Skip to main content
TrustRadius
PortSwigger Burp Suite

PortSwigger Burp Suite

Overview

What is PortSwigger Burp Suite?

The Burp Suite, from UK-based alcohol-themed software company PortSwigger Web Security, is an application security and testing solution.

Read more
Recent Reviews

TrustRadius Insights

Burp Suite is widely used by various teams and departments within organizations for conducting dynamic security testing, or DAST, on …
Continue reading
TrustRadius Insights
TrustRadius Insights
Read all reviews
Return to navigation

Pricing

View all pricing
PortSwigger Burp Suite

PortSwigger Burp Suite

N/A
Unavailable

What is PortSwigger Burp Suite?

The Burp Suite, from UK-based alcohol-themed software company PortSwigger Web Security, is an application security and testing solution.

Entry-level set up fee?

  • No setup fee

Offerings

  • Free Trial
  • Free/Freemium Version
  • Premium Consulting/Integration Services

Would you like us to let the vendor know that you want pricing?

15 people also want pricing

Alternatives Pricing

Pentest-Tools.com

Pentest-Tools.com

$65
per user
What is Pentest-Tools.com?

Pentest-Tools.com allows users to discover and report vulnerabilities in websites and network infrastructures. They provide a set of integrated pentesting tools designed to enable users to perform easier, faster, and more effective pentest engagements. Quickly discover the attack surface of a…

Return to navigation

Product Details

What is PortSwigger Burp Suite?

PortSwigger Burp Suite Technical Details

Operating SystemsUnspecified
Mobile ApplicationNo

Frequently Asked Questions

The Burp Suite, from UK-based alcohol-themed software company PortSwigger Web Security, is an application security and testing solution.

Reviewers rate Support Rating highest, with a score of 10.

The most common users of PortSwigger Burp Suite are from Enterprises (1,001+ employees).
Return to navigation

Comparisons

View all alternatives
Return to navigation

Reviews and Ratings

(51)

Community Insights

TrustRadius Insights are summaries of user sentiment data from TrustRadius reviews and, when necessary, 3rd-party data sources. Have feedback on this content? Let us know!

Burp Suite is widely used by various teams and departments within organizations for conducting dynamic security testing, or DAST, on websites and web applications. With its quick and efficient security review process, the software has proven to be a valuable tool in identifying and resolving security issues before they are moved to production. Users have found that Burp Suite produces easily understandable reports, allowing developers to identify and address vulnerabilities effectively.

Security consultants rely on Burp Suite for comprehensive security testing of both internal and external-facing web applications. The software consistently helps in finding valid and relevant bugs, enabling the consultants to provide accurate vulnerability assessments. Additionally, the vulnerability assessment team utilizes Burp Suite extensively as one of their primary tools for evaluating the security of over 300 public-facing websites.

One of the key benefits of Burp Suite is its ability to proactively identify security defects before they can be exploited. By using the software, teams can discover vulnerabilities early on and implement necessary fixes promptly. This approach ensures that applications are secure and protected from potential attacks.

Another advantage of Burp Suite is its wide range of tools for testing different types of attacks in web applications. Whether it's running automated scans for common bugs or performing manual inspections and manipulations of HTTP requests, users find Burp Suite to be reliable and effective. The software's lightweight nature allows it to be easily installed on various systems, making it accessible for testing both internal and external-facing applications.

While not intended for use by the entire organization due to its potential impact on production environments, Burp Suite is highly regarded by cybersecurity departments for its effectiveness in exploiting applications. Security professionals and application developers also utilize the software to test security features and intercept HTTP requests for inspection and manipulation.

In summary, Burp Suite plays a vital role in conducting dynamic security testing and vulnerability assessments for websites and web applications. Its user-friendly reports, comprehensive bug detection capabilities, proactive defect identification, wide range of tools, and accessibility make it a preferred choice for security consultants and teams across organizations.

Users commonly recommend the following:

  1. BurpSuite is recommended for web application pentesting and security testing. Users suggest using BurpSuite to find vulnerabilities in web applications and improve their integrity and confidentiality. It is advised to try out the free version before purchasing the professional license. Furthermore, users suggest following OWASP guidelines for securing web and mobile applications when using BurpSuite.

  2. BurpSuite is highly recommended as a testing tool for both web and mobile applications. Users find it valuable for manual testing, as it allows them to intercept browser and mobile application traffic and scan for vulnerabilities. They also highlight its power in finding gaps and misconfigurations in application setups.

  3. Users recommend using BurpSuite for application assessment, vulnerability scanning, and automated scans with reports. They describe it as a must-have tool for web application security assessment and testing due to its ability to find flaws in the setup of applications.

Overall, users find BurpSuite beneficial in identifying vulnerabilities, improving security, and performing comprehensive assessments of web and mobile applications.

Attribute Ratings

Reviews

(1-9 of 9)
Companies can't remove reviews or game the system. Here's why
December 23, 2022

One of the best tool for application security testing.

Piyush Mittal | TrustRadius Reviewer
Piyush Mittal
Senior Manager
Aujas Cybersecurity Ltd. (Information Technology & Services, 501-1000 employees)
Score 10 out of 10
Vetted Review
Verified User
Incentivized
Likelihood to Recommend
It helps us in proactively identifying security defects. It is easy to install, easy to use and it has a good community support. Enough training material ard available free of cost on internet to learn it. Its reporting feature is not the good it required more improvement in reporting section.
June 01, 2021

The perfect partner for a Security professional

Melvin John | TrustRadius Reviewer
Melvin John
Manager - Security Testing
IBS Software (Airlines/Aviation, 1001-5000 employees)
Score 8 out of 10
Vetted Review
Verified User
Likelihood to Recommend
Best suited if you have a team that has the ability and bandwidth to conduct manual penetration testing. In our case, many commercial tools were unable to find any valid bugs.

Not suitable to teams who needs security testing done with just one click. Reporting is also an issue with this tool.
May 26, 2021

A honest mgt view of the tool used by a team of security consultants

Verified User
Consultant in Information Technology
Information Technology & Services Company, 1001-5000 employees
Score 10 out of 10
Vetted Review
Verified User
Incentivized
Likelihood to Recommend
Burp Suite is a baseline for any security reviews. Security consultants and new aspiration security trainees can be more exposed to it to use as part of their course and trainings. Experienced security consultants can transfer their knowledge to the the newbies, but good to have more features to wow the newbies and mgt.
September 12, 2019

Hack your applications before anyone else can using BurpSuite

Verified User
Engineer in Information Technology
Management Consulting Company, 10,001+ employees
Score 9 out of 10
Vetted Review
Verified User
Incentivized
Likelihood to Recommend
BurpSuite is well suited in scenarios where the user is actually trying to exploit internal applications. The controls of internal applications can always be modified and made to suit the environment of the pen-testing. However, if this was for external applications, this tool can lock out the application since it has no control over the number and time of tries. A professional can, however, use it and make the necessary changes for the external applications but it can be risky at the time, so I would recommend it to be used only on internal/non-production applications.
August 30, 2019

Best web app security testing tool on the market

Tejas Gandhi | TrustRadius Reviewer
Tejas Gandhi
Associate Security Consultant
SISA Information Security (Information Technology and Services, 201-500 employees)
Score 9 out of 10
Vetted Review
Verified User
Incentivized
Likelihood to Recommend
Burp Suite is well-suited for doing testing of applications the way researchers want, in contrast to other automated security testing tools which perform tests of well-known vulnerabilities. In comparison to automated security testing tools, Burp Suite takes more time to perform the test as its a manual testing tool which can be a drawback if tests are to be carried out quickly.
July 12, 2019

Burp is for Professionals, Not Quick Fixes

Verified User
Employee in Information Technology
Hospital & Health Care Company, 11-50 employees
Score 6 out of 10
Vetted Review
Verified User
Incentivized
Likelihood to Recommend
After the initial setup, it's good for inspecting headers quickly on an application. Being able to watch all the traffic and let some through or alter them was a good visual. There is a big learning curve to this application however, it took plenty of time to get familiar with everything, as there's a lot of features that are not self-explanatory.
August 24, 2018

Burp Suite a good Security Testing Tool at a Good Price

Glenn Jones | TrustRadius Reviewer
Glenn Jones
Sr. Systems and Security Architect
Mathematica Policy Research (Research, 1001-5000 employees)
Score 8 out of 10
Vetted Review
Verified User
Incentivized
Likelihood to Recommend
Burp Suite is a good general tool to test websites as long as your website is not too large or you have the time for it to complete. We have some websites that only about five to ten minutes for Burp Suite to complete an attack and a spider only takes about two minutes. Other websites have taken a few hours to complete. I have seen a tester actually run Burp Suite against one of our websites and it took all day to complete.
January 30, 2018

Best Web Security Tool - Hands Down

Dan Fluharty | TrustRadius Reviewer
Dan Fluharty
Program Manager, Cybersecurity Assessments
Amyx, Inc. (Information Technology and Services, 201-500 employees)
Score 10 out of 10
Vetted Review
Verified User
Incentivized
Likelihood to Recommend
Burp Suite is recognized among cybersecurity professionals as a world-class web security tool. It is amazingly inexpensive, with the full-featured Professional version at only $350, a price within reach of most organizations. For those with a limited budget or technical expertise, an outsourced solution may be better. Otherwise, it is really tough to beat this product for what it does.
Return to navigation