PortSwigger Burp Pros and Cons

PortSwigger Burp Pros

Vijayanathan Naganathan
Director - Head of Delivery Services at Ticking Minds Technology Solutions Pvt Ltd
Once I capture the proxy, I'm able to transfer across. All the requested information is there. I can send across the request to what we call a repeater, where I get to ready the payload that I send to the application. Put in malicious content and then see if it's responding to it.
View full review »
Manish Rana
Senior Information Security Analyst at a tech services company with 10,001+ employees
I personally love its capability to automatically and accurately detect vulnerabilities. So, I would say it is the Burp scanner that is THE most powerful, valuable, and an awesome feature.
View full review »
Rishi Kant
Senior Security Engineer at a insurance company with 10,001+ employees
This tool is more accurate than the other solutions that we use, and reports fewer false positives.
View full review »
Find out what your peers are saying about PortSwigger, Acunetix, HCL and others in Application Security. Updated: November 2019.
379,241 professionals have used our research since 2012.
reviewer1139067
User
BurpSuite helps us to identify and fix silly mistakes that are sometimes introduced by our developers in their coding.
View full review »
Nidhi Chamotra
Business Analyst at a consultancy with 10,001+ employees
The way they do the research and they keep their profile up to date is great. They identify vulnerabilities and update them immediately.
View full review »
Andrei Sandulescu
IT Auditor & Compliance Officer at a tech vendor with 51-200 employees
Some of the extensions, available using Burp Extender, are also very good and we have found issues by using them.
View full review »
CyberSecAn08987
Cyber Security Analyst at a tech vendor with 1,001-5,000 employees
The Spider is the most useful feature. It helps to analyze the entire web application, and it finds all the passes and offers an automated identification of security issues.
View full review »
Securitydbe0
Security Analyst at a tech services company with 201-500 employees
"The product is very good just the way it is; It has everything already well established and functions great. I can't see any way for this current version to be improved."
View full review »
MisaJovcic
QA Analyst at Gecko Solutions
The initial setup was really straightforward.
View full review »
Ivan Biagi
Security Specialist at a tech consulting company with 1-10 employees
This solution has helped a lot in finding bugs and vulnerabilities, and the scanner is good enough for simple web apps.
View full review »

PortSwigger Burp Cons

Vijayanathan Naganathan
Director - Head of Delivery Services at Ticking Minds Technology Solutions Pvt Ltd
The biggest improvement that I would like to see from PortSwigger that today many people see as an issue in their testing. There might be a feature which might be desired.
View full review »
Manish Rana
Senior Information Security Analyst at a tech services company with 10,001+ employees
The one feature that I would like to see in Burp is active scanning of REST based web services. A lot of organizations are providing APIs to access their services to support different business models like SaaS. Scanning these APIs is still a challenge for many security product companies.
View full review »
Rishi Kant
Senior Security Engineer at a insurance company with 10,001+ employees
There is a lot to this product, and it would be good if when you purchase the tool, they can provide us with a more extensive user manual.
View full review »
Find out what your peers are saying about PortSwigger, Acunetix, HCL and others in Application Security. Updated: November 2019.
379,241 professionals have used our research since 2012.
reviewer1139067
User
The Auto Scanning features should be updated more frequently and should include the latest attack vectors.
View full review »
Nidhi Chamotra
Business Analyst at a consultancy with 10,001+ employees
The biggest drawback is reporting. It's not so good. I can download them, but they're not so informative.
View full review »
Andrei Sandulescu
IT Auditor & Compliance Officer at a tech vendor with 51-200 employees
I would like to see a more optimized solution, as it currently uses a lot of CPU power and memory.
View full review »
CyberSecAn08987
Cyber Security Analyst at a tech vendor with 1,001-5,000 employees
The number of false positives need to be reduced on the solution.
View full review »
Securitydbe0
Security Analyst at a tech services company with 201-500 employees
The Initial setup is a bit complex.
View full review »
Ivan Biagi
Security Specialist at a tech consulting company with 1-10 employees
The scanner and crawler need to be improved.
View full review »
Find out what your peers are saying about PortSwigger, Acunetix, HCL and others in Application Security. Updated: November 2019.
379,241 professionals have used our research since 2012.
Sign Up with Email