We performed a comparison between Parasoft SOAtest and PortSwigger Burp Suite Professional based on real PeerSpot user reviews.Find out what your peers are saying about Sonar, Veracode, GitLab and others in Application Security Testing (AST).
"Good write and read files which save execution inputs and outputs and can be stored locally."
"The most valuable feature is Burp Collaborator."
"The solution has a pretty simple setup."
"I have found this solution has more plugins than other competitors which is a benefit. You are able to attach different plugins to the security scan to add features. For example, you can check to see if there are any payment systems that exist on a server, or username and password brute force analysis."
"The most valuable feature of PortSwigger Burp Suite Professional is the dashboard. It is very informative and you can receive all the information you need in one place. It's clear, well-defined, and organized. Anybody without any cybersecurity can use it."
"I have found the best features to be the performance and there are a lot of additional plugins available."
"The most valuable feature of PortSwigger Burp Suite Professional is the advanced features, user-friendly interface, and integration with other tools."
"The extension that it provides with the community version for the skills mapping is excellent."
"The automated scan is what I find most useful because a lot of customers will need it. Not every domain will be looking for complete security, they just need a stamp on the security key. For these kinds of customers, the scan works really well."
"From an automation point of view, it should have better clarity and be more user friendly."
"The pricing of the solution is quite high."
"It should provide a better way to integrate with Jenkins so that DAST (dynamic application security testing) can be automated."
"PortSwigger Burp Suite Professional can improve by having more features in the free version for beginners to try."
"BurpSuite has some issues regarding authentication with OAT tokens that need to be improved."
"PortSwigger Burp Suite Professional could improve the static code review."
"We'd like to have more integration potential across all versions of the product."
"There could be an improvement in the API security testing. There is another tool called Postman and if we had a built-in portal similar to Postman which captures the API, we would be able to generate the API traffic. Right now we need a Postman tool and the Burp Suite for performing API tests. It would be a huge benefit to be able to do it in a single UI."
"One thing that is not up to the mark in PortSwigger is web application testing. I found some issues with its performance and reporting. They should work on these and give us a better outcome."
Burp Suite Professional, by PortSwigger, is the world’s leading toolkit for web security testing. Over 52,000 users worldwide, across all industries and organization sizes, trust Burp Suite Professional to find more vulnerabilities, faster. With expertly-engineered manual and automated tooling, you're able to test smarter - not harder.
PortSwigger is the web security company that is enabling the world to secure the web. Over 50,000 security engineers rely on our software and expertise to secure their world.
Parasoft SOAtest is ranked 21st in Application Security Testing (AST) with 1 review while PortSwigger Burp Suite Professional is ranked 4th in Application Security Testing (AST) with 17 reviews. Parasoft SOAtest is rated 7.0, while PortSwigger Burp Suite Professional is rated 8.8. The top reviewer of Parasoft SOAtest writes "Good API testing and RIT feature; clarity could be improved". On the other hand, the top reviewer of PortSwigger Burp Suite Professional writes "Best for manual penetration testing, a great user interface, and offers good scanning capabilities". Parasoft SOAtest is most compared with Postman, SonarQube, ReadyAPI Test, Coverity and Tricentis Tosca, whereas PortSwigger Burp Suite Professional is most compared with OWASP Zap, Fortify WebInspect, Acunetix, Veracode and Invicti.
See our list of best Application Security Testing (AST) vendors.
We monitor all Application Security Testing (AST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.