Try our new research platform with insights from 80,000+ expert users

PortSwigger Burp Suite Professional vs Rapid7 AppSpider comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Oct 8, 2024
 

Categories and Ranking

PortSwigger Burp Suite Prof...
Ranking in Static Application Security Testing (SAST)
6th
Average Rating
8.6
Reviews Sentiment
7.7
Number of Reviews
60
Ranking in other categories
Application Security Tools (8th), Fuzz Testing Tools (1st)
Rapid7 AppSpider
Ranking in Static Application Security Testing (SAST)
28th
Average Rating
7.8
Number of Reviews
13
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of November 2024, in the Static Application Security Testing (SAST) category, the mindshare of PortSwigger Burp Suite Professional is 2.0%, down from 3.3% compared to the previous year. The mindshare of Rapid7 AppSpider is 0.5%, down from 0.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Static Application Security Testing (SAST)
 

Featured Reviews

Anton Krivonosov - PeerSpot reviewer
Jan 17, 2024
A special tool for penetration testers or security specialists to conduct security assessments
We use the solution for security assessments. It's a special tool for penetration testers or security specialists PortSwigger Burp Suite Professional is a standard tool in the security industry. It's a stable solution that has many features. You can download different plugins if you don't have…
Andrei Bigdan - PeerSpot reviewer
May 4, 2023
Useful vulnerability reporting data, flexible, and simple implementation
I am using Rapid7 AppSpider for vulnerability assessment The most valuable feature of Rapid7 AppSpider is the vulnerability reporting data. Additionally, the data is reported in a convenient way rather than seeing them as a PDF. We are able to generate all the reports exactly what we want in a…

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"PortSwigger Burp Suite does not hamper the node of the server, and it does not shut down the server if it is running."
"You can scan any number of applications and it updates its database."
"The most valuable feature is the application security. It also has a reasonable price."
"The solution has a great user interface."
"The solution has a limited range of functions, which is good for small companies. This is because, in small companies, websites are less complex. They also have single services which makes the solution good enough for them. However, the most advantageous aspect of the solution is its affordable price."
"In my area of expertise, I feel like it has almost everything I could possibly require at this moment."
"I personally love its capability to automatically and accurately detect vulnerabilities. So, I would say it is the Burp scanner that is THE most powerful, valuable, and an awesome feature."
"The product has a good learning hub."
"I like the ability the product has to detect vulnerabilities quickly, when it has been released in our environment, then displaying them to us."
"Rapid7 AppSpider is good at managing different applications. It uses applets and generates reports to cover the PCA/GDPR compliance requirements."
"The setup is usually straightforward."
"The most valuable feature of Rapid7 AppSpider is the vulnerability reporting data. Additionally, the data is reported in a convenient way rather than seeing them as a PDF. We are able to generate all the reports exactly what we want in a flexible way."
"The initial deployment is very straightforward and simple. The product is stable if configured properly."
"AppSpider's most valuable feature is reporting - everything is stored in the local database so it can be sent to other machines."
"It is really accurate and the rate of false positives is very low."
"The most valuable feature is the reporting, which is compliant with international standards."
 

Cons

"The reporting needs to be improved; it is very bad."
"There is a lot to this product, and it would be good if when you purchase the tool, they can provide us with a more extensive user manual."
"As with most automated security tools, too many false positives."
"The biggest drawback is reporting. It's not so good. I can download them, but they're not so informative."
"We'd like to have more integration potential across all versions of the product."
"The pricing of the solution is quite high."
"I need the solution to be more user-friendly. The solution needs to be user-friendly."
"Improvement should be done as per the requirements of customers."
"The enterprise interface is too simple. It should be more customizable."
"One of the challenges I have with AppSpider is that it gives you a lot of false positives, especially when compared to other solutions."
"The solution is too slow. It could take a full day to scan. Competitors are much faster."
"This price of this solution is a little bit expensive."
"The dashboard and interface are crucial and they need some improvement."
"Implementing Rapid7 AppSpider requires scanning and self-identification mechanisms. You can add different types of authentication to each scan."
"There are some glitches with stability, and it is an area for improvement."
"Integration could be better."
 

Pricing and Cost Advice

"We pay a yearly licensing fee for the solution, which is neither cheap nor expensive."
"They should reduce the license cost a little bit. It is $400 per user, and it would be better if they could reduce the licensing fee."
"Pricing is not very high. It was around $200."
"This is a value for money product."
"PortSwigger Burp Suite Professional is an expensive solution."
"The platform's pricing is reasonable."
"PortSwigger is a bit expensive."
"We are using the community version, which is free."
"The licensing cost depends on the number of users."
"The price is pretty fair."
"The price of Rapid7 AppSpider cost 9,000 annually but there is limited usage. Large companies are able to negotiate a better price or a better deal for the usage with the vendor."
"AppSpider is closed-source software and you need to acquire a license in order to use it."
"It is expensive if you want to buy the Enterprise version that is able to scan multiple applications at once."
report
Use our free recommendation engine to learn which Static Application Security Testing (SAST) solutions are best for your needs.
814,649 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
17%
Financial Services Firm
12%
Government
11%
Manufacturing Company
8%
Computer Software Company
17%
Financial Services Firm
16%
Government
9%
Healthcare Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

Is OWASP Zap better than PortSwigger Burp Suite Pro?
OWASP Zap and PortSwigger Burp Suite Pro have many similar features. OWASP Zap has web application scanning available with basic security vulnerabilities while Burp Suite Pro has it available with ...
What do you like most about PortSwigger Burp Suite Professional?
The solution helped us discover vulnerabilities in our applications.
What is your experience regarding pricing and costs for PortSwigger Burp Suite Professional?
I would rate the pricing a six out of ten. It's not as flexible here as it might be in European or American markets.
What do you like most about Rapid7 AppSpider?
The most valuable feature of Rapid7 AppSpider is the vulnerability reporting data. Additionally, the data is reported in a convenient way rather than seeing them as a PDF. We are able to generate a...
What is your experience regarding pricing and costs for Rapid7 AppSpider?
The price of Rapid7 AppSpider cost 9,000 annually but there is limited usage. Large companies are able to negotiate a better price or a better deal for the usage with the vendor. The price of the s...
What needs improvement with Rapid7 AppSpider?
The performance of the solution could improve. When I compare the speed it is slower than others on the market. There are some tricks we use to help speed up the solution.
 

Also Known As

Burp
AppSpider
 

Overview

 

Sample Customers

Google, Amazon, NASA, FedEx, P&G, Salesforce
Microsoft
Find out what your peers are saying about PortSwigger Burp Suite Professional vs. Rapid7 AppSpider and other solutions. Updated: October 2024.
814,649 professionals have used our research since 2012.