We performed a comparison between PortSwigger Burp Suite Professional and Synopsys API Security Testing based on real PeerSpot user reviews.
Find out what your peers are saying about Sonar, Veracode, Checkmarx and others in Application Security Testing (AST)."I have found the best features to be the performance and there are a lot of additional plugins available."
"The most valuable feature of PortSwigger Burp Suite Professional is the dashboard. It is very informative and you can receive all the information you need in one place. It's clear, well-defined, and organized. Anybody without any cybersecurity can use it."
"The solution is stable."
"The Repeater and the BApp extensions are particularly useful. Certain extensions, such as the Active Scan extensions and the Autoracer extension, are very good."
"It was easy to learn."
""The product is very good just the way it is; It has everything already well established and functions great. I can't see any way for this current version to be improved.""
"The automated scan is what I find most useful because a lot of customers will need it. Not every domain will be looking for complete security, they just need a stamp on the security key. For these kinds of customers, the scan works really well."
"The feature that we have found most valuable is that it comes with pre-set configurations. They have a set of predefined options where you can pick one and start scanning. We also have the option of creating our own configurations, like how often do the applications need to be scanned."
"The most valuable features of Synopsys API Security Testing are the metrics, results, and threat vectors that it shares."
"If your application uses multi-factor authentication, registration management cannot be automated."
"The one feature that I would like to see in Burp is active scanning of REST based web services. A lot of organizations are providing APIs to access their services to support different business models like SaaS. Scanning these APIs is still a challenge for many security product companies."
"BurpSuite has some issues regarding authentication with OAT tokens that need to be improved."
"The Burp Collaborator needs improvement. There also needs to be improved integration."
"The solution’s pricing could be improved."
"Currently, the scanning is only available in the full version of Burp, and not in the Community version."
"I would like to see a more optimized solution, as it currently uses a lot of CPU power and memory."
"The initial setup is a bit complex."
"The solution required us to use our team and we spoke to Synopsys API Security Testing's support to do the implementation. We use two people from our team for the implementation. and one person for maintenance."
More PortSwigger Burp Suite Professional Pricing and Cost Advice →
PortSwigger Burp Suite Professional is ranked 5th in Application Security Testing (AST) with 54 reviews while Synopsys API Security Testing is ranked 29th in Application Security Testing (AST) with 1 review. PortSwigger Burp Suite Professional is rated 8.6, while Synopsys API Security Testing is rated 7.0. The top reviewer of PortSwigger Burp Suite Professional writes "The solution is versatile and easy to deploy, but it needs to give more detailed security reports". On the other hand, the top reviewer of Synopsys API Security Testing writes "Useful threat vectors, beneficial results, but implementation needed support". PortSwigger Burp Suite Professional is most compared with OWASP Zap, Fortify WebInspect, Acunetix, HCL AppScan and Qualys Web Application Scanning, whereas Synopsys API Security Testing is most compared with Seeker, Fortify WebInspect, Acunetix, OWASP Zap and SonarCloud.
See our list of best Application Security Testing (AST) vendors.
We monitor all Application Security Testing (AST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.