← Find more feeds

portswigger.net

PortSwigger Web Security Blog

Get the latest updates from PortSwigger Web Security Blog directly as they happen.

Follow now 234 followers

Latest posts

Last updated 5 days ago

How this seasoned bug bounty hunter combines Burp Suite and HackerOne to uncover high-impact vulnerabilities

5 days ago

Arman S., a full-time independent security researcher and bug bounty hunter, talked...

Read full

Watch the webinar: Scale secure coverage without scaling headcount

13 days ago

Application security teams are under pressure. With expanding application estates, growing API...

Read full

The year so far: How Burp Suite DAST is leveling up enterprise security in 2025

20 days ago

Enterprise security teams are under more pressure than ever to secure sprawling...

Read full

"The entire internet is broken": ethical hacking expert John Hammond meets James Kettle

21 days ago

In a brand-new collaboration between ethical hacking and AppSec expert John Hammond...

Read full

HTTP/1.1 Must Die: What This Means for AppSec Leadership

about 1 month ago

At Black Hat USA and DEFCON 2025, PortSwigger's Director of Research, James...

Read full

HTTP/1.1 Must Die: What This Means for In-House Pentesters

about 1 month ago

At Black Hat USA and DEFCON 2025, PortSwigger's Director of Research, James...

Read full

HTTP/1.1 Must Die: What This Means for Bug Bounty Hunters

about 1 month ago

At Black Hat USA and DEFCON 2025, PortSwigger's Director of Research, James...

Read full

HTTP/1.1 Must Die: What This Means for Contract Pentesters and MSSPs

about 1 month ago

At Black Hat USA and DEFCON 2025, PortSwigger's Director of Research, James...

Read full

The Desync Delusion: Are You Really Protected Against HTTP Request Smuggling?

about 1 month ago

The Hidden Threat That's Slipping Past Your Security HTTP request smuggling remains...

Read full

HTTP Request Smuggling Explained: with seasoned bug bounty hunter NahamSec and world-class researcher James Kettle

about 1 month ago

Ever wondered how attackers can compromise modern websites by exploiting invisible cracks...

Read full

Watch the on-demand webinar: Shift left without the strain

2 months ago

Shifting security left promises faster, safer software delivery - but for many...

Read full

PortSwigger at Black Hat & DEF CON 33

2 months ago

Las Vegas. August. Protocols are getting torn apart. This summer, PortSwigger returns...

Read full

Or log in

Everything you care about in one place

PortSwigger Web Security Blog

Latest posts

How this seasoned bug bounty hunter combines Burp Suite and HackerOne to uncover high-impact vulnerabilities

Watch the webinar: Scale secure coverage without scaling headcount

The year so far: How Burp Suite DAST is leveling up enterprise security in 2025

"The entire internet is broken": ethical hacking expert John Hammond meets James Kettle

HTTP/1.1 Must Die: What This Means for AppSec Leadership

HTTP/1.1 Must Die: What This Means for In-House Pentesters

HTTP/1.1 Must Die: What This Means for Bug Bounty Hunters

HTTP/1.1 Must Die: What This Means for Contract Pentesters and MSSPs

The Desync Delusion: Are You Really Protected Against HTTP Request Smuggling?

HTTP Request Smuggling Explained: with seasoned bug bounty hunter NahamSec and world-class researcher James Kettle

Watch the on-demand webinar: Shift left without the strain

PortSwigger at Black Hat & DEF CON 33

Try Feeder for free