Compare Burp Suite and Invicti (formerly Netsparker) 
Featured Products
At a Glance
Market Segments
Mid-Market (40.3% of reviews)
Enterprise (48.4% of reviews)
Entry-Level Pricing
$475.00 1 User Per Year
No pricing available
Burp Suite
Star Rating
(128)4.8 out of 5
Market Segments
Mid-Market (40.3% of reviews)
Pros & Cons
Entry-Level Pricing
$475.00 1 User Per Year
Browse all 2 pricing plansInvicti (formerly Netsparker)
Star Rating
(68)4.6 out of 5
Market Segments
Enterprise (48.4% of reviews)
Pros & Cons
Entry-Level Pricing
No pricing available
Learn more about Invicti (formerly Netsparker)Burp Suite vs Invicti (formerly Netsparker)
When assessing the two solutions, reviewers found Invicti (formerly Netsparker) easier to use. However, reviewers felt that Burp Suite is easier to set up and do business with overall. Both products were equally easy to administer.
- Reviewers felt that Burp Suite meets the needs of their business better than Invicti (formerly Netsparker).
- When comparing quality of ongoing product support, reviewers felt that Invicti (formerly Netsparker) is the preferred option.
- For feature updates and roadmaps, our reviewers preferred the direction of Invicti (formerly Netsparker) over Burp Suite.
Pricing
Entry-Level Pricing
Burp Suite
Burp Suite Professional
$475.00
1 User Per Year
Test, find and exploit vulnerabilities faster with the complete manual testing toolkit. Best for pentesters and hands-on security professionals.
- Map your entire attack surface, including hidden and dynamic content.
- Intercept, inspect, and modify HTTP/S traffic in real time with Proxy.
- Test protected areas and APIs including OpenAPI, GraphQL, and SOAP.
Invicti (formerly Netsparker)
No pricing availableFree Trial
Burp Suite
No trial information availableInvicti (formerly Netsparker)
No trial information availableRatings
Meets Requirements
9.5
104
9.1
58
Ease of Use
8.8
107
9.1
58
Ease of Setup
9.4
42
9.1
48
Ease of Admin
9.2
28
9.2
46
Quality of Support
8.7
93
8.9
58
Has the product been a good partner in doing business?
9.7
26
9.6
44
Product Direction (% positive)
9.3
103
10.0
54
Features by Category
Administration
Not enough data
8.7
18
Not enough data
9.5
21
Not enough data
9.0
21
Risk Analysis
Not enough data
Feature Not Available
Not enough data
9.3
22
Not enough data
9.2
22
Threat Protection
Not enough data
7.9
13
Not enough data
Feature Not Available
Not enough data
8.1
13
Not enough data
Feature Not Available
Generative AI
Not enough data
Feature Not Available
Administration
8.7
18
8.1
13
8.9
19
8.3
13
9.0
19
9.0
17
Analysis
8.3
15
8.4
15
9.3
23
9.0
17
8.9
23
9.7
17
Testing
7.1
14
7.6
12
9.4
22
8.6
15
8.1
20
8.9
17
8.8
22
9.3
17
Static Application Security Testing (SAST)Hide 14 FeaturesShow 14 Features
Not enough data
Not enough data
Administration
Not enough data
Not enough data
Not enough data
Not enough data
Analysis
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Testing
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Agentic AI - Static Application Security Testing (SAST)
Not enough data
Not enough data
Administration
Not enough data
8.2
21
Not enough data
8.3
20
Analysis
Not enough data
8.9
28
Not enough data
9.2
26
Feature Not Available
Feature Not Available
Not enough data
9.3
28
Feature Not Available
7.5
17
Testing
Feature Not Available
7.1
19
Not enough data
8.5
23
Not enough data
8.4
23
Not enough data
9.1
20
Not enough data
8.6
21
Not enough data
7.5
20
Performance
8.9
65
|
Verified
8.6
18
|
Verified
8.7
68
|
Verified
9.0
18
|
Verified
7.1
68
|
Verified
8.1
19
|
Verified
8.6
68
9.1
18
|
Verified
Network
7.9
57
|
Verified
8.7
14
|
Verified
Feature Not Available
8.6
11
|
Verified
Feature Not Available
8.3
11
|
Verified
Application
9.3
72
|
Verified
8.2
15
7.6
60
8.2
15
|
Verified
9.0
67
|
Verified
9.2
18
|
Verified
Agentic AI - Vulnerability Scanner
Not enough data
Not enough data
Feature Not Available
Not enough data
Functionality - Software Composition Analysis
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Effectiveness - Software Composition Analysis
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
API Management
Not enough data
Feature Not Available
Not enough data
Feature Not Available
Not enough data
Feature Not Available
Not enough data
Feature Not Available
Security Testing
Not enough data
Feature Not Available
Not enough data
Feature Not Available
Not enough data
Not enough data
Security Management
Not enough data
Not enough data
Not enough data
Feature Not Available
Not enough data
Feature Not Available
Application Security Posture Management (ASPM)Hide 11 FeaturesShow 11 Features
Not enough data
Not enough data
Risk management - Application Security Posture Management (ASPM)
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Integration and efficiency - Application Security Posture Management (ASPM)
Not enough data
Not enough data
Not enough data
Not enough data
Reporting and Analytics - Application Security Posture Management (ASPM)
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Agentic AI - Application Security Posture Management (ASPM)
Not enough data
Not enough data
Not enough data
Not enough data
Agentic AI - Static Code Analysis
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Cloud Visibility
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Security
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Identity
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Not enough data
Interactive Application Security Testing (IAST)Hide 1 FeatureShow 1 Feature
Not enough data
Not enough data
Agentic AI - Interactive Application Security Testing (IAST)
Not enough data
Not enough data
Categories
Categories
Shared Categories
Burp Suite and Invicti (formerly Netsparker) are categorized as Vulnerability Scanner, Dynamic Application Security Testing (DAST), and Penetration Testing
Unique Categories
Burp Suite has no unique categories
Invicti (formerly Netsparker) is categorized as Website Security, API Security, Static Application Security Testing (SAST), Software Composition Analysis, Static Code Analysis, Interactive Application Security Testing (IAST), and Application Security Posture Management (ASPM)
Reviews
Reviewers' Company Size
Burp Suite
Small-Business(50 or fewer emp.)
Mid-Market(51-1000 emp.)
Enterprise(> 1000 emp.)
Invicti (formerly Netsparker)
Small-Business(50 or fewer emp.)
Mid-Market(51-1000 emp.)
Enterprise(> 1000 emp.)
Small-Business
(50 or fewer emp.)
Mid-Market
(51-1000 emp.)
Enterprise
(> 1000 emp.)
Reviewers' Industry
Information Technology and Services
28.2%
Computer & Network Security
27.4%
Computer Software
15.3%
Financial Services
4.8%
Retail
3.2%
Other
21.0%
Computer Software
12.5%
Telecommunications
10.9%
Financial Services
9.4%
Information Technology and Services
7.8%
Computer & Network Security
6.3%
Other
53.1%
Alternatives
Discussions
Is BurpSuite free?
2 Comments
GR
You can have Burpsuite for free as the community edition however there will be certain features which cannot be used in the community edition. To get full...Read more
How do i intercept network that i am connected to?
2 Comments
JZ
Check wether the network ip is accessable with the browser. If yes then you can use the same steps as you are using to intersept web applications.Read more
What is Burp Suite Professional?
1 Comment
NR
Burp Suite professional is a security testing tool.
Security testing professional or penetration testing professional use this tool for find security...Read more
What is Invicti (formerly Netsparker) used for?
1 Comment
HS
Dynamic application Security Scanning - DAST ScanRead more
What are URL rewrites and URL rewrite rules?
1 Comment
Official Response from Invicti (formerly Netsparker)
Web application developers use URL Rewrite Rules to hide parameters in the URL directory structure and is typically used to make it easier for search engines...Read more
What is the Knowledge base node and what is reported in it?
1 Comment
Official Response from Invicti (formerly Netsparker)
Netsparker Desktop and Netsparker Cloud are not just web vulnerability scanners that automatically identify vulnerabilities in web applications. They are all...Read more
Hunting for software insights?
With over 3 million reviews, we can provide the specific details that help you make an informed software buying decision for your business. Finding the right product is important, let us help.
Your software and services insights are valuable.
Your peers come to G2 to get an inside look at and other business solutions. Adding perspective on will help others pick the right solution based on real user experience.
