imageWEBINAR
See how to scale without duplicating effortWhen DAST and manual testing run on different engines, trust breaks. See how to scale without duplicating effort.REGISTER NOW
Portswigger Logo
Burp Suite DASTThe enterprise-enabled dynamic web vulnerability scanner.
Burp Suite ProfessionalThe world's #1 web penetration testing toolkit.
Burp Suite Community EditionThe best manual tools to start web security testing.
View all product editions
Burp ScannerBurp Suite's web vulnerability scannerFeatured Article
Attack surface visibilityImprove security posture, prioritize manual testing, free up time.
CI-driven scanningMore proactive security - find and fix vulnerabilities earlier.
Application security testingSee how our software enables the world to secure the web.
DevSecOpsCatch critical bugs; ship more secure software, more quickly.
Penetration testingAccelerate penetration testing - find more bugs, more quickly.
Automated scanningScale dynamic scanning. Reduce risk. Save time/money.
Bug bounty huntingLevel up your hacking and earn more bug bounties.
ComplianceEnhance security monitoring to comply with confidence.
View all solutions
Burp ScannerBurp Suite's web vulnerability scannerFeatured Article
ResearchAcademy
Support CenterGet help and advice from our experts on all things Burp.
DocumentationTutorials and guides for Burp Suite.
Get Started - ProfessionalGet started with Burp Suite Professional.
Get Started - EnterpriseGet started with Burp Suite Enterprise Edition.
User ForumGet your questions answered in the User Forum.
DownloadsDownload the latest version of Burp Suite.
Visit the Support Center
DownloadsDownload the latest version of Burp SuiteFeatured Article
Burp AIAI CapabilitiesBurp AI NewsPrivacy & SecurityBurp Suite Professional
Burp AI
AI Capabilities
Burp AI News
Privacy & Security
Burp Suite Professional
Get certified
Get certified
How to prepare
How it works
Practice exam
What the exam involves
FAQs
Burp AI

Meet your agentic AI pentesting partner

Cut through repetitive tasks, validate findings faster, and get expert AI insight - all so you can spend more time chasing the bugs that matter.

Your skills, your control; just faster, sharper, smarter.
Portswigger Culture Hero Image
image

Pentesting without the grind

Introducing your on-demand AI pentesting partner - now built into Repeater in Burp Suite Professional - designed to help you spend more time finding vulnerabilities, and less time wrestling noise.
Offload the grunt work (scanning noise, repetitive validation, report drafting) so you can focus on high-value testing.
Burp AI feels like a senior tester in your corner, suggesting angles, validating exploits, and helping you think through complex problems.
Whether you’re chasing a bug bounty or deep into a client engagement, Burp AI flexes to your workflow without derailing it.
AI augments your expertise but never replaces it: you stay in control, driving the test, while AI speeds up the path to insight.
Portswigger Culture Hero Image
image

Burp AI - Now in Repeater

From “help me with this”, all the way to “conduct a full analysis”, prompting Burp AI in Repeater helps you push through roadblocks, validate findings, and automate the heavy lifting - all while you stay in control.
Imagine having an AI-powered security expert at your side at all times: one who reduces time-to-insight and time-to-impact, so you can focus on the creative, high-value parts of testing.
Burp AI doesn’t replace your expertise - it augments it. By taking on the grunt work, it accelerates your progress and empowers you to do more, faster, and with greater confidence.
Portswigger Culture Hero Image

"No other tool is capable of providing this sort of granular, organized context to the AI. I'm really pleased that you're implementing Burp AI as a helpful assistant designed to support me with the things I'm already doing. It actually feels like a collaboration, giving me the headspace to think laterally."

Cristi Vlad, Pentester and bug bounty hunter

AI capabilities, designed to make you faster, more efficient, and more accurate

Burp AI provides AI-powered insights, automation, and efficiency improvements for security professionals and bug bounty hunters using Burp Suite Professional.
AI-enhanced vulnerability scanning, starting with Broken Access Control.
Easily integrate AI into your Burp Suite extensions with the Montoya API.
Portswigger Culture Hero Image

"AI assistance will become an ordinary, everyday part of the pentester’s toolkit. It won’t replace human expertise, but it will amplify it, helping you work smarter, faster, and with greater precision."

Dafydd Stuttard, Burp Suite creator and PortSwigger CEO

How Burp AI will elevate your testing

Burp AI is built into Repeater in Burp Suite Professional, the tool you already know and trust. Say goodbye to unnecessary context switching - with Burp AI, you remain in control, all while staying inside Burp.
Burp AI operates within PortSwigger’s trust boundary, ensuring the security of your data. Your data is not retained by our third-party AI service provider.
Pentesting is about curiosity and the thrill of the hunt. Burp AI handles the repetitive parts so you can spend more time on the puzzles that excite you.
Portswigger Culture Hero Image

Burp AI news

Want to learn more about Burp AI - check out our latest blogs and documentation
to see how PortSwigger are driving the next innovation in penetration testing.
image
CUSTOMER STORY

From curiosity to critical impact: A pentester's perspective on Burp AI

Cristi Vlad discusses his early experiences with Burp AI and get his take on how AI could be transformative for penetration testing in years to come.
image
BLOG

Why it's time for AppSec to embrace AI: How PortSwigger is leading the charge

AI is rapidly gaining traction in virtually every industry. But in AppSec, it's often met with a healthy skepticism.
image
BLOG

Welcome to the next generation of Burp Suite: elevate your testing with Burp AI

Read how PortSwigger are exploring how artificial intelligence can further support pentesting work.
image
BLOG

The future of security testing: harness AI-Powered Extensibility in Burp

Read how PortSwigger are exploring how artificial intelligence can further support pentesting work.
image
DOCUMENTATION

AI security, privacy and data handling

Check out PortSwigger's documentation on how we protect your data and ensure AI-powered interactions remain secure.
image
DOCUMENTATION

Using AI extensions

Burp's AI-powered extensions enhance and automate your testing workflow. Discover how to enable AI-powered extensions and how the AI credit system works.
image

How a 70-Tester Team Scales AppSec Expertise With Burp AI (Orange Cyberdefense)

Shifting expert time from recon and discovery to high-impact validation and exploitation. Resulting in 2–5× faster completion of early-stage investigation and validation.

Burp AI FAQs

Is Burp AI replacing pentesters?

No. Burp AI enhances efficiency but does not replace human expertise.

Will AI leak my sensitive data?

No. Your data stays within PortSwigger’s secure AI platform and is never stored by the AI service provider or used for model training purposes.

Can I disable AI?

Yes. AI features can be fully disabled from Burp Suite’s settings.

Can I use Burp AI offline?

Not currently, but we may explore local model options based on demand.

Join the #Burp-AI channel on Discord

Connect with the people behind Burp Suite, ask questions, share insights and get advice from experts.
Gain access to members-only events, including live demos, deep dives and Q&A sessions with our developers and security researchers.
Be the first to see what's coming next - get sneak peeks of upcoming features, new tools and other exciting updates exclusive to the PortSwigger Discord.
Portswigger Culture Hero Image