PortSwigger Burp Competitors and Alternatives

Get our free report covering OWASP , Micro Focus, Veracode, and other competitors of PortSwigger Burp. Updated: September 2020.
438,725 professionals have used our research since 2012.

Read reviews of PortSwigger Burp competitors and alternatives

Riley Black
Real User
Senior Security Analyst at a health, wellness and fitness company with 1,001-5,000 employees
Jun 02 2020

What is most valuable?

Greenlight - Developers can test their code before they commit. They are able to privately scan their code and correct any mistakes before it is committed into the build and scanned with the other components. SAST - During a build process… more »

How has it helped my organization?

Veracode has improved our Application Security program by providing numerous integrations and tools to take our AppSec/DevSecOps to the next level. Integrations into our developer's IDE (Greenlight) and the DevOps Pipeline SAST /… more »

What needs improvement?

Improve Mobile Application Dynamic Scanning DAST - .ipa and .apk. Right now I have to jailbreak an iPhone and Root an Android to intercept and fuzz requests with a Burp Suite Proxy. That is a very time-consuming process and there are lots… more »

Which solution did I use previously and why did I switch?

Previously used Burp Suite, OWASP Zed Attack Proxy, Python scripts / Powershell and Batch, Retire.JS, Vulners, and Wappalyzer browser plugins.

Which other solutions did I evaluate?

We also evaluated WhiteHat Security.
Consultant
Security Consultant at a tech vendor with 11-50 employees
Apr 21 2020

What is most valuable?

The reporting is very nice. There are many different reports and they include remediation details such as links as to where you can find patches. It is really accurate and the rate of false positives is very low. It can be integrated with… more »

What needs improvement?

With AppSpider, you can scan only one application at a time. If you have AppSpider Enterprise then you can connect one or two more scanners and scan multiple applications at one time. Support response times are slow and can be improved.

What's my experience with pricing, setup cost, and licensing?

It is expensive if you want to buy the Enterprise version that is able to scan multiple applications at once.

Which solution did I use previously and why did I switch?

I have tried a couple of open source solutions like Burp Suite but nothing that is in competition with AppSpider.

What other advice do I have?

My advice to anybody who is considering this solution is that there are other products out there, and everyone has their own requirements. If AppSpider meets the requirements then it is a great one to implement. I would rate this solution… more »
Vinod_Gupta
Real User
CEO and Founder at Indicrypt Systems
Jul 14 2019

What is most valuable?

The most valuable feature is the spidering because, being a security person, it is very important for me to know each and every section of that application, so we cannot afford to miss any single web page or any single link on a particular… more »

What needs improvement?

The automatic scans need improvement. The automated vulnerability assessments that the application performs needs to be simplified as well as diversified.

What's my experience with pricing, setup cost, and licensing?

This app is completely free and open source. So there is no question about any pricing.

Which solution did I use previously and why did I switch?

Yes, we actually use a couple of different products but there is one specifically that we use, which is the Burp Suite.

What other advice do I have?

I would recommend that you should go through the documentation really well. That's it. I would rate this product 8 out of 10.
Get our free report covering OWASP , Micro Focus, Veracode, and other competitors of PortSwigger Burp. Updated: September 2020.
438,725 professionals have used our research since 2012.