Application Security » PortSwigger Burp Reviews » Version 1.6 » Review

PortSwigger Burp Review
It is the best all round solution for manual application testing but there are some stability problems directly related to Java.

Valuable Features

Proxy
Repeater
Intruder
Extender API (and plug-ins)
CSRF generator

Improvements to My Organization

This is by far the best application assessment tool I have used. It is more usable and has more features than most of the enterprise tools that cost 10-100 times as much.

Use of Solution

I've used it for five years.

Deployment Issues

No issues encountered.

Stability Issues

There are some memory issues, where the application runs out of memory and crashes. This is directly related to Java. This was improved after switching to 64-bit Java, but it still creeps up once in a while.

Scalability Issues

No issues encountered.

Customer Service and Technical Support

Customer Service:

It's excellent.

Technical Support:

It's very good.

Previous Solutions

I use many projects, but Burp is the best all round solution for manual application testing.

Initial Setup

It's very straightforward, you just have to double-click a Jar file.

Other Advice

You get many features with the free product, but the real power is unlocked with the Pro version. The intruder is an amazing tool and makes the entire product worth purchasing, and the ability to perform automatic backups is well worth the small price of this product as well.

Disclosure: I am a real user, and this review is based on my own experience and opinions.

May 28 2015

1 visitor found this review helpful