Select your Burp Suite Enterprise Edition plan

Our pricing is designed to enable companies of all sizes to scan their web portfolios. Need more or less scanning? We can help design the right plan for your needs. Please email hello@portswigger.net.

Unlike most automated web vulnerability scanners, Burp Suite Enterprise Edition scans can be assigned and reassigned across any websites, applications, or URLs.

How many agents do I need?

It all depends on the size of your organization, and how secure you aim to be.

Companies with large web portfolios that they need to scan frequently will need more scanning resources than small companies just starting out with automated scanning.

1 scanning agent = 1 scan at a time.

100 scanning agents = 100 concurrent scans, etc.

Unlike most automated web vulnerability scanners, Burp Suite Enterprise Edition scanning agents can be assigned and reassigned across any websites, applications, or URLs.

Create a quotation tailored to your needs

It's easy to make a custom quotation - simply click the link below and edit the number of agents you require:

Create a custom Burp Suite Enterprise Edition quotation

Please note: if you want to run Burp Suite Enterprise Edition in multiple environments, you will need to purchase a separate license for each environment. This applies to test, development, or staging environments, for example.

Need help selecting a plan? We're here to help!

Get in touch with our customer champions who are here to help you get started.

PortSwigger customer champions

That means no application limits - and unlimited users.

  • 1 Burp Suite Enterprise Edition server

  • Unlimited users

  • Proven Burp Suite scanning engine with browser-powered scanning

  • Single-sign on and role-based access controls

  • Scheduled, recurring, and triggered scans

  • Technical support with 24 hour SLA

  • Comprehensive technical documentation and tutorial videos

  • Summary dashboard and reporting

  • Scanning agents with no application limits

  • REST and GraphQL APIs

  • CI/CD platform integration

  • Bug and ticket systems i.e. Jira

  • Out-of-the-box scan configurations

  • API scanning

  • Recorded login sequences