Try our new research platform with insights from 80,000+ expert users

OpenText Dynamic Application Security Testing vs PortSwigger Burp Suite Enterprise Edition comparison

OpenText and PortSwigger are both solutions in the Dynamic Application Security Testing (DAST) category. OpenText is ranked #3 with an average rating of 8.0, while PortSwigger is ranked #7 with an average rating of 7.6. OpenText holds a 10.6% mindshare in DAST, compared to PortSwigger’s 4.5% mindshare. Additionally, 83% of OpenText users are willing to recommend the solution, compared to 84% of PortSwigger users who would recommend it.
OpenText Dynamic Applicatio...
Read 22 OpenText Dynamic Application Security Testing reviews
  • 2,921 Views
  • 1,052 Comparison Views
83% willing to recommend
PortSwigger Burp Suite Ente...
Read 12 PortSwigger Burp Suite Enterprise Edition reviews
  • 2,003 Views
  • 401 Comparison Views
84% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Dec 28, 2025

OpenText Dynamic Application Security Testing and PortSwigger Burp Suite Enterprise Edition compete in application security testing. PortSwigger Burp Suite Enterprise holds the upper hand for its expansive feature set, making it a preferred choice despite its higher price point.

Features: OpenText Dynamic Application Security Testing provides comprehensive scanning, integration with development tools, and scalability suitable for large enterprises. PortSwigger Burp Suite Enterprise offers an in-depth scanning process, a wide range of security testing features, and CI/CD integration, catering to security professionals.

Room for Improvement: OpenText could enhance its feature set to compete with PortSwigger. Improvements in advanced integrations and extended scanning capabilities could add value. Better user interface aspects and more comprehensive reporting options are also potential enhancements. PortSwigger could improve setup processes to reduce challenges during deployment. Additional user-friendly interfaces and enhanced initial configuration settings would benefit users. Streamlining integration processes and addressing specific user needs could further enhance its offering.

Ease of Deployment and Customer Service: OpenText ensures smooth deployment with intuitive integration and responsive customer service. PortSwigger simplifies deployment significantly, coupled with proactive customer engagement, though initial setup challenges exist, highlighting areas for initial process improvements.

Pricing and ROI: OpenText offers competitive pricing, ensuring a relatively quick ROI, particularly for larger deployments. PortSwigger, positioned at a higher price, justifies the investment through long-term benefits from its extensive capabilities, offering enhanced value over time despite an initially higher cost.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed OpenText Dynamic Application Security Testing vs. PortSwigger Burp Suite Enterprise Edition Report (Updated: December 2025).
Buyer's Guide
OpenText Dynamic Application Security Testing vs. PortSwigger Burp Suite Enterprise Edition
December 2025
Download the complete report
Helped 879,899 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

OpenText Dynamic Applicatio...
Ranking in Dynamic Application Security Testing (DAST)
3rd
Average Rating
7.2
Reviews Sentiment
6.1
Number of Reviews
22
Ranking in other categories
DevSecOps (8th)
PortSwigger Burp Suite Ente...
Ranking in Dynamic Application Security Testing (DAST)
7th
Average Rating
8.0
Reviews Sentiment
7.2
Number of Reviews
12
Ranking in other categories
Vulnerability Management (28th)
 

Mindshare comparison

As of January 2026, in the Dynamic Application Security Testing (DAST) category, the mindshare of OpenText Dynamic Application Security Testing is 10.6%, up from 9.2% compared to the previous year. The mindshare of PortSwigger Burp Suite Enterprise Edition is 4.5%, up from 2.9% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Dynamic Application Security Testing (DAST) Market Share Distribution
ProductMarket Share (%)
OpenText Dynamic Application Security Testing10.6%
PortSwigger Burp Suite Enterprise Edition4.5%
Other84.9%
Dynamic Application Security Testing (DAST)
 

Featured Reviews

AP
ArnabPaul
Cyber Security Consultant at a tech vendor with 10,001+ employees
Enhancements in manual testing align with reporting and integration features
WebInspect works efficiently with Java-based or .NET based applications. However, it struggles with Salesforce applications, where it requires approximately 20-24 hours to crawl and audit but produces minimal findings, necessitating manual verification. The solution offers customization features for crawling and vulnerability detection. It includes various security frameworks and allows selection of specific vulnerability types to audit, such as OWASP Top 10 or JavaScript-based vulnerabilities. When working with APIs, we can select OWASP API Top 10. The tool also supports custom audit features by combining different security frameworks. For on-premises deployment, the setup is complex, particularly regarding SQL server configuration. Unlike Burp Suite or OpenText Dynamic Application Security Testing, which have simpler setup processes, WebInspect requires SQL server setup to function.
Read full review
OB
Oussama Ben Taher
Studiant at Edifixio
Enables time-saving automated scanning and brute force attacks
The most appreciated functionality of PortSwigger Burp Suite is its ability to perform brute force attacks automatically. Its automated scanning feature saves time. Additionally, using this tool provides significant security insights, making our testing process more efficient and comprehensive, leading to considerable time savings, which in turn translates to financial benefits.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The feature that has been most influential in identifying vulnerabilities is its ability to crawl the website, understand the structure, and analyze the network packets sent and received."
"The transaction recorder within WebInspect is easy to use, which is valuable for our team."
"The solution's technical support was very helpful."
"The user interface is ok and it is very simple to use."
"The tool provides comprehensive vulnerability assessments which help ensure our deliverables are as free from vulnerabilities as possible. It has also streamlined our web application vulnerability assessments, assisting us in delivering secure applications to our clients."
"When we are integrating it with SSC, we're able to scan and trace and see all of the vulnerabilities. Comparison is easy in SSC."
"It is easy to use, and its reporting is fairly simple."
"Fortify WebInspect is a scalable solution, it is good for a lot of applications."
More OpenText Dynamic Application Security Testing pros
"This tool helps identify vulnerabilities. We then provide the report to the developers, who address the issues identified automatically. Its most valuable feature is CI/CD integration."
"The tool is loaded with many features that give us ROI."
"We are in the early stage of using the solution making it difficult to fully determine the best features. However, we have noticed the CMDB and device discovery features look valuable at this time."
"The most valuable part of it was probably the ability to intercept and modify calls."
"The solution's extensions really expand the capabilities and features offered by the installation."
"The product's initial setup phase was super easy."
"I like normal dynamic scanning, general web applications scanning, and vulnerability assessments."
"The product is easy to use."
More PortSwigger Burp Suite Enterprise Edition pros
 

Cons

"Fortify WebInspect's shortcoming stems from the fact that it is a very expensive product in Korea, which makes it difficult for its potential customers to introduce the product in their IT environment."
"Lately, we've seen more false negatives."
"There are some file extensions, like .SER, that Fortify WebInspect doesn't scan."
"One thing I would like to see them introduce is a cloud-based platform."
"The scanner could be better."
"We have often encountered scanning errors."
"I'm not sure licensing, but on the pricing, it's a bit costly. It's a bit overpriced. Though it is an enterprise tool, there are other tools also with similar functionalities."
"The installation could be a bit easier. Usually it's simple to use, but the installation is painful and a bit laborious and complex."
More OpenText Dynamic Application Security Testing cons
"The stability of the scans could be improved."
"It would be beneficial if Burp Suite provided predefined payloads for each attack category, such as SQL injection and cross-site scripting, to automate some tasks more effectively."
"There are features or functionality missing, but PortSwigger Burp Suite Enterprise Edition does try to update frequently to alleviate the shortcomings."
"The solution is a bit expensive."
"The implementation of the solution is quite complicated and could be easier."
"The cost per license per user could be cheaper, specifically for individual licensing."
"PortSwigger Burp Suite Enterprise Edition should incorporate a static code analysis feature. One main issue we encounter is false positives. False positives can be challenging for developers."
"There's definitely room for improvement. There are lots of false positives. Once I do the manual assessment, it comes as a false positive. They need to improve the Enterprise Edition, especially the part that gives false positives."
More PortSwigger Burp Suite Enterprise Edition cons
 

Pricing and Cost Advice

"Our licensing is such that you can only run one scan at a time, which is inconvenient."
"Fortify WebInspect is a very expensive product."
"It’s a fair price for the solution."
"This solution is very expensive."
"Its price is almost similar to the price of AppScan. Both of them are very costly. Its price could be reduced because it can be very costly for unlimited IT scans, etc. I'm not sure, but it can go up to $40,000 to $50,000 or more than that."
"The price is okay."
"The pricing is not clear and while it is not high, it is difficult to understand."
"For Professional, it's about $400 per year."
"PortSwigger Burp Suite Enterprise Edition is expensive compared to other solutions."
"Although the solution can be a bit expensive for small companies, its pricing is fairly reasonable for its capabilities."
"The tool's pricing is reasonable and costs around 400 dollars per year."
"PortSwigger Burp Suite Enterprise Edition is neither a cheap nor an expensive product. PortSwigger Burp Suite Enterprise Edition is a good tool for companies."
report
See which vendors are best for you
Use our free recommendation engine to learn which Dynamic Application Security Testing (DAST) solutions are best for your needs.
See recommendations
879,899 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Government
15%
Financial Services Firm
14%
Manufacturing Company
11%
Computer Software Company
10%
Financial Services Firm
17%
Computer Software Company
11%
Manufacturing Company
8%
Government
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business7
Midsize Enterprise1
Large Enterprise15
By reviewers
Company SizeCount
Small Business5
Midsize Enterprise2
Large Enterprise7
 

Questions from the Community

What is your experience regarding pricing and costs for Fortify WebInspect?
While I am not directly involved with licensing, I can share that our project's license for 1-9 applications costs between $15,000 to $19,000. In comparison, Burp Suite costs approximately $500 to ...
See all answers
What needs improvement with Fortify WebInspect?
WebInspect works efficiently with Java-based or .NET based applications. However, it struggles with Salesforce applications, where it requires approximately 20-24 hours to crawl and audit but produ...
See all answers
What is your primary use case for Fortify WebInspect?
I am currently working with several tools. For Fortify, I use SCA and WebInspect. Apart from that, I use Burp Suite from PortSwigger. For API testing, I use Postman with Burp Suite or WebInspect fo...
See all answers
What do you like most about PortSwigger Burp Suite Enterprise Edition?
Parallel scans can be done with PortSwigger Burp Suite Enterprise Edition.
See all answers
What is your experience regarding pricing and costs for PortSwigger Burp Suite Enterprise Edition?
I am using the Community Edition, which is free, however, I understand there might be extra expenses for additional features or services.
See all answers
What needs improvement with PortSwigger Burp Suite Enterprise Edition?
It would be beneficial if Burp Suite provided predefined payloads for each attack category, such as SQL injection and cross-site scripting, to automate some tasks more effectively.
See all answers
 

Comparisons

PortSwigger Burp Suite Professional vs OpenText Dynamic Application Security Testing Logo
PortSwigger Burp Suite Professional vs OpenText Dynamic Application Security Testing
Compared 15% of the time
Acunetix vs OpenText Dynamic Application Security Testing Logo
Acunetix vs OpenText Dynamic Application Security Testing
Compared 7% of the time
OWASP Zap vs OpenText Dynamic Application Security Testing Logo
OWASP Zap vs OpenText Dynamic Application Security Testing
Compared 7% of the time
Veracode vs OpenText Dynamic Application Security Testing Logo
Veracode vs OpenText Dynamic Application Security Testing
Compared 7% of the time
SOON DAST vs OpenText Dynamic Application Security Testing Logo
SOON DAST vs OpenText Dynamic Application Security Testing
Compared 3% of the time
More OpenText Dynamic Application Security Testing Competitors
Seal Security vs PortSwigger Burp Suite Enterprise Edition Logo
Seal Security vs PortSwigger Burp Suite Enterprise Edition
Compared 36% of the time
Acunetix vs PortSwigger Burp Suite Enterprise Edition Logo
Acunetix vs PortSwigger Burp Suite Enterprise Edition
Compared 12% of the time
Tenable Nessus vs PortSwigger Burp Suite Enterprise Edition Logo
Tenable Nessus vs PortSwigger Burp Suite Enterprise Edition
Compared 6% of the time
Rapid7 InsightAppSec vs PortSwigger Burp Suite Enterprise Edition Logo
Rapid7 InsightAppSec vs PortSwigger Burp Suite Enterprise Edition
Compared 6% of the time
AppCheck vs PortSwigger Burp Suite Enterprise Edition Logo
AppCheck vs PortSwigger Burp Suite Enterprise Edition
Compared 4% of the time
More PortSwigger Burp Suite Enterprise Edition Competitors
 

Product Reports

Buyer's Guide
OpenText Dynamic Application Security Testing
December 2025
OpenText Dynamic Application Security Testing reportDownload OpenText Dynamic Application Security Testing product report
Buyer's Guide
PortSwigger Burp Suite Enterprise Edition
December 2025
PortSwigger Burp Suite Enterprise Edition reportDownload PortSwigger Burp Suite Enterprise Edition product report
 

Also Known As

Micro Focus WebInspect, WebInspect
No data available
 

Overview

OpenText Dynamic Application Security Testing offers robust scalability, ease of use, and high accuracy in scanning, making it a valuable tool for enterprises.

This security testing platform is known for its centralized dashboard, guided scans, and comprehensive reporting. It integrates seamlessly with tools like Fortify code scanner and supports extensive vulnerability detection and analysis, enhancing efficiency in security management. Despite its strengths, users suggest improvements in cloud integration, cost-effectiveness, and installation processes. Faster scans, reduced false positives, and improved mobile testing features are also desired.

What are the key features of OpenText Dynamic Application Security Testing?
  • Scalability: Easily adapts to changing enterprise needs.
  • Ease of Use: User-friendly interface with guided scans.
  • Comprehensive Reporting: Detailed vulnerability analysis and reporting.
  • Integration Capabilities: Works with Fortify code scanner and user authentication scanning.
  • Wide Vulnerability Detection: Identifies extensive security vulnerabilities.
What benefits should users expect from reviews?
  • Efficient Vulnerability Management: Streamlines security management in development environments.
  • Detailed Analysis: Provides in-depth insights into security issues.
  • Quick Setup: Easy to deploy within existing systems.
  • Enterprise Preference: Supports enterprise environments efficiently.

In industries like BFSI, OpenText Dynamic Application Security Testing is employed for performance network application testing, dynamic and static application security testing, and code checks. Security and QA teams use it in development processes to ensure application security prior to release, proving integral in both enterprise and testing environments.

OpenText

Burp Suite Enterprise Edition is an automated web vulnerability scanner, designed to enable enterprises to scale security across their web portfolios and achieve DevSecOps. Automate trusted Burp scans, integrate web security testing with development, and free your application security to support software development.

PortSwigger
 

Sample Customers

Aaron's
Nasa, Disney, Dow Jones, Iberia Bank, IBM, Ernest and Young, Apple, Ryanair, Thyssenkrupp, Delivery Hero
Buyer's Guide
OpenText Dynamic Application Security Testing vs. PortSwigger Burp Suite Enterprise Edition
December 2025
Free Report: OpenText Dynamic Application Security Testing vs. PortSwigger Burp Suite Enterprise Edition
Find out what your peers are saying about OpenText Dynamic Application Security Testing vs. PortSwigger Burp Suite Enterprise Edition and other solutions. Updated: December 2025.
DOWNLOAD NOW
879,899 professionals have used our research since 2012.
See our OpenText Dynamic Application Security Testing vs. PortSwigger Burp Suite Enterprise Edition report.
See our list of best Dynamic Application Security Testing (DAST) vendors.

We monitor all Dynamic Application Security Testing (DAST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.