Caido

Caido projects bloat across engagements. Project Minify by @saltify_ Copy the essentials in one Project, Paste them in another. Bring only Scopes, Filters, Replay Sessions, Match & Replace rules and Environments. Give it a try 🔗 github.com/saltify7/Proje…

@intigriti @0x0meowsec Please check our shared Slack channel 😅

@0x0meowsec @CaidoIO True! 👀👀

Our first official Burp Suite extension is live! 🤠 Intigriti Quick Scope (IQS) fetches all your public & private programs directly from the Researcher API and auto-configures your Burp scope, and mandatory request headers with a single click! 😎 Get it now in the BApp Store! 👇 go.intigriti.com/get-iqs-bapp

🚀New plugin in the Caido Store! "NextJS Actions Analyzer" by @YBK_FireLights Scan recorded Next.js traffic to identify Server Actions. Check out more details: github.com/yassinebk/Caid…

🚀New plugin in the Caido Store! Introducing "IIS Tilde Enumeration" by @WeAreHackerest Send tilde enumeration requests to discover existing short names for hidden IIS files and directories. Check out more details: github.com/Hackerest/Caid…

Ever wondered how hackers use AI? 🤖 We wrote a guide mapping the current landscape of AI-enhanced hacking. What else should we cover? 👇: caido.io/blog/2026-03-2…

🚀New plugin in the Caido Store! Introducing "DOMLogger++" by @kevin_mizu Track DOM-based flows to see how user input reaches sensitive browser APIs, with data captured by the browser extension. Check out more details: github.com/kevin-mizu/dom…

🚀 v0.56.0 is here! This release introduces Match & Replace support within Replay and the ability to re-order collections or sessions for better organization. 👉 Download the update: caido.io/download

I'm happy to release the first version of my DOMLogger++ plugin for @CaidoIO! 🔎 It improves the browser extension in several ways: • Persistent, per-project storage • Temporary session recording • AI support • Stack trace reconstitution • ... 👉 github.com/kevin-mizu/dom…

Just submitted a request to add ShadowShell to the Caido Store! Caido's official roadmap includes native terminal support, but I couldn't wait, so I built this plugin myself. With ShadowShell, you can now run multiple terminals directly inside Caido, complete with split panes. It also features a quick-access terminal you can summon from any tab using ⌘ + J. If you're using Caido, feel free to check it out! github.com/hahwul/ShadowS…

@Six2dez1 @bytebutcher Hope you liked the experience! We will get it in the store soon ;)

Submitted my first plugin to @CaidoIO 🥳 It was inspired by one of my favourite Burp extensions: custom-send-to by @bytebutcher github.com/six2dez/dispat…

🚀New plugin in the Caido Store! Introducing "RepoExplorer" by @ChrisCz_ Open files from a GitHub repository and inspect their contents directly inside the app. Check out more details: github.com/ChrisCZ2/RepoE…

🚀New plugin in the Caido Store! Introducing "Vibe Hacking" by vel Use an MCP tool surface to expose Caido data to AI agents, with total governance over tool calls. . Check out more details: github.com/vvvvvvvvvvel/V…

@Six2dez1 And shift is 100% open source so you can hack and tweak it!

Writing your own FOSS Burp AI plugin is cool, but have you ever tried a proxy with a really good built-in AI assistant? I'll keep maintaining burp-ai-agent regardless, but ngl this kind of things is a bit demotivating for contributors docs.caido.io/app/tutorials/… @CaidoIO

@0xw2w @rez0__ @thedawgyg @PortSwigger Http/2 is been worked on, to be released in Q2. Rest is pretty much there.

@rez0__ @thedawgyg @PortSwigger Time to give Caido another serious look. Http/2 support and a few issues kept me away, but it was a long time ago and it seems like they’ve made real progress since then..

@PortSwigger is dead wrong for this one. Making a claim that allowing people to BYOK for AI does not do shit for your own AI policies, if anything it would make it easier for you to abide by them since you offload the responsibility to the user and not yourself. It may be time to start thinking of using something other than Burp if they are going to force you to use their shitty AI instead of something that works well.

Excited to announce our partnership with @CaidoIO. Together, we're advancing agentic pentesting with more precise and controlled workflows for security teams. strix.ai/blog/partnerin…

🤖 @trace37_labs shared recently how they use Caido as a core part of their autonomous hunting platform. Paul Reed, founder of @trace37_labs, says it best: > I wanted the proxy to think. Not in a vague “AI-powered” marketing sense, but concretely: a proxy that watches traffic in real-time and generates passive detection rules tailored to the target [...]. A proxy that refines its own detection rules based on which findings turn out to be true positives and which are noise. A proxy that bridges the gap between “I see interesting traffic” and “an AI specialist is already investigating it.” labs.trace37.com/blog/caido-ai-…

Excited to bring Bug Bounty Village back to BSidesSF with @hackinghub_io and @CaidoIO with @Bugcrowd's support! We'll be hosting some live workshops, hands-on challenges, and a CTF!

🚀New plugin in the Caido Store! Introducing "JQ" by Quan Le (Unit 515, OPSWAT) Run jq filters against captured JSON to quickly view specific keys, values, or nested data in requests and responses. Check out more details: github.com/aleister1102/j…

@CaidoIO is in an amazing position to displace Burp.

@hahwul Noted, we agree

This is now an important task. @CaidoIO github.com/caido/caido/is…