How AI Agents and APIs Can Leak Sensitive Data
Most organizations are using AI in some way today, whether they know it or not. Some are merely beginning to...
Read more →Category: Mix
DNS is the center of the modern attack surface – are you protecting all levels?
If you are a mature organization, you might manage an external IP block of 65,000 IP addresses (equivalent to a...
Read more →
Coding is Thinking | Daniel Miessler
We can’t stop learning fundamentals just because tech can do them February 28, 2025 Not learning to code just because...
Read more →
Access control vulnerability in the retail industry. Cross-Site Scripting (XSS) use case.
Large-scale operations and the extensive attack surface of the retail industry render it particularly susceptible to cybercrime, on a global...
Read more →
Burp Everywhere, All Around the World: Bringing AppSec Enthusiasts Together in 2025 | Blog
Amelia Coen | 13 March 2025 at 08:49 UTC Security is a team sport. Whether you’re a pentester, bug bounty...
Read more →
Behind the Scenes of Burp AI: How we built it, and what’s next | Blog
Katie Warren | 12 March 2025 at 13:30 UTC Why now? Artificial intelligence is rapidly transforming industries, and security testing...
Read more →
A complete guide to exploiting advanced XXE vulnerabilities
XML External Entity (XXE) vulnerabilities are one of the most overlooked yet impactful vulnerabilities in modern web applications. Although they’ve...
Read more →
Introducing Alfred for fully autonomous AI-built vulnerability assessments
We are excited to announce Detectify Alfred, a revolutionary system that uses AI to completely autonomously collect and prioritize threat...
Read more →
A complete guide to exploiting advanced SSRF vulnerabilities
SSRF—short for Server-Side Request Forgery—vulnerabilities are amongst one of the most impactful web security vulnerabilities. Even though they are less...
Read more →
API Specifications: Why, When, and How to Enforce Them
APIs facilitate communication between different software applications and power a wide range of everyday digital experiences, from weather apps to...
Read more →
Noir Enhances AI Integration for Advanced Analysis
Mar 01, 2025 Expanding AI Capabilities in Noir v0.20.0 Noir v0.20.0 has arrived, supercharging its AI-powered security analysis capabilities. This...
Read more →
API Armor: How Bybit’s Real-Time Blacklisting Is Thwarting a $1.5B Crypto Heist
APIs present a security risk—that much is a given. Attacks on APIs have caused some of the most significant security...
Read more →