We performed a comparison between Acunetix and PortSwigger Burp Suite Professional based on real PeerSpot user reviews.
Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Overall, it's a very good tool and a very good engine."
"We use the solution for the scanning of vulnerabilities like SQL injections."
"The usability and overall scan results are good."
"It comes equipped with an internal applicator, which automatically identifies and addresses vulnerabilities within the program."
"Picks up weaknesses in our app setups."
"I haven't seen reporting of that level in any other tool."
"The most valuable feature of the solution is the speed at which it can scan multiple domains in just a few hours."
"Acunetix is the best service in the world. It is easy to manage. It gives a lot of information to the users to see and identify problems in their site or applications. It works very well."
"PortSwigger Burp Suite does not hamper the node of the server, and it does not shut down the server if it is running."
"The Repeater and the BApp extensions are particularly useful. Certain extensions, such as the Active Scan extensions and the Autoracer extension, are very good."
"I have found this solution has more plugins than other competitors which is a benefit. You are able to attach different plugins to the security scan to add features. For example, you can check to see if there are any payment systems that exist on a server, or username and password brute force analysis."
"The feature that we have found most valuable is that it comes with pre-set configurations. They have a set of predefined options where you can pick one and start scanning. We also have the option of creating our own configurations, like how often do the applications need to be scanned."
"The solution scans web applications and supports APIs, which are the main features I really like."
"Once I capture the proxy, I'm able to transfer across. All the requested information is there. I can send across the request to what we call a repeater, where I get to ready the payload that I send to the application. Put in malicious content and then see if it's responding to it."
""The product is very good just the way it is; It has everything already well established and functions great. I can't see any way for this current version to be improved.""
"The most valuable features are Burp Intruder and Burp Scanner."
"Acunetix needs to include agent analysis."
"The solution limits the number of scans. It would be much better if we could have unlimited scans."
"I had some issues with the JSON parameters where it found some strange vulnerabilities, but it didn't alert the person using it or me about these vulnerabilities, e.g., an error for SQL injection."
"It should be easier to recreate something manually, with the manual tool, because Acunetix is an automatic tool. If it finds something, it should be easier to manually replicate it. Sometimes you don't get the raw data from the input and output, so that could be improved."
"We have had issues during upgrades where their scans worked on some apps better with previous versions. Then, we had to work with their tech support, who were great, to get it fixed for the next version."
"There's a clear need for a reduction in pricing to make the service more accessible."
"You can't actually change your password after you've set it unless you go back into the administration account and you change it there. Thus, if you're locked out and don't remember your password, that's a thing."
"Tools that would allow us to work more efficiently with the mobile environment, with Android and iOS."
"If your application uses multi-factor authentication, registration management cannot be automated."
"BurpSuite has some issues regarding authentication with OAT tokens that need to be improved."
"PortSwigger Burp Suite Professional can improve by having more features in the free version for beginners to try."
"The solution’s pricing could be improved."
"PortSwigger Burp Suite Professional could improve the static code review."
"Mitigating the issues and low confluence issues needs some improvement. Implementing demand with the ChatGPT under the web solution is an additional feature I would like to see in the next release."
"The Burp Collaborator needs improvement. There also needs to be improved integration."
"The price could be better. The rest is fine."
More PortSwigger Burp Suite Professional Pricing and Cost Advice →
Acunetix is ranked 15th in Application Security Tools with 26 reviews while PortSwigger Burp Suite Professional is ranked 12th in Application Security Tools with 54 reviews. Acunetix is rated 7.6, while PortSwigger Burp Suite Professional is rated 8.6. The top reviewer of Acunetix writes "Fantastic reporting features hindered by slow scanning ". On the other hand, the top reviewer of PortSwigger Burp Suite Professional writes "The solution is versatile and easy to deploy, but it needs to give more detailed security reports". Acunetix is most compared with OWASP Zap, Tenable.io Web Application Scanning, Fortify WebInspect, HCL AppScan and Veracode, whereas PortSwigger Burp Suite Professional is most compared with OWASP Zap, Fortify WebInspect, HCL AppScan, Qualys Web Application Scanning and SonarQube. See our Acunetix vs. PortSwigger Burp Suite Professional report.
See our list of best Application Security Tools vendors and best Application Security Testing (AST) vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.