Andrzej Matykiewicz |
01 October 2025 at 14:31 UTC
Bug bounty legend, NahamSec, has taken Burp AI for a spin. If you’re curious how Burp AI fits into a real workflow, his new video is the perfect place to start.
Watch on YouTube
Burp AI was built to augment testers, speeding up the tedious bits and helping you dig deeper, faster. In this walkthrough, NahamSec explores that sweet spot: using AI right where you already work (Repeater, Scanner follow-up, recorded logins, and more) to move from “hunch” to “evidence” with less friction.
- AI in Repeater – run targeted prompts against any tab to analyse weird requests, explore likely vulns, or ask what to try next.
- Explore Issue – let AI follow up on Scanner findings like a pentester would, attempting exploits and summarising impact so you can validate faster.
- Explainer – highlight any part of a message (header, cookie, JS) and get instant, security-focused context.
- AI-powered recorded logins – generate robust login sequences to improve coverage on authenticated apps.
- Noise reduction – smarter handling of broken access control findings to cut time wasted on false positives.
All AI features are on-demand, running only when you invoke them, all within PortSwigger’s secure AI infrastructure, so you stay in full control of what’s analysed and when.
How to try Burp AI today
Update to the latest version of Burp Suite Professional for access to all of the features you see in the video.
Get started with free AI credits: All Burp Suite Professional users get 10,000 free AI credits to explore the new features.
Not a Professional user yet? Start your free trial and give Burp AI a go.