Burp Suite Features

Application Programming Interface Specification for how the application communicates with other software. APIs typically enable integration of data, logic, objects, etc. with other software applications.

Provides the ability to extend the platform to include additional features and functionalities

Tools to visualize and analyze data.

Application Programming Interface Specification for how the application communicates with other software. APIs typically enable integration of data, logic, objects, etc. with other software applications.

Provides the ability to extend the platform to include additional features and functionalities

Track issues and manage resolutions.

Gathers information about the system and potential exploits to be tested.

Scans applications and networks for known vulnerabilities, holes and exploits.

Tools to visualize and analyze data.

Track issues as vulnerabilities are discovered. Documents activity throughout the resolution process.

Scans applications and networks for known vulnerabilities, holes and exploits.

Allows users to access a terminal host system and input command sequences.

Allows users to perfrom hands-on live simulations and penetration tests.

Runs pre-scripted security tests without requiring manual work.

Software is consistently available (uptime) and allows users to complete tasks quickly because they are not waiting for the software to respond to an action they took.

Runs pre-scripted security tests without requiring manual work.

Allows users to test applications for specific compliance requirements.

Scans functional applications externally for vulnerabilities like SQL injection or XSS.

The rate at which scans accurately detect all vulnerabilities associated with the target.

The rate at which scans falsely indicate detection of a vulnerability when no vulnerabilitiy legitimately exists.

Track issues as vulnerabilities are discovered. Documents activity throughout the resolution process.

The rate at which scans accurately detect all vulnerabilities associated with the target.

The rate at which scans falsely indicate detection of a vulnerability when no vulnerabilitiy legitimately exists.

Runs pre-scripted vulnerability scans without requiring manual work.

Allows users to scan applications and networks for specific compliance requirements.

Allows users to perfrom hands-on live simulations and penetration tests.

Scans application source code for security flaws without executing it.

Scans functional applications externally for vulnerabilities like SQL injection or XSS.

Capability to perform complex tasks without constant human input