Header banner
Revain logoHome Page
burpsuite logo

BurpSuite Review

1

·

Very good

Revainrating 4 out of 5  
Rating 
4.0
Security, DevSecOps

View on AmazonView on ЯM

Description of BurpSuite

PortSwigger Web Security is a global leader in the creation of software tools for the security testing of web applications. The software (Burp Suite) is well established as the de facto standard toolkit used by web security professionals. Burp Suite is used by more than 47,000 individuals at 12,500 organisations, in over 140 countries. Used across the majority of industry sectors, in organisations both large and small. Burp Suite Professional is an advanced set of tools for finding and exploiting vulnerabilities in web applications - all within a single product. From a basic intercepting proxy to a cutting edge vulnerability scanner. Burp Suite can be used to test and report on a large number of vulnerabilities including SQLi, XSS and the whole OWASP top 10. PortSwigger pioneered out-of-band security testing (OAST) and Burp scanner was the first product to make OAST available out-of-the-box with zero configuration and to apply it to a wide range of vulnerability types. The Burp Suite Enterprise Edition enables businesses to secure their entire web portfolio with simple, scalable, scanning using the same cutting-edge Burp scanner technology. The Enterprise Edition performs recurring, scheduled scans across thousands of applications, with intuitive reporting dashboards, role-based access control and scan reports. It can provide out-of-the- box integration with ready made CI plugins, native Jira support and rich API's to enable security incorporation into existing software development processes.

Reviews

Global ratings 1
  • 5
    0
  • 4
    1
  • 3
    0
  • 2
    0
  • 1
    0

Type of review

Revainrating 4 out of 5

Great for identifying problems and making sure everything is fine

I like that it has several different ways to configure your request which include HTTP requests or POSTS/GETs etcetc.. This allows you not only get all aspects but also gives great advice if something isn't working. It's easy enough even without being an expert with programming languages - there are plenty guides online too! You can tell what errors might be happening from just looking through them so this makes troubleshooting easier when compared against other free options out their such us…

Pros
  • The ease at getting information
  • Easy way for debugging problems in code (HTTP interceptors)
  • Good amount documentation available, including tutorials.
  • Lots more tools within one product than many others have individually(e.g XSSF files)
Cons
  • Can take some time learning how everything works.
  • Need good understanding before trying new features
  • Not as user friendly interface is limited resources provided by browsers
  • No ability upload custom made filters into tool