Best web app security testing tool on the market
August 30, 2019

Best web app security testing tool on the market

Tejas Gandhi | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User

Overall Satisfaction with Burp Suite

Burp Suite is a web application security testing tool. As a security consultant, I have used Burp Suite for security testing for web applications of our clients and also for my own personal research.
  • First of all, it is possible to carry out manual security tests of web applications and mobile applications using this tool. The advantage is that you can also securely test the vulnerabilities related to the business logic of these apps.
  • It uses a local proxy, so it allows you to intercept the traffic of the applications to find vulnerabilities.
  • Its also allows you to manipulate the attribute fields of intercepted traffic to find any flaws inside applications.
  • Doesn't describe how to test different vulnerabilities, which can be challenging if you are a new user of this tool.
  • The community edition provides a limited number of features compared to the professional edition. Since many researchers use the community edition for security testing, they should provide more features which would be helpful.
  • It's a great security and testing tool that can be beneficial to any organization.
I haven't had to use support.
Burp Suite is well-suited for doing testing of applications the way researchers want, in contrast to other automated security testing tools which perform tests of well-known vulnerabilities. In comparison to automated security testing tools, Burp Suite takes more time to perform the test as its a manual testing tool which can be a drawback if tests are to be carried out quickly.

Using Burp Suite

Given this tool's wide area of testing functionality for mobile and web applications, it's a great tool to invest in for security testing. Though it lacks documentation to carry out particular vulnerability findings which are very challenging for a new user of this tool.