We performed a comparison between PortSwigger Burp Suite Professional and Rapid7 AppSpider based on real PeerSpot user reviews.
Find out in this report how the two Static Application Security Testing (SAST) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."It's good testing software."
"The solution has a great user interface."
"The solution scans web applications and supports APIs, which are the main features I really like."
"For pentesting scenarios, this is the number one tool. It can capture the request, and there are so many functions that are very good for that. For example, a black box satellite host."
"It helps in API testing, where manual intervention was previously necessary for each payload."
"We are mostly using it for scanning the entire website. So, we basically create a script with the entire website and then run it for different injections."
"The most valuable features are Burp Intruder and Burp Scanner."
"Some of the extensions, available using Burp Extender, are also very good and we have found issues by using them."
"I would say that it is stable, as I am not aware of any major issues."
"When it is set up properly, it can do scanning on web apps with multiple engines automatically."
"The setup is usually straightforward."
"The most valuable feature of Rapid7 AppSpider is the vulnerability reporting data. Additionally, the data is reported in a convenient way rather than seeing them as a PDF. We are able to generate all the reports exactly what we want in a flexible way."
"The most valuable feature is the reporting, which is compliant with international standards."
"AppSpider's most valuable feature is reporting - everything is stored in the local database so it can be sent to other machines."
"It is really accurate and the rate of false positives is very low."
"I like the ability the product has to detect vulnerabilities quickly, when it has been released in our environment, then displaying them to us."
"The technical support team's response time is mostly delayed and should be improved."
"The Initial setup is a bit complex."
"The Iran market does not have after-sales support. PortSwigger Burp Suite Professional needs to provide after-sales support."
"The use of system memory is an area that can be improved because it uses a lot."
"The scanner and crawler need to be improved."
"Mitigating the issues and low confluence issues needs some improvement. Implementing demand with the ChatGPT under the web solution is an additional feature I would like to see in the next release."
"There is a lot to this product, and it would be good if when you purchase the tool, they can provide us with a more extensive user manual."
"There were a lot of false positives there, and we used to spend a lot of time, like, for security reasons, reproducing those bugs for the development team to fix it."
"Implementing Rapid7 AppSpider requires scanning and self-identification mechanisms. You can add different types of authentication to each scan."
"It needs better integration with mobile applications."
"The tech support is responsive but issues remain unresolved."
"One of the challenges I have with AppSpider is that it gives you a lot of false positives, especially when compared to other solutions."
"The dashboard and interface are crucial and they need some improvement."
"AppSpider could improve in the area of integration. They need to add more integration opportunities."
"There are some glitches with stability, and it is an area for improvement."
"AppSpider has some problems with the RAM needed while scanning."
More PortSwigger Burp Suite Professional Pricing and Cost Advice →
PortSwigger Burp Suite Professional is ranked 5th in Static Application Security Testing (SAST) with 57 reviews while Rapid7 AppSpider is ranked 26th in Static Application Security Testing (SAST) with 13 reviews. PortSwigger Burp Suite Professional is rated 8.6, while Rapid7 AppSpider is rated 7.8. The top reviewer of PortSwigger Burp Suite Professional writes "The solution is versatile and easy to deploy, but it needs to give more detailed security reports". On the other hand, the top reviewer of Rapid7 AppSpider writes "Useful vulnerability reporting data, flexible, and simple implementation". PortSwigger Burp Suite Professional is most compared with OWASP Zap, Fortify WebInspect, Acunetix, HCL AppScan and Qualys Web Application Scanning, whereas Rapid7 AppSpider is most compared with Rapid7 InsightAppSec, OWASP Zap, Acunetix, Invicti and Checkmarx One. See our PortSwigger Burp Suite Professional vs. Rapid7 AppSpider report.
See our list of best Static Application Security Testing (SAST) vendors.
We monitor all Static Application Security Testing (SAST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
