PortSwigger Burp Suite Professional Competitors and Alternatives

Get our free report covering OWASP, Micro Focus, Tenable Network Security, and other competitors of PortSwigger Burp Suite Professional. Updated: April 2021.
476,163 professionals have used our research since 2012.

Read reviews of PortSwigger Burp Suite Professional competitors and alternatives

IB
IvanBiagi
Security Engineer at Secure Network
Real User
Top 5Leaderboard
Dec 1, 2020
Very easy to set up because they give you an installer that does everything

What is our primary use case?

We needed it to scan our internal network and web applications. Our security team of five people used it. We scheduled some monthly scans for web applications, which were not being used, to check for vulnerabilities and also vulnerabilities on new features.

Pros and Cons

  • "Acunetix has an awesome crawler. It gives a referral site map of near targets and also goes really deep to find all the inputs without issues. This was valuable because it helped me find some files or directories, like web admin panels without authentication, which were hidden."
  • "I had some issues with the JSON parameters where it found some strange vulnerabilities, but it didn't alert the person using it or me about these vulnerabilities, e.g., an error for SQL injection."

What other advice do I have?

We found 50 unexpected, high vulnerabilities for three web applications. This made our principal a bit mad. We found three or four DOM-based XSS vulnerabilities using this solution. It did not require maintenance on our part. We just needed to give it some credentials. I would rate it as a nine out of 10.
Riley Black
Senior Security Analyst at a wellness & fitness company with 1,001-5,000 employees
Real User
Top 20
Jun 2, 2020
Increased productivity, helped build and improve security and development departmental relationships

What is our primary use case?

Veracode is a cornerstone of our Development Security Operations Program, particularly scanning automation and remediation tracking. We've been able to monitor the release cycle and verify our Security Standards are met by setting policy and ensuring scans are taking place. If a scan fails to meet our standard the build breaks and the flaws are remediated before releasing to Stage and ultimately Production - where the potential impact is much more costly. We have discovered opportunities to make our code even better thanks to Veracode!

Pros and Cons

  • "Integrations into our developer's IDE (Greenlight) and the DevOps Pipeline SAST / SourceClear Integrations has particularly increased our time to market and confidence."
  • "Improve Mobile Application Dynamic Scanning DAST - .ipa and .apk"
AJ
reviewer1327302
Security Consultant at a tech vendor with 11-50 employees
Consultant
Apr 21, 2020
Good reporting and integrates well into the software development lifecycle

What is our primary use case?

We are a distributor for Rapid7 and AppSpider is one of the products that we implement for our clients. It does a scan that performs about 100 checks on web applications and produces a clear report on all of the vulnerabilities that are found. It is a dynamic scanner.

Pros and Cons

  • "It is really accurate and the rate of false positives is very low."
  • "Support response times are slow and can be improved."

What other advice do I have?

My advice to anybody who is considering this solution is that there are other products out there, and everyone has their own requirements. If AppSpider meets the requirements then it is a great one to implement. I would rate this solution an eight out of ten.
Vinod_Gupta
CEO and Founder at Indicrypt Systems
Real User
Jul 14, 2019
Offers good web application spidering and vulnerability assessment

What is our primary use case?

We primarily use this application for web application spidering and vulnerability assessment.

Pros and Cons

    • "The automated vulnerability assessments that the application performs needs to be simplified as well as diversified."

    What other advice do I have?

    I would recommend that you should go through the documentation really well. That's it. I would rate this product 8 out of 10.
    Get our free report covering OWASP, Micro Focus, Tenable Network Security, and other competitors of PortSwigger Burp Suite Professional. Updated: April 2021.
    476,163 professionals have used our research since 2012.