We performed a comparison between PortSwigger Burp Suite Professional and Synopsys API Security Testing based on real PeerSpot user reviews.
Find out what your peers are saying about Sonar, Veracode, Checkmarx and others in Application Security Testing (AST)."I find the attack model quite amazing, where I can write my scripts and load my scripts as well, which helps quite a bit. All the active scanning that it can do is also quite a lot helpful. It speeds up our vulnerability assessment and penetration testing. Right now, I am enjoying its in-browser, which also helps quite a bit. I'm always confused about setting up some proxy, but it really is the big solution we all want."
"You can download different plugins if you don't have them in the standard edition."
"I have found the best features to be the performance and there are a lot of additional plugins available."
"The solution helped us discover vulnerabilities in our applications."
"It is a time-saver application."
"PortSwigger Burp Suite Professional is one of the best user-friendly solutions for getting the proxy set up."
"This solution has helped a lot in finding bugs and vulnerabilities, and the scanner is good enough for simple web apps."
"In my area of expertise, I feel like it has almost everything I could possibly require at this moment."
"The most valuable features of Synopsys API Security Testing are the metrics, results, and threat vectors that it shares."
"If we're running a huge number of scans regularly, it slows down the tool."
"The biggest drawback is reporting. It's not so good. I can download them, but they're not so informative."
"As with most automated security tools, too many false positives."
"There were a lot of false positives there, and we used to spend a lot of time, like, for security reasons, reproducing those bugs for the development team to fix it."
"PortSwigger Burp Suite Professional could improve the static code review."
"The initial setup is a bit complex."
"It should provide a better way to integrate with Jenkins so that DAST (dynamic application security testing) can be automated."
"BurpSuite has some issues regarding authentication with OAT tokens that need to be improved."
"The solution required us to use our team and we spoke to Synopsys API Security Testing's support to do the implementation. We use two people from our team for the implementation. and one person for maintenance."
More PortSwigger Burp Suite Professional Pricing and Cost Advice →
PortSwigger Burp Suite Professional is ranked 5th in Application Security Testing (AST) with 55 reviews while Synopsys API Security Testing is ranked 29th in Application Security Testing (AST) with 1 review. PortSwigger Burp Suite Professional is rated 8.6, while Synopsys API Security Testing is rated 7.0. The top reviewer of PortSwigger Burp Suite Professional writes "The solution is versatile and easy to deploy, but it needs to give more detailed security reports". On the other hand, the top reviewer of Synopsys API Security Testing writes "Useful threat vectors, beneficial results, but implementation needed support". PortSwigger Burp Suite Professional is most compared with OWASP Zap, Fortify WebInspect, Acunetix, HCL AppScan and Qualys Web Application Scanning, whereas Synopsys API Security Testing is most compared with Seeker, Fortify WebInspect, Acunetix and OWASP Zap.
See our list of best Application Security Testing (AST) vendors.
We monitor all Application Security Testing (AST) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.