suite your own: high-powered extensibility to customize and enhance your testing. ️
这篇文章介绍了 Burp Suite 的可扩展性功能,包括 Bambdas、BChecks 和 Extensions 三种方式。通过这些工具,用户可以定制和增强 Burp Suite 的功能以满足特定需求。Bambdas 是代码片段用于过滤和增强工作流程;BChecks 是自定义扫描检查;Extensions 则是用户创建的工具以扩展 Burp 的功能。这些功能帮助用户实现个性化测试和高效协作。...
2025-1-10 15:53:34 | 阅读: 0 |
收藏
|
PortSwigger Blog - portswigger.net
burp
bambda
bambdas
library
Top ten web hacking techniques of 2024: nominations open
Published: 08 January 2025 at 14:07 UTC...
2025-1-8 14:7:35 | 阅读: 1 |
收藏
|
0day Fans - portswigger.net
bypass
injection
remote
novel
Top 10 web hacking techniques of 2024: nominations open
Published: 08 January 2025 at 14:07 UTC...
2025-1-8 14:7:27 | 阅读: 12 |
收藏
|
PortSwigger Research - portswigger.net
nominations
bypass
novel
remote
security
Bypassing WAFs with the phantom $Version cookie
Published: 04 December 2024 at 15:03 UTC...
2024-12-4 23:3:35 | 阅读: 4 |
收藏
|
PortSwigger Research - portswigger.net
quoted
value2
param2
value1
param1
Take control of your security posture: The Burp Suite Enterprise Edition winter update
Rob Samuels |30 October 2024 at 0...
2024-10-30 17:12:2 | 阅读: 5 |
收藏
|
PortSwigger Blog - portswigger.net
burp
security
estate
simplify
New crazy payloads in the URL Validation Bypass Cheat Sheet
Published: 29 October 2024 at 13:59 UTC...
2024-10-29 21:59:13 | 阅读: 5 |
收藏
|
PortSwigger Research - portswigger.net
cheat
bypass
attacker
decimal
userinfo
Concealing payloads in URL credentials
Published: 23 October 2024 at 12:59 UTC...
2024-10-23 20:59:5 | 阅读: 7 |
收藏
|
PortSwigger Research - portswigger.net
username
anchor
payload
clobbering
getbase
API Security: The 6 biggest challenges AppSec teams face, and how to solve them.
Rob Samuels |24 September 2024 at...
2024-9-24 18:1:7 | 阅读: 10 |
收藏
|
PortSwigger Blog - portswigger.net
burp
appsec
security
concern
dast
Introducing Burp Suite’s game-changing performance update ⚡️
这篇文章介绍了Burp Suite的最新性能优化和功能改进。通过减少表格排序时间、降低UI延迟和内存使用,提升了工具的效率和响应速度。新增Proxy Intercept View功能和改进Intruder UI设计,进一步优化了用户体验。未来将继续以性能为核心进行更新。...
2024-9-12 11:55:26 | 阅读: 0 |
收藏
|
PortSwigger Blog - portswigger.net
burp
reduced
memory
intruder
proxy
Burp Suite Performance Improvements
Daniel Allen |11 September 2024 a...
2024-9-11 14:53:2 | 阅读: 10 |
收藏
|
PortSwigger Blog - portswigger.net
sorting
burp
repeater
memory
tabs
Performance Improvements to table sorting and Repeater
Daniel Allen |11 September 2024 a...
2024-9-11 14:53:2 | 阅读: 3 |
收藏
|
PortSwigger Blog - portswigger.net
sorting
burp
memory
repeater
tabs
Introducing the URL validation bypass cheat sheet
Published: 03 September 2024 at 14:52 UTC...
2024-9-3 22:52:12 | 阅读: 6 |
收藏
|
PortSwigger Research - portswigger.net
cheat
bypass
attacker
hexadecimal
converted
Try it for yourself: the latest PortSwigger Research from Black Hat USA
Amelia Coen |23 August 2024 at 07...
2024-8-23 15:44:21 | 阅读: 21 |
收藏
|
PortSwigger Blog - portswigger.net
burp
portswigger
timing
security
Gotta cache 'em all: bending the rules of web cache exploitation
Published: 08 August 2024 at 22:27 UTC...
2024-8-9 06:27:46 | 阅读: 12 |
收藏
|
PortSwigger Research - portswigger.net
delimiter
delimiters
poisoning
myaccount
Previous
1
2
3
4
5
6
7
8
Next