Burp Suite is an integrated platform for attacking web applications. It contains a variety of tools with numerous interfaces between them designed to facilitate and speed up the process of attacking an application. All of the tools share the same framework for handling and displaying HTTP messages, persistence, authentication, proxies, logging, alerting and extensibility. There is a limited free version and also Burp Suite Professional ($299 per user per year).
For downloads and more information,
visit the Burp Suite homepage.
It is the best when you are using the pro version. It is better than than Web Nessus Scanner or Metasploit Web Scanner and it is more better than Acunetix.
Burp is _the_ tool every security professional should know about. I personally love the API and the fact that you can add your own extensions in your favourite language: Python, Java, Ruby.
I was interested in trying this tool, but the crippled 'free' version doesn't have the scanner function. Useless for me. I was thinking of buying it but not now.
Burpsuite is a must-have tool for any Web Application penetration Tester. This should be the baseline from which you do most of your manual testing. The commecial version of the product also offers a number of features and enhancements that will make your life much easier.
also, at the time of writing, this blurb is out of date. Burpsuite is currently on version 1.4.01.
Your comment
Along with your rating, you can use the comment form to post a review,
tutorial, tips and tricks, or anything else others will find useful.
If you develop this software (or work for the company), please don't rate it. You may leave a clarifying comment as long as you state your affiliation and don't specify a star rating (just leave it as “No rating”).
63
Best of the best. Using by all Pentesting company of my country. Can find issues that Acunetix can't.
It is the best when you are using the pro version. It is better than than Web Nessus Scanner or Metasploit Web Scanner and it is more better than Acunetix.
[ ] * * \___/
Idk I’m still bored so this may be s*p.@m
Idk. This is gud I guess but I haven’t downloaded it this may be s*p.@m
Excellent tool for web penetration testing. Specially the feature where you can write your own extensions for Ruby, Python and Java.
Burp is _the_ tool every security professional should know about. I personally love the API and the fact that you can add your own extensions in your favourite language: Python, Java, Ruby.
Good tool. Works better than others in the browser
very good ! myemail: zhaochunlei@syberos.org ceo@syberos.org cto@syberos.org hr@syberos.org
Burpsuite is the best tool I have ever used. Paying for full version is really worth it.
This is very good tool for pentesting web. The free version should be Okay!
I was interested in trying this tool, but the crippled 'free' version doesn't have the scanner function. Useless for me. I was thinking of buying it but not now.
Not only this app is reliable and useful, and full of great features...
But its authors' book is INDISPENSABLE whether you are a newbie or an expert.
My go to tool when doing any kind of work relating to web apps.
Tried several web scanners (though this isn't a web scanner tool by def) available and Burp is the one I trust!
Indispensable tool when performing web application assessments. Read web traffic, then manipulate it as much as you desire.
Simply the best tool ever made for web application penetration testing.
nice tool that can be used for guys interested in security
Great tool. Standard.
Great tool
Awesome Tool :)
Burp is the one indispensable tool required during a web app pentest.
By far the best tool for web pen-testing.
WAPT best tool!
Burpsuite is a must-have tool for any Web Application penetration Tester. This should be the baseline from which you do most of your manual testing. The commecial version of the product also offers a number of features and enhancements that will make your life much easier.
also, at the time of writing, this blurb is out of date. Burpsuite is currently on version 1.4.01.