New API testing category now available
Our API scanner can test for dozens of vulnerability types like prompt injections and misconfigurations. We’re excited to share today that we’re releasing vulnerability tests…
Category: Mix
Intigriti partners with Shield to empower security within healthcare
Antwerp, Belgium, Oct. 23, 2025. Intigriti, a global crowdsourced security provider, is delighted to announce its latest partnership with non-profit Shield vzw within the framework agreement with…
Can Burp AI hack a website? CyberMaddy explores the new agentic capabilities in Burp AI | Blog
Amelia Coen | 22 October 2025 at 13:15 UTC In her latest video, CyberMaddy dives into the world of AI-driven ethical hacking, exploring how Burp…
Burp AI takes on a vulnerable web app: watch Tib3rius put Burp’s new agentic capabilities to the test | Blog
Amelia Coen | 22 October 2025 at 12:59 UTC What happens when you set Burp AI loose on a deliberately vulnerable web app? In his…
AWS Outage: Lessons Learned —
What can we learn from the recent AWS outage, and how can we apply those lessons to our own infrastructure? What Happened? On October 20,…
Key API Security Takeaways from the Postman 2025 State of API Report — API Security
API security has never been more important because modern APIs are operational necessities. Unfortunately, many organizations are failing to adapt their security models to a…
Metanarrative Prompt Injection · Joseph Thacker
When exploiting AI applications, I find myself using this technique really often so I figured I’d write a quick blog about it. I call it…
Reflected XSS: Advanced Exploitation Guide
Cross-site scripting vulnerabilities are, by no doubt, one of the vulnerability types that’ll keep haunting applications for a long time. This seamless injection bug can…
Reflected XSS: Advanced Exploitation Guide
Cross-site scripting vulnerabilities are, by no doubt, one of the vulnerability types that’ll keep haunting applications for a long time. This seamless injection bug can…
Reflected XSS: Advanced Exploitation Guide
Cross-site scripting vulnerabilities are, by no doubt, one of the vulnerability types that’ll keep haunting applications for a long time. This seamless injection bug can…
Safeguarding digital playgrounds. Gaming and eSports insights.
According to Statista, revenue for the gaming and esports industry is expected to demonstrate an annual growth rate (CAGR 2025-2029) of 5.56%, resulting in a…
Why I Think Karpathy is Wrong on the AGI Timeline
Andrej Karpathy came on Dwarkesh’s podcast recently, and I have a number of thoughts. Many are saying that Karpathy thinks AGI is 10 years away,…