Burp Suite is the leading software for web security testing_

Thousands of organizations use Burp Suite to find security exposures before it’s too late.

Benefit from cutting-edge scanning technology_

Burp Suite constantly raises the bar of what security testing is able to achieve.

Identify the very latest vulnerabilities_

Burp Suite researchers frequently uncover brand new vulnerability classes that Burp is the first to report.

Organizations

Find your security holes before you get hacked

Testers

Take your security testing to a new level

Developers

Build secure and robust applications

Protect your reputation

Avoid the fallout and exposure of security incidents by finding vulnerabilities before they are exploited.
For Organizations
Make your testing faster and more fun

Improve the quality and accuracy of your security testing with an incredible set of automated and manual tools.
For Testers
Build security into your software development

Gain fast feedback of security bugs, before they are released.
For Developers

"Thanks for such a fantastic tool and for your support responses"

- Michelle Simpson, Security Consultant, NCC Group

“Burp rules them all. Keep it up. :-)”

- Russ McRee, Principal Security PM Lead, Microsoft

"Burp is my go to tool for testing web applications. It's best in class! Can't wait to see what the future holds."

- Kevin Johnson, CEO, Secure Ideas

PortSwigger News

Burp Suite 1.7.23. Several new scan checks including CSS injection and form action hijacking Blog post: DOM based AngularJS sandbox escapes Blog post: PortSwigger bug bounty program Blog post: JSON hijacking for the modern web Blog post: Backslash Powered Scanning: Hunting Unknown Vulnerability Classes

Success Stories

Security Team Security Consultancy Penetration Testers Freelance Pentester Bug Bounty Hunter