New: Burp Suite Enterprise Edition Unlimited pricing

More than 1,000 organizations are using Burp Suite Enterprise Edition to scale their web vulnerability scanning - using the same Burp Scanner favored by 72,000 penetration testers.

In addition to scanning whatever you want, the new Unlimited subscription option enables you to scan whenever you want to - without limit.

With the new Unlimited subscription option we announced today, we're enabling Burp Suite Enterprise Edition users to scan as much as they want - while gaining certainty over their costs. The Unlimited subscription option will be of particular interest to larger organizations, as well as organizations using Burp Suite Enterprise Edition for DevSecOps scanning.

Quick link: contact our team to find out how to license Burp Suite Enterprise Edition with the new Unlimited subscription option, for $49,999 per year.

What does an Unlimited subscription mean?

A Burp Suite Enterprise Edition Unlimited subscription means exactly that. When you subscribe using the Unlimited option, you pay an annual fee of $49,999, which enables you to carry out as many concurrent scans as you need at any given time - without limit.

In addition to this, remember that Burp Suite Enterprise Edition has always been different, in that it doesn't require you to "lock" your subscription to particular domain names / URLs in order to scan them. Instead, we leave you free to choose what you use your scan budget for - scanning a different URL with each new scan if you need to. And of course, you can add an unlimited number of users. We think these things are only fair.

So in addition to scanning whatever you want, the new Unlimited subscription option enables you to scan whenever you want to - without limit.

A great solution for large portfolios, or DevSecOps

Previously, Burp Suite Enterprise Edition's pricing has always required subscribers to license a particular maximum number of concurrent scans. And this works fine - as long as you know your scanning requirements, and are confident that they won't change. But speaking to our users, we found that this just isn't the case for many organizations.

Now you really can have it all ...

In fact, many of our enterprise-level subscribers have been requesting an unlimited scan option like we've released today. This will enable them to exercise budgetary control, while ensuring that scanning will always be available when it's needed.

So if your security function supports a lot of dev teams, or if you're working in a DevSecOps scenario (scanning applications every time new code is pushed), then Burp Suite Enterprise Edition's Unlimited subscription option is for you. Check out our pricing example below to see how it might work for you.

The Unlimited subscription option mirrors our recently released Burp Suite Enterprise Edition Pay as you scan subscription option, which is aimed at organizations just getting started with web security, and compliance scanning.

Example - Unlimited subscription price breakdown

As well as adding flexibility to your deployment, Burp Suite Enterprise Edition's Unlimited subscription option could also save you money. For example:

Imagine that your organization needs enough headroom to dynamically scan up to 100 web applications at any given time. Using a Burp Suite Enterprise Edition Classic subscription, 100 concurrent scans would work out at $71,841 per year - but by choosing the new Unlimited subscription, you could do that and more for just $49,999 per year:

Classic subscription breakdown

• $6,600 - Burp Suite Enterprise Edition 1 year subscription (inc. 1 concurrent scan).

• $65,241 - 99 additional concurrent scans @ $659 per unit.

• $71,841 - Total based on Classic subscription option.

Unlimited subscription breakdown

• $49,999 - Burp Suite Enterprise Edition 1 year Unlimited subscription (inc. unlimited concurrent scans).

• $49,999 - Total based on Unlimited subscription option.

So in this scenario, you would save $21,842 per year - AND be able to carry out as many concurrent scans as you want, rather than being limited to 100. This means that as your needs grow, your costs will remain static. And don't forget that both subscription options enable you to scan any URLs you need to - because unlike many scanners, Burp Suite Enterprise Edition never limits you to scanning pre-named URLs.

Takeaway - we're giving our heaviest users more for less

As you can see, if you're a relatively heavy user of Burp Suite Enterprise Edition, then our new Unlimited subscription option is almost certainly going to save you money.

On top of this, the Unlimited subscription option removes any limit on the number of concurrent scans you can carry out. Now you really can have it all. Don't forget that every Burp Suite Enterprise Edition subscription enables you to scan whichever domain names / URLs you want (without "locking in" certain ones), and comes as standard with the ability to add unlimited users.

To find out how to license Burp Suite Enterprise Edition with the new Unlimited subscription option, contact our team, or check out the Burp Suite Enterprise Edition pricing page.

Burp Suite Enterprise Edition DevSecOps

Matt Atkinson

@mattatkinson42