PortSwigger Burp Review

Built-in manual tools help with finding bugs and vulnerabilities


What is our primary use case?

I use this primarily for intercepting mobile HTTP and HTTPS requests with SSL pinning bypass. It's a better tool for manual tasks.

How has it helped my organization?

This solution has helped a lot in finding bugs and vulnerabilities, and the scanner is good enough for simple web apps.

What is most valuable?

The best feature that I've found is the built-in manual tools.

What needs improvement?

The scanner and crawler need to be improved.

For how long have I used the solution?

More than three years.
**Disclosure: I am a real user, and this review is based on my own experience and opinions.
More PortSwigger Burp reviews from users
...who work at a Financial Services Firm
...who compared it with OWASP Zap
Learn what your peers think about PortSwigger Burp. Get advice and tips from experienced pros sharing their opinions. Updated: January 2021.
455,962 professionals have used our research since 2012.
Add a Comment
Guest
1 Comment

author avatarAndrei Sandulescu
Top 5LeaderboardReal User

Yes, I agree with the points detailed in the review.