We performed a comparison between Kiuwan and PortSwigger Burp Suite Professional based on real PeerSpot user reviews.
Find out in this report how the two Application Security Tools solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."I like that I can scan the code without sending it to the Kiuwan cloud. I can do it locally on my device. When the local analyzer finishes, the results display on the dashboard in the cloud. It's essential for security purposes to be able to scan my code locally."
"The most valuable feature is the time to resolution, where it tells you how long it is going to take to get to a zero-base or a five-star security rating."
"I find it immensely helpful because it's not just about generating code; it's about ensuring efficiency in the execution."
"The most valuable feature of the solution stems from the fact that it is quick when processing and giving an output or generating a report."
"I've tried many open source applications and the remediation or correction actions that were provided by Kiuwan were very good in comparison."
"I like that it provides a detailed report that lets you know the risk index and the vulnerability."
"Software analytics for a lot of different languages including ABAP."
"I personally like the way it breaks down security vulnerabilities with LoC at first glance."
"PortSwigger Burp Suite Professional has an intercept tab that helps us to scan our APIs, set the response, and request errors."
"There is no other tool like it. I like the intuitiveness and the plugins that are available."
"It offers very good accuracy. You can trust the results."
"The solution scans web applications and supports APIs, which are the main features I really like."
"Some of the extensions, available using Burp Extender, are also very good and we have found issues by using them."
"I personally love its capability to automatically and accurately detect vulnerabilities. So, I would say it is the Burp scanner that is THE most powerful, valuable, and an awesome feature."
"The most valuable feature of PortSwigger Burp Suite Professional is the Burp Intruder tool."
"BurpSuite helps us to identify and fix silly mistakes that are sometimes introduced by our developers in their coding."
"Kiuwan's support has room for improvement. You can only open a ticket is through email, and the support team is outside of our country. They should have a support number or chat."
"The configuration hasn't been that good."
"Perhaps more languages supported."
"It would be beneficial to streamline calls and transitions seamlessly for improved functionality."
"Integration of the programming tools could be improved."
"The solution seems to give us a lot of false positives. This could be improved quite a bit."
"I would like to see better integration with Azure DevOps in the next release of this solution."
"In Kiuwan there are sometimes duplicates found in the dependency scan under the "insights" tab. It's unclear to me why these duplicates are appearing, and it would be helpful if the application teams could investigate further."
"There needs to be better documentation provided. Currently, we need to buy books, or we need to review online some use cases from other professionals who have been using the solution to find out their experience. It is not easy to find out how to properly do a security assessment."
"If your application uses multi-factor authentication, registration management cannot be automated."
"As with most automated security tools, too many false positives."
"There is not much automation in the tool."
"The one feature that I would like to see in Burp is active scanning of REST based web services. A lot of organizations are providing APIs to access their services to support different business models like SaaS. Scanning these APIs is still a challenge for many security product companies."
"PortSwigger Burp Suite Professional could improve the static code review."
"In the Professional version, we cannot link it with the CI/CD process."
"There could be an improvement in the API security testing. There is another tool called Postman and if we had a built-in portal similar to Postman which captures the API, we would be able to generate the API traffic. Right now we need a Postman tool and the Burp Suite for performing API tests. It would be a huge benefit to be able to do it in a single UI."
More PortSwigger Burp Suite Professional Pricing and Cost Advice →
Kiuwan is ranked 22nd in Application Security Tools with 23 reviews while PortSwigger Burp Suite Professional is ranked 9th in Application Security Tools with 55 reviews. Kiuwan is rated 8.6, while PortSwigger Burp Suite Professional is rated 8.6. The top reviewer of Kiuwan writes "Though a stable tool, the UI needs improvement". On the other hand, the top reviewer of PortSwigger Burp Suite Professional writes "The solution is versatile and easy to deploy, but it needs to give more detailed security reports". Kiuwan is most compared with SonarQube, Checkmarx One, Snyk, Veracode and Fortify on Demand, whereas PortSwigger Burp Suite Professional is most compared with OWASP Zap, Fortify WebInspect, Acunetix, HCL AppScan and Qualys Web Application Scanning. See our Kiuwan vs. PortSwigger Burp Suite Professional report.
See our list of best Application Security Tools vendors and best Application Security Testing (AST) vendors.
We monitor all Application Security Tools reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
