Try our new research platform with insights from 80,000+ expert users

PortSwigger Burp Suite Enterprise Edition pros and cons

Vendor: PortSwigger

4.0 out of 5

12 reviews
84% willing to recommend

Pros & Cons summary

PortSwigger Burp Suite Enterprise Edition offers features like CMDB and device discovery, supports custom script integration, and enables automated and parallel scanning to boost efficiency. CI/CD integration addresses vulnerabilities seamlessly. However, false positives and complex implementation require manual checks. High license costs and performance limitations affect user experience. Predefined attack payloads could improve automation. These factors should be considered by tech buyers evaluating the product for enterprise deployment.

Buyer's Guide

Get pricing advice, tips, use cases and valuable features from real users of this product.

Prominent pros & cons

PROS

PortSwigger Burp Suite Enterprise Edition offers dynamic scanning and vulnerability assessment capabilities.

It provides valuable CMDB and device discovery features.

The scanner allows parallel scanning and CI/CD integration, enhancing workflow efficiency.

Users benefit from extensive options and custom script uploads for feature expansion.

The extensions significantly expand the capabilities and features of PortSwigger Burp Suite Enterprise Edition.

CONS

There are lots of false positives that need to be addressed.

The implementation is complicated and could be easier.

The cost per license per user is high, especially for individual licensing.

PortSwigger Burp Suite Enterprise Edition would benefit from a cloud-based solution.

The stability of the scans and the overall performance could be improved.

PortSwigger Burp Suite Enterprise Edition Pros review quotes

RP

Cyber security Lead at a manufacturing company with 1,001-5,000 employees

May 14, 2021

The initial setup is straightforward.

Read full review

Mustufa Bhavnagarwala

CyberRisk Solution Advisor at Deloitte

Nov 27, 2023

The product's initial setup phase was super easy.

Read full review

RP

Cyber security Lead at a manufacturing company with 1,001-5,000 employees

Mar 26, 2021

I like normal dynamic scanning, general web applications scanning, and vulnerability assessments.

Read full review

PortSwigger Burp Suite Enterprise Edition

Free Report: PortSwigger Burp Suite Enterprise Edition Reviews and More

Learn what your peers think about PortSwigger Burp Suite Enterprise Edition. Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.

825,399 professionals have used our research since 2012.

reviewer2582073

App Sec Engineer at a non-profit with 11-50 employees

Oct 15, 2024

The most valuable part of it was probably the ability to intercept and modify calls.

Read full review

OB

Oussama Ben Taher

Studiant at Edifixio

Dec 23, 2024

Its automated scanning feature saves time.

Read full review

Hasan Abufreiha

Cyber security enthusiast at a university with 51-200 employees

May 22, 2024

The solution's extensions really expand the capabilities and features offered by the installation.

Read full review

Iwegbue Godspower Isioma

Cyber Security Analyst at Platview Technologies

Nov 20, 2023

The product is easy to use.

Read full review

reviewer1049070

Senior IT Security Analyst at a transportation company with 10,001+ employees

Aug 23, 2022

The most valuable features of PortSwigger Burp Suite Enterprise Edition are the vast amount of options and ease of use. They frequently improve the solution every six months to a year. Additionally, if we want any more features we can upload a custom script to meet our needs.

Read full review

MN

Manikantha Nagireddy

Security Tester at Ray Business Technologies Private Limited

May 16, 2024

This tool helps identify vulnerabilities. We then provide the report to the developers, who address the issues identified automatically. Its most valuable feature is CI/CD integration.

Read full review

RP

Rahul Singh Patel

Cyber security Lead at PCS

Feb 5, 2024

Parallel scans can be done with PortSwigger Burp Suite Enterprise Edition.

Read full review

Show 2 more reviews (out of 12)

PortSwigger Burp Suite Enterprise Edition Cons review quotes

RP

Cyber security Lead at a manufacturing company with 1,001-5,000 employees

May 14, 2021

The solution is a bit expensive.

Read full review

Mustufa Bhavnagarwala

CyberRisk Solution Advisor at Deloitte

Nov 27, 2023

The cost per license per user could be cheaper, specifically for individual licensing.

Read full review

RP

Cyber security Lead at a manufacturing company with 1,001-5,000 employees

Mar 26, 2021

There's definitely room for improvement. There are lots of false positives. Once I do the manual assessment, it comes as a false positive. They need to improve the Enterprise Edition, especially the part that gives false positives.

Read full review

PortSwigger Burp Suite Enterprise Edition

Free Report: PortSwigger Burp Suite Enterprise Edition Reviews and More

Learn what your peers think about PortSwigger Burp Suite Enterprise Edition. Get advice and tips from experienced pros sharing their opinions. Updated: November 2024.

825,399 professionals have used our research since 2012.

reviewer2582073

App Sec Engineer at a non-profit with 11-50 employees

Oct 15, 2024

Scalability could be better.

Read full review

OB

Oussama Ben Taher

Studiant at Edifixio

Dec 23, 2024

It would be beneficial if Burp Suite provided predefined payloads for each attack category, such as SQL injection and cross-site scripting, to automate some tasks more effectively.

Read full review

Hasan Abufreiha

Cyber security enthusiast at a university with 51-200 employees

May 22, 2024

From my personal experience, the solution's performance could be improved.

Read full review

Iwegbue Godspower Isioma

Cyber Security Analyst at Platview Technologies

Nov 20, 2023

It would be better if the solution is cloud-based.

Read full review

reviewer1049070

Senior IT Security Analyst at a transportation company with 10,001+ employees

Aug 23, 2022

There are features or functionality missing, but PortSwigger Burp Suite Enterprise Edition does try to update frequently to alleviate the shortcomings.

Read full review

MN

Manikantha Nagireddy

Security Tester at Ray Business Technologies Private Limited

May 16, 2024

PortSwigger Burp Suite Enterprise Edition should incorporate a static code analysis feature. One main issue we encounter is false positives. False positives can be challenging for developers.

Read full review

RP

Rahul Singh Patel

Cyber security Lead at PCS

Feb 5, 2024

The stability of the scans could be improved.

Read full review

Show 2 more reviews (out of 12)

Product Categories

Product Categories

Dynamic Application Security Testing (DAST)

Vulnerability Management

Popular Comparisons

Popular Comparisons

HCL AppScan vs PortSwigger Burp Suite Enterprise Edition

Fortify WebInspect vs PortSwigger Burp Suite Enterprise Edition

Rapid7 InsightAppSec vs PortSwigger Burp Suite Enterprise Edition

AppCheck vs PortSwigger Burp Suite Enterprise Edition

See all alternatives

Product Categories

Product Categories

Dynamic Application Security Testing (DAST)

Vulnerability Management

Popular Comparisons

Popular Comparisons

HCL AppScan vs PortSwigger Burp Suite Enterprise Edition

Fortify WebInspect vs PortSwigger Burp Suite Enterprise Edition

Rapid7 InsightAppSec vs PortSwigger Burp Suite Enterprise Edition

AppCheck vs PortSwigger Burp Suite Enterprise Edition

See all alternatives

Related questions

6

When evaluating Dynamic Application Security Testing (DAST), what aspect do you think is the most important to look for?

4

Why is Dynamic Application Security Testing (DAST) important for companies?