Best For

BurpSuite is the most widely adopted tool in the application security testing market. It is used across all market sectors, from individuals and small business to large enterprise and global giants.

Product Details

BurpSuite is web security software for web security professionals for testing web applications.

Contact Details

PortSwigger

https://portswigger.net/

Founded in 2004

Located in United Kingdom

No Media

Starting Price

  • $399.00/year/user

Free Trial

  • Yes

Platform

  • Installed - Mac
  • Cloud, SaaS, Web
  • Installed - Windows
  • Mobile - iOS Native
  • Mobile - Android Native

Training

  • In Person
  • Live Online
  • Webinars
  • Documentation

Support

  • Business Hours

BurpSuite Features

AI / Machine Learning
Behavioral Analytics
Endpoint Management
IOC Verification
Incident Management
Tokenization
Vulnerability Scanning
Whitelisting / Blacklisting

BurpSuite Reviews

Overall
4.5/5
Ease of Use
4/5
Customer Service
3.5/5

Showing Most Helpful

Showing 9 of 9 reviews

Showing Most Helpful

Showing 9 of 9 reviews

Sort by:

Filter By:

Rating
Company Size
Reviewer's Role
Length of Use
Frequency of Use
Verified Reviewer
Computer & Network Security, 10,001+ employees
Used the software for: 1-2 years
Overall Rating
5/5
Ease of Use
2/5
Customer Service
3/5
Features
5/5
Value for Money
5/5
Likelihood to Recommend
10/10
Reviewer Source 
Source: Capterra
May 26, 2019

“Pentest Your Web Applications Flawlessly - BurpSuite”

OverallOverall I use BurpSuite daily as I am a security analyst and I keep on finding flaws in my companies internal network. BurpSuite's free version if more than sufficient for me and even after using this software for so long I still tend to learn new features in this software. It is a very vast tool. If you're also fascinated about security testing then this tool will help you greatly in achieving great heights.
ProsIf you're a security analyst and you keep on finding bugs in your web applications, this application is a golden charm for you. It provides thousands of features using which you can perform penetration test any web application and find out any possible flaw and fix it before any external hacker enters your organization's network via that flaw. It offers spidering the websites, proxies, and intruder which can brute force all the password attacks and on top of that we get all of these features free. This software is completely free and the only feature that lacks is that you cannot save the project. You need to perform all the testing in one go.
ConsBurpSuite is pretty awesome software which rarely lacks in any of its features. The flaw that I feel using this software is that it can become more intuitive and user-friendly. While using the software sometimes you feel like not finding an option of difficulty in understanding a new option. Maybe they can give on the go help with a small toolbar providing the description of that option.
Reviewer Source 
Source: Capterra
May 26, 2019
Verified Reviewer
Computer Software, 1001-5000 employees
Used the software for: 1-2 years
Overall Rating
5/5
Ease of Use
4/5
Customer Service
3/5
Features
5/5
Value for Money
5/5
Likelihood to Recommend
9/10
Reviewer Source 
Source: Capterra
May 20, 2019

“Pentest you Web Applications Easily - Burpsuite”

OverallOverall BurpSuite performs pretty well and has a solid foundation. It will not crash even in case of stack overflows and wrong automations. It is pretty safe to use and helps to find weaknesses in your web applications. You can have multiple pen tests on you applications and fix all the vulnerabilities one by one to make you application secure enough so that external hackers cannot penetrate within your systems.
ProsBurpSuite is a very light software, this is the best part. You can install this piece of software on almost any system you want, including the legacy systems. It will run flawlessly on old systems as well. It offers tons of features and the best part is that everything can be used, i.e. each and every feature which is available in paid version is available in community/ free version as well which is the great part. The community edition only lacks on one place, that you cannot save your project for working later on some project, but since you're getting all the features in your plate in the free version, it becomes a pretty awesome deal.
ConsBurpSuite lacks a good user interface. Although it is very powerful and provides tons of software's which helps in automating most of the attacks, the Graphical User Interface of the software is not much user friendly. Also sometimes you see that the options/ drop downs are pixelated which make a less good user experience. The graphics of the software can be bought to a good level so that the user is also happy while using and the most important part that the user is able to use the software for prolonged hours.
Reviewer Source 
Source: Capterra
May 20, 2019
Verified Reviewer
Computer Software, 10,001+ employees
Used the software for: 6-12 months
Overall Rating
5/5
Ease of Use
4/5
Customer Service
2/5
Features
5/5
Value for Money
4/5
Likelihood to Recommend
9/10
Reviewer Source 
Source: Capterra
August 6, 2019

“Pentest your applications right from your computer using BurpSuite”

OverallOverall, BurpSuite is a must use software for a Cyber Security enthusiast. You will easily find it installed and being used by professionals been in IT industry from years. I would definitely recommend this software to even the beginners because it teaches a lot of exploits which are rather very difficult to perform in manual manner.
ProsBurpSuite is a software which allows you to find security loopholes in your applications and websites. It has tons of features on which you can even build you custom exploits and enhance the pentesting. Some of the amazing features of this software are: 1. It allows Spidering the website: Spidering can be done both manually and automatically. each an every corner can be fetched using this features. It is an amazing and a very effective feature. 2. MITM: BurpSuite can act as Man in the Middle (MITM) and help you change the GET and POST requests. You can manipulate the Internet language and find weaknesess in your websites easily.
ConsBurpSuite lacks in its appearance. Despite of tons of features that this piece of software provides, animations and graphics are also a key role which makes sure enough people are attracted and using the software. A lot of work can be done the way features are presented in this software. A lot times you will even miss an amazing feature just because it is hiding somewhere deep inside a long tree of menu's. otherwise, BurpSuite does not lack in any domain.
Reviewer Source 
Source: Capterra
August 6, 2019
Mohit V.
Cyber Security Researcher
Computer & Network Security, 11-50 employees
Used the software for: 1-2 years
Overall Rating
5/5
Ease of Use
5/5
Features
5/5
Value for Money
5/5
Likelihood to Recommend
9/10
Reviewer Source 
Source: Capterra
April 3, 2019

“PortSwigger Burp Suite = Swissknife”

OverallI use it on daily basis for penetration testi g and didnt require anything else. Its extensions gives you almost everything.
Pros- Ease of use - Adding addons is just perfect and easy - Least dependency required - Highly flexible in terms of manipulation of requests - Best tool for web application PT - Intercepts every request and responses too - I didnt rated customer care as I never used it
ConsNothing yet. Its going smooth and steady its almost perfect tool and the updates are quite cool increasing beauty of the user interaction
Reviewer Source 
Source: Capterra
April 3, 2019
Verified Reviewer
Computer & Network Security, 1-10 employees
Used the software for: 1-2 years
Overall Rating
4/5
Ease of Use
4/5
Features
4/5
Likelihood to Recommend
8/10
Reviewer Source 
Source: Capterra
July 22, 2019

“Pentestor Review”

OverallI have used a burpsute for personal business cases, as I used it for spidering, exploring and trying to find vulnerabilities. I have used the reporting a couple of times, but I prefer having more choices when it comes to it. But overall I do recommend it.
ProsI like the tab structure of BurpSuite, it makes it easy to follow your work. I also like the interceptor very easy, simple and flexible. Defining the scopes and having multiple ones is a great feature at the same time, as well as the ability to define the brute force fields in many different ways.
ConsWhat I liked the least when it comes to vulnerability scanner, there are some false-positive results. When it comes to checking the source code, it is a bit messy and when you see all the sitemaps opened, simply you get lost there.
Reviewer Source 
Source: Capterra
July 22, 2019
Avatar Image
Aanu B.
Associate Consultant
Computer & Network Security, 11-50 employees
Used the software for: 6-12 months
Overall Rating
5/5
Ease of Use
4/5
Customer Service
4/5
Features
5/5
Value for Money
4/5
Likelihood to Recommend
9/10
Reviewer Source 
Source: Capterra
May 16, 2019

“The perfect man-in-the-middle attack tool”

OverallIt was effectively a great tool for business logic penetration testing of web pages, web apps and mobile apps.
ProsWhile using Burpsuite for man-in-the-middle attacks, request parameters are automatically tabulated, this makes it easier to analyse.
ConsIt is quite problematic when linking the app with system web browser apps like microsoft edge or google chrome. This is because, the whole system is put through a proxy and all traffic from the system is then monitored.
Reviewer Source 
Source: Capterra
May 16, 2019
Avatar Image
Tejas G.
Associate Security Consultant
Computer & Network Security, 51-200 employees
Used the software for: 6-12 months
Overall Rating
4/5
Ease of Use
4/5
Customer Service
4/5
Features
4/5
Value for Money
4/5
Likelihood to Recommend
9/10
Reviewer Source 
Source: Capterra
October 2, 2018

“Pioneer tool for testing application related vulnerabilities..”

OverallOne of the best tools to test web application related vulnerabilities.
ProsBurpsuite can let user intercept the traffic and make possible to analyze the requests and test various variables and bugs of the application. It supports testing of application using live traffic environment. The application GUI is simple and user friendly.
ConsA user could find difficult to use this application as the proof of concepts might not be available for testing any new vulnerabilities.
Reviewer Source 
Source: Capterra
October 2, 2018
Avatar Image
Olive A.
Student
Research, 1001-5000 employees
Used the software for: Less than 6 months
Overall Rating
4/5
Ease of Use
3/5
Customer Service
4/5
Features
5/5
Value for Money
5/5
Likelihood to Recommend
8/10
Reviewer Source 
Source: Capterra
July 26, 2019

“The Best Web Security Tool”

OverallI used BurpSuite to do web penetration testing to my website projects to make sure it's safe from hacker attack.
ProsBurpSuite has the most powerful tools to do web penetration testing. Burp comes with Web vulnerability scanning and fully customized scan and attack applications.
ConsIt's not easy to use, but luckily there's a lot of tutorial out there that can help the beginner to use BurpSuite.
Reviewer Source 
Source: Capterra
July 26, 2019
Verified Reviewer
Information Technology and Services, 11-50 employees
Used the software for: 1-2 years
Overall Rating
5/5
Ease of Use
5/5
Features
5/5
Likelihood to Recommend
10/10
Reviewer Source 
Source: Capterra
June 30, 2019

“Spidersense!”

ProsThis is a powerful tool which can execute attacks on webapps which comparably less amount of time. The spider here is very powerful can literally crack open the target.
ConsYou have to have a pro level skill to work with this tool. Not recommended for newbies!
Reviewer Source 
Source: Capterra
June 30, 2019