AI pentesting: the depth of a pentest, on-demand

AI pentesting: the depth of a pentest, on-demand

AI pentesting validates scanner findings in minutes, confirming real risks, ruling out false positives, and uncovering true impact. Now available in Intruder.
Eamon Carroll
|
min read
April 30, 2026
|
min read
Introducing container image scanning: no agents, no blind spots

Introducing container image scanning: no agents, no blind spots

Agentless container image scanning. Automatically discover and continuously scan your container images across AWS, Azure, and Google Cloud. No agents, no blind spots.
Eamon Carroll
|
min read
April 9, 2026
The cloud isn't secure by default: what containers changed about risk

The cloud isn't secure by default: what containers changed about risk

Containers made it easier to ship fast — and easier to ship risk. Intruder's VP of Product breaks down where container risk comes from across the full security lifecycle, and what
Charlie Yianni
|
min read
March 24, 2026
Overconfident and under resourced: navigating the midmarket security gap

Overconfident and under resourced: navigating the midmarket security gap

Too complex for SMB tools, too lean for enterprise stacks — midmarket security teams are stuck in the middle. The Security Middle Child report reveals how bad the gap really is.
Olya Osiagina
|
min read
March 23, 2026
How AI is changing the defender’s toolkit

How AI is changing the defender’s toolkit

We explore where AI fits in the defender's toolkit, how it's closing the gap between scanning and pentesting, and what the future of pentesting looks like.
David Koke
|
min read
May 21, 2026
2026 ASM Index: the most common attack surface exposures

2026 ASM Index: the most common attack surface exposures

We analyzed 3,000 attack surfaces to find out how widespread exposure is, what organizations are exposing, and how long it takes to remove it.
Daniel Andrew
|
min read
May 12, 2026
Attack surface management vs vulnerability management

Attack surface management vs vulnerability management

Vulnerability management and attack surface management aren't the same thing. Learn the key differences, how they work together, and why you need both.
Charlie Yianni
|
min read
May 11, 2026
See TODAY’S CVE TRENDS

Our latest research

more research
From enterprise chatbots to gooner caves: exposed AI infrastructure is rampant

From enterprise chatbots to gooner caves: exposed AI infrastructure is rampant

We scanned 1 million AI services and found widespread misconfigurations, exposed credentials, and unauthenticated APIs. AI infrastructure security is falling dangerously behind.
Benjamin Marr
March 27, 2026
Secrets in your Bundle(.js) - The Gift Attackers Always Wanted

Secrets in your Bundle(.js) - The Gift Attackers Always Wanted

Our scan of 5M apps uncovered 42k+ tokens in JavaScript bundles, from code repo tokens to project management API keys. Learn why traditional scanners miss them, and how Intruder’s new secrets detection method catches what others can’t.
Benjamin Marr
December 11, 2025
AI Vibe Coding: When Convenience Turns Into a Security Liability

AI Vibe Coding: When Convenience Turns Into a Security Liability

When we used AI to help code a honeypot, it introduced a vulnerability of its own. What transpired was a fascinating, if uncomfortable, lesson in AI complacency - how easily trust in automation can make us miss what’s right in front of us. We share what we learned and what it means for anyone using AI to code.
Sam Pizzey
December 2, 2025

Our reports

more reports
2026 ASM Index: the most common attack surface exposures

2026 ASM Index: the most common attack surface exposures

We analyzed 3,000 attack surfaces to find out how widespread exposure is, what organizations are exposing, and how long it takes to remove it.
Daniel Andrew
May 12, 2026
Overconfident and under resourced: navigating the midmarket security gap

Overconfident and under resourced: navigating the midmarket security gap

Too complex for SMB tools, too lean for enterprise stacks — midmarket security teams are stuck in the middle. The Security Middle Child report reveals how bad the gap really is.
Olya Osiagina
March 23, 2026
The Security Middle Child
How midmarket security teams are managing growth, complexity, and risk
get the report

Cyber explainers

more guides
9 best DevSecOps tools for 2026

9 best DevSecOps tools for 2026

DevSecOps tools help identify security vulnerabilities early in your development process. Explore our list of the best tools for 2025.
Christian Gonzalez
November 29, 2023
AWS Cloud Security Explained: What’s Left Exposed?

AWS Cloud Security Explained: What’s Left Exposed?

Think AWS has your security covered? Not entirely. This blog breaks down what AWS doesn’t secure, real-world risks you’re responsible for, and key actions you can take.
Daniel Andrew
March 20, 2025
AWS Security Services: What They Do and Don’t Do

AWS Security Services: What They Do and Don’t Do

AWS security services help protect your cloud, but they don’t secure everything. See what’s missing and how Intruder goes further to simplify cloud security.
Daniel Andrew
March 6, 2025

Product news

more releases
AI pentesting: the depth of a pentest, on-demand

AI pentesting: the depth of a pentest, on-demand

AI pentesting validates scanner findings in minutes, confirming real risks, ruling out false positives, and uncovering true impact. Now available in Intruder.
Eamon Carroll
April 30, 2026
The Vulnerabulletin Issue #6

The Vulnerabulletin Issue #6

Issue 6 of our monthly newsletter, packed with research, industry news and Intruder updates.
Dann Moore
April 16, 2026
The Vulnerabulletin Issue #5

The Vulnerabulletin Issue #5

Issue 5 of our monthly newsletter, packed with research, industry news and Intruder updates.
Dann Moore
March 18, 2026
Clear all filters
Top SaaS cybersecurity threats in 2023: are you ready?

Top SaaS cybersecurity threats in 2023: are you ready?

Focus on these key areas to secure your environments and safeguard your success in 2023. Make sure you're only in the news when you want to be.
James Harrison
|
min read
January 10, 2023
|
min read
Vulnerabilities and Threats
Vulnerability Scanning Frequency Best Practices

Vulnerability Scanning Frequency Best Practices

A vulnerability scanning program is crucial for avoiding data breaches. But how often you should run scans? Read more for our vulnerability scanning frequency best practices.
Chris Wallis
|
min read
January 2, 2023
|
min read
Vulnerability scanning
Product Update: Continuous Network Scanning

Product Update: Continuous Network Scanning

We’re excited to announce more enhancements to our continuous network scanning with new features to Network View, continuous scanning and an even better UX.
Andy Hornegold
|
min read
December 5, 2022
|
min read
Product
Security Update: OpenSSL High Vulnerability (CVE-2022-3602)

Security Update: OpenSSL High Vulnerability (CVE-2022-3602)

The OpenSSL project has pre-announced a new and critical vulnerability that will be fixed in OpenSSL version 3.0.7, expected 1 November 2022. Updates to this announcement will ...
Benjamin Marr
|
min read
November 1, 2022
|
min read
Vulnerabilities and Threats
Streamlining the chaos of vulnerability management

Streamlining the chaos of vulnerability management

When Product Lead, Andy Hornegold, was asked to speak at DTX Europe, he used the Optus breach in Australia to show how vulnerability scanning could ...
James Harrison
|
min read
October 20, 2022
|
min read
Vulnerability management
Does the OWASP Top 10 still matter?

Does the OWASP Top 10 still matter?

What is the OWASP Top 10, and – just as important – what is it not? Find out how you can make the report work for your business
James Harrison
|
min read
October 5, 2022
|
min read
Application security
5 Network Security Threats And How To Protect Yourself

5 Network Security Threats And How To Protect Yourself

Cybersecurity today matters so much because of everyone’s dependence on technology, from collaboration, communication and collecting data...
Chris Wallis
|
min read
September 1, 2022
|
min read
Vulnerabilities and Threats
Agent-Based vs Network-Based Internal Vulnerability Scanning

Agent-Based vs Network-Based Internal Vulnerability Scanning

Generally, when it comes to identifying and fixing vulnerabilities on your internal network, there are two competing (but not mutually…
Chris Wallis
|
min read
June 13, 2022
|
min read
Vulnerability scanning
Mind the gap – how to ensure your vulnerability detection methods are up to scratch

Mind the gap – how to ensure your vulnerability detection methods are up to scratch

With global cyber crime costs expected to reach $10.5 trillion annually by 2025, it comes as little surprise that the risk of attack ...
Andy Hornegold
|
min read
June 8, 2022
|
min read
Vulnerability scanning
Penetration testing
What Are Fake Clickjacking Bug Bounty Reports?

What Are Fake Clickjacking Bug Bounty Reports?

Beware, there’s a new trend in play, concerning a new type of fake clickjacking bug bounty reports. Read on to understand what to ...
Daniel Thatcher
|
min read
April 14, 2022
|
min read
Insights
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

Sign up for your free 14-day trial

Start today