No more typing reviews! Try our Samantha, our new voice AI agent.
PortSwigger Burp Suite Enterprise Edition Logo

PortSwigger Burp Suite Enterprise Edition Reviews

Vendor: PortSwigger
4.0 out of 5
Leave a review

What is PortSwigger Burp Suite Enterprise Edition?

PortSwigger Burp Suite Enterprise Edition is a comprehensive tool for web application security testing, emphasizing ease of use for dynamic scanning and vulnerability assessments. Its automation capabilities enhance efficiency and insights into API, web, and mobile app security.

Get the PortSwigger Burp Suite Enterprise Edition Buyer's Guide and find out what your peers are saying about PortSwigger Burp Suite Enterprise Edition, Wiz, SentinelOne Singularity Cloud Security and more!
PortSwigger Burp Suite Enterprise Edition is the #7 ranked solution in top Dynamic Application Security Testing (DAST) solutions and #40 ranked solution in top Vulnerability Management solutions. PeerSpot users give PortSwigger Burp Suite Enterprise Edition an average rating of 8.0 out of 10. PortSwigger Burp Suite Enterprise Edition is most commonly compared to Wiz: PortSwigger Burp Suite Enterprise Edition vs Wiz. PortSwigger Burp Suite Enterprise Edition is popular among the large enterprise segment, accounting for 58% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a financial services firm, accounting for 19% of all views.
Buyer's Guide
PortSwigger Burp Suite Enterprise Edition
April 2026
Get the report
Helped 892,868 peers since 2012

Featured PortSwigger Burp Suite Enterprise Edition reviews

Read more reviews

PortSwigger Burp Suite Enterprise Edition mindshare

Product category:
Dynamic Application Security Testing ...
As of May 2026, the mindshare of PortSwigger Burp Suite Enterprise Edition in the Dynamic Application Security Testing (DAST) category stands at 4.0%, down from 4.3% compared to the previous year, according to calculations based on PeerSpot user engagement data.
Dynamic Application Security Testing (DAST) Mindshare Distribution
ProductMindshare (%)
PortSwigger Burp Suite Enterprise Edition4.0%
Veracode15.7%
Checkmarx One15.0%
Other65.3%
Dynamic Application Security Testing (DAST)

PeerResearch reports based on PortSwigger Burp Suite Enterprise Edition reviews

TypeTitleDate
CategoryDynamic Application Security Testing (DAST)May 6, 2026Download
ProductReviews, tips, and advice from real usersMay 6, 2026Download
ComparisonPortSwigger Burp Suite Enterprise Edition vs VeracodeMay 6, 2026Download
ComparisonPortSwigger Burp Suite Enterprise Edition vs Checkmarx OneMay 6, 2026Download
ComparisonPortSwigger Burp Suite Enterprise Edition vs OpenText Dynamic Application Security TestingMay 6, 2026Download
Suggested products
TitleRatingMindshareRecommending
Wiz4.4N/A97%42 interviewsAdd to research
SentinelOne Singularity Cloud Security4.4N/A99%123 interviewsAdd to research
 
 
Key learnings from peers

Valuable Features

PortSwigger Burp Suite Enterprise Edition offers features like dynamic and active scanning, CMDB and device discovery, CI/CD integration, ease of use, and extensions. Users appreciate automated scanning, vulnerability identification, parallel scans, and the ability to intercept and modify calls. Its integration capabilities and automation efficiency save time and money. Regular updates and custom script uploads enhance functionality, while its interface aids in vulnerability assessment and escalations, facilitating a comprehensive testing process.
  • "The most valuable part is that a beginner can run those scans and the V scanning of that particular vulnerability."
  • "We are in the early stage of using the solution making it difficult to fully determine the best features; however, we have noticed the CMDB and device discovery features look valuable at this time."
  • "I like normal dynamic scanning, general web applications scanning, and vulnerability assessments."

Room for Improvement

PortSwigger Burp Suite Enterprise Edition faces challenges with false positives and scan instability. Users find its implementation complex and costly, suggesting the need for a cloud-based option. Static code analysis, better scalability, and predefined attack payloads are requested. Many find performance inefficient, demanding excessive resources. The lack of code analysis and mobile features leaves unmet needs in competitive markets. They desire improvements in vulnerability detection and dynamic security testing integration.
  • "The stability is a big issue. So many times the scans fail."
  • "The implementation of the solution is quite complicated and could be easier."
  • "It's not a stable product. Sometimes, it takes a lot of time to scan."

ROI

Users highlight a significant return on investment with PortSwigger Burp Suite Enterprise Edition through its efficient automated scanning capabilities which drastically reduce manual efforts. Many emphasize improved web security postures and faster issue resolution times, leading to cost savings. They appreciate its ease of integration with CI/CD pipelines, contributing to streamlined workflows and enhanced security measures during development stages. The comprehensive reporting features aid in quick decision-making and prioritization of critical vulnerabilities.

Pricing

PortSwigger Burp Suite Enterprise Edition is considered expensive compared to other options, with licensing paid annually. While some users find its pricing reasonable for the capabilities offered, many lean towards the more economical Professional edition which costs approximately $400 per year. The Professional edition provides similar scanning features, making it a preferred choice due to cost considerations. Users often question the value of additional expenses associated with the Enterprise edition when the Professional version suffices for most needs.
  • "For Professional, it's about $400 per year."
  • "Although the solution can be a bit expensive for small companies, its pricing is fairly reasonable for its capabilities."
  • "The tool's pricing is reasonable and costs around 400 dollars per year."

Popular Use Cases

Organizations primarily utilize PortSwigger Burp Suite Enterprise Edition for manual and dynamic application assessments, focusing on vulnerability scanning and penetration testing. The tool aids in intercepting web and mobile app traffic, detecting vulnerabilities, and performing security audits. It is instrumental in web application security, application scanning, and ensuring the security of applications used in medical equipment and hospitals, among other environments. Users leverage it for both web and mobile app security analysis.

Service and Support

PortSwigger Burp Suite Enterprise Edition's customer service is generally responsive, providing prompt assistance and offering options to enhance scanning speed. While some users found the process took longer, many highlighted efficient and timely responses. Several users mentioned they hadn't required support due to the software's user-friendly nature. Overall, technical support was efficient, and significant issues were rare, reinforcing their positive experiences with PortSwigger's assistance.

Deployment

PortSwigger Burp Suite Enterprise Edition's initial setup is generally straightforward and easy, often completed in 10 to 48 minutes. Some users experienced technical difficulties, notably with the installation agent, occasionally requiring reboots. Support proves helpful in resolving portal issues, and users appreciate its simple deployment in varied environments. Knowledge is necessary for deployment, but ample guidance assists the process. Organizations rate the setup highly for its efficiency and speed.

Scalability

PortSwigger Burp Suite Enterprise Edition offers good scalability options. It supports multiple scanners for multiple portals and allows enterprises to have various users sharing a single license. While some organizations run it with few users, others have deployed it extensively. Technical users in companies often find it mandatory for operations. The scalability is generally rated moderately high, though larger environments may require additional integration for improved scaling.

Stability

Some users experience significant stability issues with PortSwigger Burp Suite Enterprise Edition, noting long scan times and frequent failures compared to other scanners. Several report it affects their schedules negatively. Others find the tool stable, mentioning regular updates and reliability. Some rate its stability between six and nine out of ten. They acknowledge the software is mature but indicate a need for further refinement to address ongoing concerns.
These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.
Download our PortSwigger Burp Suite Enterprise Edition Buyer's Guide for additional reliable information.

Review data by company size

By reviewers
Company SizeCount
Small Business5
Midsize Enterprise2
Large Enterprise4
By reviewers
By visitors reading reviews
Company SizeCount
Small Business74
Midsize Enterprise34
Large Enterprise148
By visitors reading reviews

Top industries

By visitors reading reviews
Financial Services Firm
19%
Computer Software Company
8%
Manufacturing Company
8%
Construction Company
6%
Government
5%
Comms Service Provider
5%
University
5%
Healthcare Company
5%
Transportation Company
4%
Real Estate/Law Firm
4%
Media Company
3%
Energy/Utilities Company
3%
Non Profit
2%
Hospitality Company
2%
Retailer
2%
Religious Institution
2%
Recreational Facilities/Services Company
2%
Insurance Company
2%
Performing Arts
2%
Wholesaler/Distributor
2%
Marketing Services Firm
2%
Outsourcing Company
2%
Educational Organization
1%
Wellness & Fitness Company
1%
Legal Firm
1%
Aerospace/Defense Firm
1%
Logistics Company
1%

Compare PortSwigger Burp Suite Enterprise Edition with alternative products

Go!

Learn more about PortSwigger Burp Suite Enterprise Edition

PortSwigger Burp Suite Enterprise Edition is designed for vulnerability assessment, web app security testing, and dynamic application scanning. It enables teams to perform thorough assessments through automated brute force and active scanning features. With extensions, CI/CD integration, and automation, it provides a scalable environment, supporting manual and automated testing seamlessly. Users benefit from effective network call logging, vulnerability interception, and customizable scripting. Organizations from sectors such as IT services and medical equipment rely on it for penetration testing and application auditing, benefiting from its frequent improvements and integration capabilities.

What are the key features of PortSwigger Burp Suite Enterprise Edition?
  • Active Scan: Facilitates comprehensive exploration and security insights.
  • Automation and CI/CD Integration: Enhances efficiency through seamless workflow integration.
  • Extensions: Expands functionality to meet specific testing needs.
  • Parallel Scans: Supports high ROI by enabling multiple simultaneous tests.
  • Customizable Scripting: Offers tailored testing scenarios for diverse applications.
What benefits and ROI should users consider?
  • Ease of Use: Allows even beginners to conduct dynamic scanning.
  • Scalability: Ensures efficient assessments across large environments.
  • Process Optimization: Seamless integration supports streamlined workflow.
  • Frequent Improvements: Regular updates to address current issues and needs.

In sectors like medical devices and IT services, PortSwigger Burp Suite Enterprise Edition is integral for penetration testing and compliance verification. Teams use it for manual and automated testing in web and mobile applications, assessing APIs and interpreting network calls to enhance security and certification processes.

PortSwigger Burp Suite Enterprise Edition customers

Nasa, Disney, Dow Jones, Iberia Bank, IBM, Ernest and Young, Apple, Ryanair, Thyssenkrupp, Delivery Hero

Related questions

  • 37
When evaluating Dynamic Application Security Testing (DAST), what aspect do you think is the most important to look for?
  • 42
Why is Dynamic Application Security Testing (DAST) important for companies?

Product Categories

Product Categories
Dynamic Application Security Testing (DAST)
Vulnerability Management

Popular Comparisons

Popular Comparisons
Wiz vs PortSwigger Burp Suite Enterprise Edition Logo
Wiz vs PortSwigger Burp Suite Enterprise Edition
SentinelOne Singularity Cloud Security vs PortSwigger Burp Suite Enterprise Edition Logo
SentinelOne Singularity Cloud Security vs PortSwigger Burp Suite Enterprise Edition
Microsoft Defender for Cloud vs PortSwigger Burp Suite Enterprise Edition Logo
Microsoft Defender for Cloud vs PortSwigger Burp Suite Enterprise Edition
Checkmarx One vs PortSwigger Burp Suite Enterprise Edition Logo
Checkmarx One vs PortSwigger Burp Suite Enterprise Edition
Qualys VMDR vs PortSwigger Burp Suite Enterprise Edition Logo
Qualys VMDR vs PortSwigger Burp Suite Enterprise Edition
Tenable Nessus vs PortSwigger Burp Suite Enterprise Edition Logo
Tenable Nessus vs PortSwigger Burp Suite Enterprise Edition
JFrog Xray vs PortSwigger Burp Suite Enterprise Edition Logo
JFrog Xray vs PortSwigger Burp Suite Enterprise Edition
Acunetix vs PortSwigger Burp Suite Enterprise Edition Logo
Acunetix vs PortSwigger Burp Suite Enterprise Edition
Tenable Vulnerability Management vs PortSwigger Burp Suite Enterprise Edition Logo
Tenable Vulnerability Management vs PortSwigger Burp Suite Enterprise Edition
Rapid7 InsightVM vs PortSwigger Burp Suite Enterprise Edition Logo
Rapid7 InsightVM vs PortSwigger Burp Suite Enterprise Edition
Qualys CyberSecurity Asset Management vs PortSwigger Burp Suite Enterprise Edition Logo
Qualys CyberSecurity Asset Management vs PortSwigger Burp Suite Enterprise Edition
HCL AppScan vs PortSwigger Burp Suite Enterprise Edition Logo
HCL AppScan vs PortSwigger Burp Suite Enterprise Edition
The NodeZero Platform by Horizon3.ai vs PortSwigger Burp Suite Enterprise Edition Logo
The NodeZero Platform by Horizon3.ai vs PortSwigger Burp Suite Enterprise Edition
Invicti vs PortSwigger Burp Suite Enterprise Edition Logo
Invicti vs PortSwigger Burp Suite Enterprise Edition
Rapid7 Metasploit vs PortSwigger Burp Suite Enterprise Edition Logo
Rapid7 Metasploit vs PortSwigger Burp Suite Enterprise Edition
See all alternatives
 
PortSwigger Burp Suite Enterprise Edition Reviews Summary
Author infoRatingReview Summary
Studiant at Edifixio4.0I use PortSwigger Burp Suite Enterprise Edition for security testing due to its efficient automated scanning and brute force capabilities, which save significant time and cost. However, it could improve by providing predefined payloads for attack categories.
Cyber security enthusiast at a university with 51-200 employees4.0I use PortSwigger Burp Suite Enterprise Edition for web application auditing. The extensions significantly enhance its capabilities, though performance could improve as it consumes around 3 GB of RAM. Overall, it is effective for security audits with potential optimization needs.
App Sec Engineer at a non-profit with 11-50 employees4.0I utilized PortSwigger Burp Suite Enterprise Edition for dynamic application testing to identify vulnerabilities by intercepting and modifying calls. Although it's highly effective, scalability is limited, necessitating potential integration for larger environments. It reduced resource usage, boosting ROI.
Security Tester at Ray Business Technologies Private Limited4.0We use PortSwigger Burp Suite Enterprise Edition for web application security to identify vulnerabilities. Its CI/CD integration and automation are valuable, though false positives and the lack of static code analysis need improvement. Overall, it offers cost efficiency.
Cyber Security Analyst at Platview Technologies4.5I use PortSwigger Burp Suite Enterprise Edition for vulnerability assessment and penetration testing, appreciating its ease of use and ability to escalate vulnerabilities. However, I wish it were cloud-based for more convenient remote access.
CyberRisk Solution Advisor at a consultancy with 10,001+ employees5.0I use PortSwigger Burp Suite Enterprise Edition for web and API vulnerability assessments, finding its active scan feature particularly valuable. However, I'd like a cloud version and feel that licensing costs could be more affordable for individuals.
Senior IT Security Analyst at a transportation company with 10,001+ employees5.0I find PortSwigger Burp Suite Enterprise Edition an excellent, stable solution with vast options and ease of use. Despite minor missing features, frequent updates and custom scripting make it highly valuable for security assessments. I rate it 10/10.
Head Information Secretary at a manufacturing company with 1,001-5,000 employees4.5I use PortSwigger Burp Suite Enterprise Edition for application security because it offers numerous features that provide a solid return on investment. However, the product could be improved by enhancing its evaluation capabilities.